Security Updates in the New Mozy App

Mozy Mobile App 1.4Mozy just keeps making it better and better to access and use your data from mobile devices. This week we launch version 1.4 of Mozy’s app for both Android and iOS devices (iPhone, iPad and iPod touch).

Each time we update the Mozy app, I update the Mozy blog to tell you what’s new. The list is too long for a single post, so today we’re going to look at how we have further tightened security in the Mozy app.

The convenience of having all your Mozy-protected files at your fingertips is enormous. But mobile devices frequently get misplaced, lost or stolen. Mozy app v1.4 introduces the following new security measures to ensure your privacy in such situations:

  • Token-based Authorization - The Mozy app has switched to using an access token instead of your password. Although previous versions always used strong encryption to store the password, this new token-based system keeps the Mozy app from storing your password at all. That sets the stage for the next (and frequently requested) security feature…
  • Remote De-authorization - If your mobile device goes missing, gets stolen, or you’re just not sure where you put it, you can just go to your account page and select expire mobile access. When you do, it stops all access from the mobile app until you log in again, but your computers running Mozy online backup or Stash continue to work without disruption. (In other words, it expires just the app’s current token–it doesn’t change your password.)
  • Automatic De-authorization - As in previous versions of the app, if you choose to protect the app with a passcode (PIN), the app will automatically log out after 5 incorrect PIN attempts. The difference now is that instead of forgetting your password, the app now forgets its access token. (This also happens if you choose to log out manually from the app.)
  • Automatic Data Wipe - When you remotely de-authorize the app from your account, the app now removes any locally-stored data when launched. This includes: files you have marked as favorite on iOS, files downloaded to SD storage on Android, and even any usernames that the login screen had previously remembered.
  • Local File Encryption - If you use a personal key to encrypt your Mozy data, the Mozy app will now keep any downloaded files encrypted on local storage. It decrypts them when you share by email or send a file to another app.

In my next post, we’ll look at features that make the Mozy app even better for accessing and using your data while on the go.

If you have questions or comments about the items described above, please post a reply.

Until next time, be safe,

–Ted

Ted Haeger
Mozy Product Management

Cloud roundup and links of interest – August 15

Google Street View Offers Tour of NASA’s Kennedy Space Center

Visitors from almost anywhere on Earth can “see” and explore NASA’s Kennedy Space Center through a collaboration with NASA that allowed Google’s Street View equipment to capture 360 degree color images and place them online for a new generation of spaceflight fans

The panoramic images include such iconic vessels as the Apollo 14 command module capsule that returned three astronauts from America’s fourth mission to the moon in February 1971 and the Space Shuttle Atlantis which flew on its maiden voyage in October 1985.

Virtual visitors can browse the collection by clicking on the images and then “steering” through the exhibits using a control wheel on the top left of each image. Using the controls, visitors can roam around the KSC displays to learn more about its contents and history, according to an article on eWEEK.com.

The new KSC images are the latest in the Google Street View collection, which also includes panoramic views of notable places around the globe, including Historic Italy, California National Parks, and highlights of must-see sites in the United States, Poland, Israel, Russia and the magnificent Swiss Alps, says eWEEK.

Tired of Facebook Friends’ Endless Photos of Their Kids? Unbaby.me Can Help

Too many baby pictures on Facebook?Too many of your friends’ baby pictures cropping up on Facebook? There’s now a sure-fire (if slightly off-beat) way to fight back: Unbaby.me.

The photo-replacing plug-in is the brainchild of three New Yorkers — Yvonne Cheng, Chris Baker and Pete Marquis — who work together at the advertising agency BBDO. They are, unsurprisingly, in their late 20s and early 30s, according to the Los Angeles Times.

“We were having drinks one night after work and were joking around about how Facebook is just lousy with babies, and wouldn’t it be funny if you could replace all those photos with cats,” Cheng said in an interview with the Los Angeles Times.

The plug-in will scan your Facebook feed for key words such as “cute,” “adorable” and “first birthday” — trigger words that indicate a baby photo may be attached. You can also add your own key words. Then it replaces the offending baby photo with a different photo from an RSS feed of pictures. The current default feed is cat photos.

“Personally, I don’t hate babies. I love babies. But I do get tired of looking at babies,” Cheng said.

Nokia Windows Phone 8 Reveal in Early September Tips Insider

Nokia’s first Windows Phone 8 smartphones could be revealed as early as September, as the Finnish company attempts to beat Apple to the next-generation handset unveil, according to an article on Slashgear.com.

