Social Media emerges the most convenient platform for cyber-criminals; Using same password across social media and business applications makes your business vulnerable to attacks!
Over 12 per cent of the world population is on social network and the number keeps growing exponentially. Those who do not own an account in Facebook or Twitter are now being viewed as those living in prehistoric times.
No doubt, social media is wonderful in helping you stay connected with friends, but the sheer popularity of social media attracts the attention of cyber-criminals looking for ways to harvest identities. Recent surveys by IT security analysts clearly indicate that social media has emerged the most convenient platform for malware delivery by hackers. Despite untiring awareness campaigns by the social media giants, even tech-savvy users are falling prey to attacks perpetrated through the social media.
With the proliferation of online applications, users find it hard to remember passwords and follow the easy way of using the same password for all the accounts – social media, banking, brokerage and other business accounts. This ‘single master-key’ practice makes the hackers doubly happy. Their job gets greatly simplified. Identity theft at one place leads to a comprise at numerous other places. In all probability, hackers would be able to easily gain access to other online accounts too.
Making things worse, of late there seems to be a change in the modus-operandi of hackers – they are not relying only on the ‘traditional’ attack patterns anymore. Cyber-criminals are increasingly targeting the login credentials of employees and administrative passwords of IT resources, using a number of techniques like spam and phishing emails, keystroke loggers, and Remote Access Trojans (RAT).
Once the login credentials of an employee or an administrative password of a sensitive IT resource is compromised, the institution will become a paradise for the hacker. The criminal is then able to initiate unauthorised wire transfers, view the transactions of customers, download customer information or carry out sabotage.
In addition, just as it happened with Linkedin last year where over 6.46 million hashed passwords were stolen, hackers are eyeing on stealing identities in a big way. The situation becomes much graver if a stolen password has also been used to access a variety of applications and websites, as explained above.
As we had been pointing out in this blog series repeatedly, it is always prudent to have unique passwords for every website and application and supply it ONLY on that site/app. When there is news of password expose or hacks, you can just change the password for that site/app alone and frequently changing passwords, as a habit is always a great one to have.
But, here comes the problem: You will have to remember multiple passwords – sometimes in the order of tens or even hundreds. It is quite likely that you will forget passwords and at the most needed occasion, you will struggle logging in.
Use a Password Manager
Just like you have an email account; consider using a password manager too. In order to combat cyber-threats, proper password management should ideally become a ‘way of life’. Password Managers help securely store all your logins and passwords. In addition, you will get an option to launch a direct connection to the websites / applications from the password vault’s GUI itself. Once you deploy a Password Manager, you can say goodbye to password fatigue and security lapses. With unique passwords for every online application, you need not fear about identity thefts perpetrated through social media.
The original article/video can be found at Beware, your social media password could let your business down!