Marseille edit
It became a chestnut tree. Every year it carries a lot of massive hacking: Sony and Domino’s Pizza in 2014, Dailymotion and LinkedIn in 2016, Ccleaner in 2017 … The recent hacking of the American agency of credit Equifax caused a big stir partially because it did not take into account warnings of the American authorities. Result: 145.5 million of Americans saw their damaged account.
4 billion of imperfect people. And me, and me, and me...
In the field of the hacking, we do not make in half a measure. Every time, millions even hundreds million of accounts are concerned. A milestone has been achieved with Yahoo! the damages of which of cyber attack of 2013 were increased. It is not less three billion accounts that were affected. All in all, more than 4.7 billion accounts were hacked since 2007 according to the Australian researcher in Troy Hunt security. Vertiginous. In the case of Yahoo!, it is not sure that the banking data are not applied to reassure the concerned people.
Exactly, does that make the latter to protect itself? The recurrence of this type of affair should incite us if necessary. Moreover, organizations as the national Committee of computing and liberties (CNIL) alert us regularly on the necessity of adopting an IT "hygiene". What’s it in reality?
I think of it and then I forget...
A recent study of the French Broadcasting Authority (CSA) showed that, if the French people were aware of the fragility of their life deprived on the Internet, they would not take for all the required precautions. The first one is the password (mot de passe). If this one is systematized, the population continues to use the same for all its accounts. It is thus fundamental to distinguish them to avoid a hacking for others. It is also necessary "to complicate" the passwords to make them inaccessible. Yet, Bill Blurr, former director in Standard National Institute of and Technology (NIST), considered the Pope of the password security, has recently revealed that all we had learnt on the subject must be revised. It isn’t easy to adopt a digital lifestyle which asks for more and more data and authentication to reach immediately services without the fact that we have time or the desire to develop codes that we would like to be in-falsifiable. The temptation is big to be guided by interfaces always more "centered user" which allow us to connect in any account via the social networks. The more necessity is to grow bigger meninx to retain all these barbaric terms: the UX chews us the work.
How to do then? You can consult the list of some 320 million secret codes which were leaked on the Web and tested by hackers "to crack" accounts. But the work risks to be a little bit very time-consuming. Otherwise, you can resort to an administrator of passwords.
The only one to govern all
They are called 1Password, LastPass, KeePass or even Dashlane. Their mission? To facilitate your life. Save it. In fact, these tools allow you to memorize and centralize all passwords. Finished breakage-heads to find such code, from the bank to the social networks, including the e-mail box, the insurance, e-commerce sites… All your invaluable sesames are recorded in these safe deposit boxes.
Better, these tools are capable of generating themselves passwords to be infallible. What more do you need? The security on their mobile? It is possible even if, most of the time, it passes by a paying subscription. In this connection, it is advisable to specify that most majority of the administrators of passwords propose a free version proposing the basic functions on Desktop. These guarantee your online safety by suggesting you systematically recording identifier and password when you connect in a site, without the navigation suffers from it. When the code is of your own invention, some administrators offer even an audit of its solidity. Considerable.
Only snag: to reach their services, you also have to enter one … password! And this one has to be as complex as the others, if not more. This time, it is imperative to memorize him at the risk of losing the access to all accounts. Because if you have a memory lapse, do not count on the publisher to give you the access.
However, please rest in this domain as others, the absolute safety does not exist. This is the way, in spite of its reputation, Lastpass was hacked in 2015. The aggressors were able to put the hand on certain data of identification. But they were not able to have access to the passwords which are covered by an algorithm (algorithme) of encryption. It is considered inviolable.
Article written by Thierry Randretsa