New phones running Microsoft’s latest smartphone OS are set to be announced next month, though availability is only said to be in time for the holiday shopping season.

Apple isn’t expected to confirm the iPhone 5 until midway through September. However, the company is likely to have the much-anticipated handset up for grabs within a month of that.

Exactly what the new Nokia devices will look like is unclear, but the company will probably stick to a style similar to the Lumia 800 and Lumia 900, Slashgear reports.

 

Mozy Stash

 

Small Biz in the Forum: How Smart Posting is Good Marketing

Small-business advertising has often amounted to something like this: how much bang can you get for your buck?

Billboards, ad spots, commercials, whatever the format, you want to see your marketing dollars amount to returns, sales, conversions.

But while a billboard-heavy marketing campaign by the big guys can lead to increased business, it’s often difficult to understand just how much money they eventually bring in. Just as often, ad experts tell us, it’s about expanding the reach of your brand and it’s about recognition.

But the smaller shop doesn’t always have the luxury of dropping crucial marketing dollars on what can amount to only a concept play. So, for small businesses, how can you showcase your expertise and build your reputation, but still keep the budget and return-on-investment at the center of the game?

One way is the online forum.

Let’s look at small-business owners who’ve used forum posting to develop new clients. We’re helped by Manta Connect, an online community-builder for small businesses to connect to the communities of customers they want to find.

Forum Posting: It’s About Time, Not Money

“Small business owners who actively share their knowledge and experience in the forum on Manta Connect not only establish themselves as industry experts in the community,” said Pamela Springer, chief executive at Manta, “but they gain a competitive advantage in expanding their customer reach.”

Take Stephen Lewis, for example. He’s the owner of Worthwhile Things in Orlando, Florida. While his team is working to coach small businesses, he turns to forums to find new clients  — and he does this by answering the questions they’ve asked.

Online Forums“Most of the questions and posts I respond to involve a business owner asking how to do something online, or how to do it better,” he said. “By giving clear answers which contain relevant and thoughtful tips, comments and feedback, I can establish myself as an authority on a given subject.”

The outlay for what amounts to a new, real, and concrete customer lead? A little bit of time.

“I find that by giving 5-10 minutes of my time and offering a short bullet list of free advice, I receive great reviews and feedback, and give myself an opportunity to make a new business contact or customer,” Lewis said. “I always include anchor text links back to my various online properties, but always to specific pieces of content that will augment my answer to the question posed.”

Expertise Online: Look to Learn, then Show Don’t Tell

For small-business owners as well, two other major elements of online forums come into play:

— A Lab for Best Practices: By watching your colleagues who also post and interact, as a small-business owner you’ve got a free way to learn at your disposal. From the best moves to mistakes, participating in online forums allows small-business owners to listen in on a vital conversation about best practices.

— A Place to Demonstrate What You Do: When a small-business owner rents a booth at a trade conference, they’re really spending money to demonstrate something about what it is they do. Forums can provide that, in a different way, without the expense. ”By using my experience and providing any help that I can,” said Patrick Tuure, web designer and owner of O.T. Web Designs in Columbus, Ohio. “I demonstrate to other forum followers that I know what I’m doing and, as a result, it opens them up to doing business with me. Since the posts are always there, they serve as a great icebreaker when someone contacts me. I don’t have to spend the time to convince them of my level of knowledge, they can clearly see it.”

Image Credit: Forum / Sarah B. Brooks / CC BY 2.0

 

MozyPro

 

How to print from your iPads

How to print from your iPadIf you or your company has iPads and other iThings on its network, one of the frustrations is not being able to print from them. In the past, you needed a printer that was designed for AirPrint (Apple has a long list of them here) or you had to try to set up printer sharing with an existing Mac USB printer across your network.

But what if you want to use your existing printer that isn’t on this list? Or want something that you can manage its print output for cost accounting purposes? Or if you don’t want to share a local printer? You have several choices.

One solution is to use Lantronix xPrintServer that can do the job for any network or USB-connected printer. It’s so easy that it will take you longer to read how to do it than to actually implement it. The print server is about the size of an iPhone, and has three connectors: an RJ-45 for your Ethernet network, a USB jack and a power plug. Plug it in and, in a few moments, you are good to go.

If your app has a print dialog icon, you can now start printing from your iThing. The print server will auto-discover any network printer that is on the same network subnet. If you want to print to another subnet, you will have to go through some manual configuration, using the printer’s built-in Web server. If you have iPhones, you will of course need to turn on their Wi-Fi radios and connect to the same subnet to see the print server. Lantronix has this funny short video with the loveable IT guy featured here. As he says, “Try it now.” It will print wirelessly from any iOS device running iOS version 4.2 or later. The home editioncosts $99 and supports two printers. If you want a more capable print server that supports more printers, there is a $150 version of the box.

If you are using the Aerohive Wifi access points, they have recently been upgraded to support Apple’s Bonjour technology and this video explains how it is done. If you have to purchase an Aerohive Wifi network, this isn’t going to be cheap.

Finally, EFI has had its PrintMe cloud-based service for a decade for PCs. The new mobile version extends this functionality to a variety of mobile devices and to a wide variety of printers that can be located anywhere. Pricing is $2,500 for a minimum of five printer connections including a year’s support and maintenance. Again, this is somewhat pricey.

The Lantronix solution is a good compromise of price and features, and is what I would recommend if you have a couple or a large fleet of iPads to support.

 

Mozy Mobile App

 

For international data service: Rent a WiFi Hotspot, and/or get WiFi

In the United States, a broadband data service for your smartphone, tablet, notebook, mobile hotspot or other device can be relatively affordable. To vastly oversimplify, plans run from $30 to $50 or so per month, or about $10 to $15 per gigabyte.

But if you’re traveling outside the U.S., mobile data isn’t that cheap — and not that simple. For internationally roaming travelers, network charges — not just for data, but also for voice calls, GPS signaling, and any other interactions with the carrier networks — can be ultra-expensive. Data can easily cost fifty cents a megabyte — or more.

For example, in October 2011, PCWorld reported) that a Florida woman whose brother brought her phone with him to Canada ran up a $200,000 bill over two weeks. Uploading a few photos or watching a three minute video can ding you for $100; if your GPS keeps checking location, or apps check regularly for updates, that sound you hear is your bill going wild. (And it’s not just data — even a few short international cell phone calls can quickly run up about $400 of charges.

You can get better — and more controlled — phone service by either getting a local SIM card (assuming your phone is “unlocked), or renting a local-country phone.

International Wi-Fi TipsYou can do your best to minimize data usage. When in doubt, turn it off: turn off apps, turn off “data roaming” and “fetch data” and automatic synching, turn off anything that does automatic updating. And turn off network and GPS services, other than WiFi. (If you’re willing to turn off WiFi, you can set the phone to “Airplane mode,” although on some phones this also disables Bluetooth, which you may still want to use.)

But that doesn’t solve the problem of affordable — and controlled — data service.

Renting or Buying a Mobile WiFi Hotspot

A “mobile WiFi hotspot” is a pocket-sized device that talks to a mobile broadband carrier, and includes an 802.11 WiFi router — i.e., it creates a local WiFi hotspot area. Novatel introduced its MiFi, the first of these compact products, in 2009. Today, AT&T, Sprint, Verizon and other carriers offer MiFis, and Novatel offers MiFIs that can be used in over 200 countries. Other companies, like Option XYFI and Zoom Telephonics, offer “unlocked” mobile hotspot products that accept SIM cards and can be used in many countries.

But you don’t even have to buy one. You can now rent a mobile WiFi hotspot just like you can rent a local cell phone — and the price may be hard to beat. Xcomglobal.com, for example, offers rental MiFis for use in over 175 countries, with unlimited data, for around $15/day for most countries. (A given MiFi won’t necessarily work in all the countries you may be visiting in a trip, always confirm usability and pricing.) Thought the company currently has pickup/drop off only in Los Angeles and New York, but you can pre-order a rental unit via the web site.

And, of course, other companies are getting into the international MiFI rental business, such as MiFiRental.com.

So while you definitely need to master turning off cellular, GPS and other data usage for your smartphone and any other devices you carry (e.g. a broadband enabled tablet or notebook), you’ve got options other than “being cut off” or “going broke staying connected.”

Don’t Overlook Local WiFi

Depending on where you’re going to be, another option may be relying on WiFi. While not as exorbitant as international carrier data service, local hotspots can still get costly, especially if you’re moving around and would have to buy an hour at your hotel, an hour at the coffee shop, another hour at the airport, a day at your next hotel, and so on.

One way you may be able to slash your WiFi costs — and certainly control them — is through Boingo.com, which offers access to hundreds of thousands of WiFi hotspots around the United States and internationally. Plans include options for multiple devices, so you wouldn’t have to purchase separate access for your smartphone, tablet and notebook.

So plan ahead:

1) Learn how to turn off data-using activities on your devices
2) Look for affordable devices and plans for where you’ll be going.

And enjoy being able to afford to stay connected.

 

MozyEnterprise

 

Whole House Surge Protection

I’ve always been a believer in using a UPS (Uninterruptible Power Supply) to protect my desktop computer and surge protector strips to protect my computer peripherals (printer, etc.). For the computer, power hiccups can do anything from scramble data to damage the hardware. I don’t want a surge to leave me with lost work or ruined investments.

But what about everything else electrical or electronic in the house which a power surge could damage? After all, today’s flat-screen TVs can easily cost more than a computer. And everything today from microwave ovens and stoves to washers and dryers have electronics in them. If you’ve got home automation/control and/or security systems, they, too, are vulnerable.

But putting a surge strip at each wall outlet quickly gets expensive and complicated — not to mention some outlets are hard to get to, and some things, like the furnace and the air conditioner, are hard-wired, keeping you from plugging them in via a surge strip.

Answer: a whole-house surge protective device (SPD), installed at the circuit breaker box. (Note: before considering this approach, you should either be a homeowner or have a good relationship with your landlord.)

Whole Home Surge ProtectionOur house has one, put in at my request a decade or so ago while the breaker box was being replaced. I’m sure the technology has evolved; ours looks like a gray double-high soda can.

Have we had any whole-house surges since then? I don’t know. Have our neighbors? Ditto. But it seemed like an affordable investment, as long as we were having the related work done.

Steven Krasner, the owner and founder of OnlyConnect, a Belmont, Mass.-based electrical contracting company, says, “A whole-house surge protector helps, among other things, if the power line gets hit by a lightning bolt… or if the power from your utility company has surges. And it deals with surges that can occur within your house, like when you turn off something that has a motor.”

According to NEMA Surge Protection Institute statistics cited by HouseLogic.com, “60% to 80% of power surges start inside the home, typically from major appliances and systems that cycle on and off, such as air conditioners, refrigerators, and clothes dryers.”

This doesn’t replace all the little surge protectors inside your house, Krasner stresses. “It’s another line of defense. The surge protector in front of your computer won’t stop large current surges, like from a lightning strike.” Does this make a difference? Says Krasner, “Anecdotally, I’ve talked to people who have lost a few devices, where a neighbor who had a whole-house surge protector didn’t.”

How much will this cost you? As a starting point, Home Depot’s website has twelve products listed under “Whole-House Surge Protectors,” ranging in cost from about $30 to $250. You may also need a circuit breaker. Depending on how your current electric panel is set up, and whether there’s enough additional room readily available, it could take a professional electrician only an hour or less to install.

After the initial cost, if your home gets hit by a big surge (or many little ones)little ones, you may need to replace one or more components — but this will be much less than the initial expense.

Like many of the surge protectors and UPSs you plug into a electrical outlet, many of the whole-house SPDs will also protect your coaxial (TV/Internet) and land-line connections from surges that can come in through these wires.

As you invest more money in — and rely increasingly on — electrical and electronic products in your home, it makes sense to invest a small amount — probably an average of less than $100/year over time — to protect them from harm. You’d spending more than that on insurance, why not go a step further and spend some on protection?

 

MozyHome - Free

 

How to get started using email lists

Getting Started with Email ListsWhile Twitter and Facebook have gotten plenty of attention, the basic bread and butter of any small business is the care and feeding of its email lists to connect its customers, suppliers and partners. The better you are at doing email lists and sending out regular and informative communications, the more business you will have.

You have three basic choices when it comes to list servers: the free, the cheap, and the pricey. While price alone is a good way to decide, there are some other factors that you should consider. I have picked one provider for each price point: Yahoo Groups (free), Mailman hosted by EMWD.com for $4 a month and ConstantContact, which has plans starting at $15 a month. All three have one big advantage over doing email with Outlook or some other desktop client – they automatically handle bounces, or when email addresses go bad. They also avoid the accidental reply-to-everyone mistake. These are probably the two biggest reasons to use a list service.

For all three choices, you need to assemble all your email addresses that you want to start your list with. You can export these from your client email program into a text file, and then bring up the file in a word processor program to clean it up. You can then cut and paste the names into your list program at the appropriate time.

I like Yahoo Groups for community and lists of a few dozen people or fewer, but it has two big drawbacks: First is a problem with setting up large lists quickly. Yahoo only lets you add 10 people a day to your list without asking them to opt-in. A second issue is that the Web list management interface is a bit confusing to figure out, especially for those recipients who want to use them but lack a Yahoo ID.

Mailman is a more professional program and gives you all sorts of control over features. There are many other email list software products, this is just one that I have been using for many years. I recommend the hosting provider EMWD.com. You can have fairly large lists of several thousand addresses without too much trouble, unlike Yahoo Groups. You need to obtain an account for a one-time fee of $10, and this will give you access to its Web-based control panels. This is more complex than Yahoo, but you have more control over things such as the header (what email address is used in the “from” field) and footer (what information goes in the bottom of each message, and can be used to promote your company or products). As I said, each list only costs $4 a month to operate. You might want to check and see if your own Internet provider offers more competitive pricing on Mailman hosting.

But this may not be enough for your purposes. If you want to add Web links in your emails and track who clicks on which link, such as for promotional purposes, then you want ConstantContact. You can try it for 60 days for free, and then depending on how many names are on your list, the price increases from $15 to $150 a month.

The advantage of ConstantContact is that you can send out very snazzy emails, with pictures, color, and those trackable links. The downside is that setting up a list takes some work. They also have some very impressive video tutorials on their site to help you learn more about using lists and social media. You can view these videos (even without an account) here.

Here are a few tips for sending out your emails to your list once you have it setup.

Limit the amount of self-promotional content to less than 20% of what you send out. Keep your emails information-rich and people will want to read them.

Weekly is the best frequency. If you can’t write something weekly, then every other week is a good alternative.

Brevity counts. Keep the emails to less than 600 words. People have short attention spans.

Don’t pile on the Web links. One or two links per email is fine.

Finally, have an archive. Think about archiving all your emails on your Web site. Mailman and Yahoo Groups do this automatically.  Good luck with your lists!

 

MozyPro

 

Links of Interest – July 26

Twitter Is Working on a Way to Retrieve Your Old Tweets

Old TweetsTwitter gives users access only to the last few thousand posts made to the site.

But Dick Costolo, Twitter’s chief executive, promises that this will eventually change, according to a post by The New York Times.

“We’re working on a tool to let users export all of their tweets,” Mr. Costolo said in a meeting with reporters and editors at The New York Times. “You’ll be able to download a file of them.”

Other social media services, most notably Facebook, already allow users to download a file with all their data. Twitter has been slower to roll out a similar service, although a number of third-party services and developers have cobbled together ways to let people sift through portions of Twitter’s vast collection of messages. One recently released site, called oldtweets, lets people root through some of the first messages ever sent through Twitter’s servers. (Curious about what people were tweeting about in 2006? Comically dated topics like “Returning movies to Blockbuster” and “Chatting with friends on MySpace.”)

10 Favorite Rumors About Apple`s Next Smartphone

The Apple iPhone 5 may or may not arrive in September. Or be super thin but extra big. Or feature a new dock, according to eWEEK.com.

There is no shortage of rumors, speculations or forecasts about a device—even the name iPhone 5 is a guess—that Apple has yet to officially breathe a word about. What is known is Apple finally has a real competitor in Samsung.

Past comparisons of iPhones to Android sales figures have been silly, as they weighed Apple against a handful of manufacturers. Samsung, however, has pulled ahead of the rest of the Android pack, and smartphone for smartphone, the South Korean giant has out-sold Apple during the first quarter of this year and likely also the second. When Samsung introduced the Galaxy S III in May, it showed its hand (and the public liked what it saw; Samsung has very publicly struggled to make supply meet demand).

Now following Samsung, the pressure is on. Apple has so succeeded at wowing the public during its staged events, the bar couldn’t be set higher.

Today’s Women of Space Remember Sally Ride

Sally Ride, the first U.S. female astronaut to fly in space, died July 23 at the age of 61 from pancreatic cancer. First launching on the Challenger space shuttle in 1983, Ride has become an enduring inspiration to people everywhere, particularly women working in science and engineering.

Ride’s place as the first American female astronaut was a long time coming, according to Wired. As far back as the Mercury program, NASA considered female astronaut candidates but the agency did not take the idea very seriously. Ride joined NASA in 1978, in the first astronaut class to include women, and trained for five years. Prior to her deployment on the Challenger mission, she endured sexist questions from reporters, shrugging them off by saying, “It’s too bad this is such a big deal. It is too bad our society isn’t further along.”

 

MozyHome with Stash

 

Don’t mess with your DNS

Don't Mess with Your DNSWe tend to take it for granted, but you need to treat the Internet Domain Name System (DNS) with the respect that it deserves. And if you have some time to investigate alternatives, you could really enhance your network’s performance and security.

Before I tell you how to do this, let’s have a brief explanation of what DNS is. Think of what a phone book does – it allows you if you to look up someone’s  phone number by referencing their name. The DNS does something similar, except for computers: if you type in “google.com” it translates that name into a sequence of four numbers, called an IP address. In this case, the IP address of google.com is 74.125.95.104.

The overall Internet infrastructure has a series of master phone books, or DNS root servers, located at strategic places around the world and maintained by a collection of public, semi-public, and private providers. They talk to each other on a regular basis; it’s important to make sure that they stay in synch as new domains are added. As you can imagine, if someone wants to “poison” one of the entries, or misdirect Internet traffic to a phony domain, it can be done with the right amount of subterfuge. A famous example of this occurred in2008. In an attempt to prevent YouTube viewers in Pakistan from watching a single offensive video, a Pakistani Internet provider managed to block access to all of YouTube all around the world. A more comprehensive list of the various DNS attacks can be found here on Google’s site.

When you set up your network, typically you don’t give your DNS settings any further thought. If you have a cable or DSL modem, you hook it up and it automatically gets its DNS settings from the cable or phone company’s DNS servers. If you are running a large enterprise network, typically you have your own internal DNS server to provide this service.

There are several alternative providers, including OpenDNS and Google’s Public DNS, among many others that you can see listed here. Why bother? Two good reasons: 1.) they offer better browsing performance, and 2.) they provide better security to stay away from known phishing and malware-infected domains.

Before you pick an alternative DNS provider, you can use this Java program to test the speed of your own DNS vs Google and OpenDNS. Or you can read up on a couple of performance comparisons from Manu-j and Habitually Good here.

You can change your DNS settings for your individual computer or for your overall network. This is typically done at your DHCP server or cable modem or router. Any of the alternative providers offer their services free, and some, such as OpenDNS, offer a lot more than just the mapping of IP addresses too.

Here are the instructions for changing the DNS settings. The whole process shouldn’t take you more than a couple of minutes to read through them and implement the changes:

- OpenDNS

- Google Public DNS

These free services are just the beginning of a new series of other improvements called secure DNS protocol extensions and products, and you can check out these products and read more on this site to understand what is involved to deploy them.

 

MozyHome with Stash

 

Time to stop reusing your passwords

Time to stop reusing your passwordThe recent exploits ofvarious hackers in publishing passwords and user lists from Yahoo, Formspring, LinkedIn and others show that the biggest weakness isn’t having the right security technology, but you as a user! While certainly these sites could have done a better job with securing user data, at the heart of these exploits is a glaring lesson that we all can learn: It is time to develop a better password policy and stop reusing them amongst your various online logins.

It isn’t any mystery to why password reuse runs rampant these days. We all have far too many login IDs to keep track of, and the easiest solution is to just reuse the same one (or a limited collection) over and over again. But this makes hacking into your online information child’s play: if someone can uncover the password from one place, they can run it through an automated routine and try dozens of others to see if you reused it. This is indeed what many hackers have begun doing, once they have confirmed one site’s credentials for your login.

And while IT managers can lock down their own email and database and Web servers with various internal policies, that doesn’t help matters if you reuse the same passwords (or even email addresses, as was discovered with the Yahoo hack) on online sites for your personal e-shopping and electronic banking. All it takes to gain access to your own network is to find an online site with weak password security and then trust that someone has reused the same password elsewhere.

A recent Washington Post poll found that 16% of all Internet users regularly reuse their passwords. It is time to stop this practice, and understand the dangers of password reuse. As Google says, “When you use the same password across the Web, a cyber criminal can learn the password from a less secure site and then use that password to compromise your important accounts.” The search giant has lots of great recommendations on personal password use on its UK blog.

Recently, one blog jokingly posted that children are being warned that the name of their first pet should contain at least eight characters and a digit. There is some truth to that, as many of us use our pet names in our passwords. 

While it is easier said than done, you need to limit the reuse of passwords and avoid using common words. Make sure that your passwords contain a mixture of upper- and lower-case letters, and include at least one number. (Or at least add these things to your pet’s name.) And if you are responsible for your IT operations, please enforce minimum complexity standards and educate your end users about the dangers of password reuse.

 

MozyHome