How secure is my password? If you never asked this question to yourself, now is the time to do it.
To answer that, we first have to see what a terrible password means. Or, how a terrible password looks.
Here are 10 most common passwords that are likely to be cracked.
It is still not a reason to relieve if your password isn’t in the list.
How Secure Is My Password?
You might just be using some special characters and telling yourself my password is secure.
Verify if your account is compromised due to stolen password here HaveIBeenPwned.
If your account is compromised, change your password right now.
If it isn’t, there is no guarantee it won’t.
You see – even the password strength meter you see while creating passwords aren’t completely trustworthy. Troyhunt also agrees.
The art of choosing a secure password goes beyond password security tips or password strength validation.
It is a skill that requires the understanding of how the bad guys think. And, what they do to crack passwords.
As you can see, there are innumerable content password guides on the internet. And, they all have one thing in common. They only tell you what you should do. And, they miss out on what you shouldn’t do.
Therefore, if someone is claiming that they know the exact answer of ‘how secure is my password”, ignore them. They probably have no idea what they are talking about.
What Is an Ideal Password?
In cyber security, an ideal password isn’t [email protected]$$w0rd.
It is neither 965ife nor Ahmad1996. Surprising?
Introducing special characters and numbers is no more an alibi that you’re using an ideal password. In fact, they aren’t compulsorily secure.
In fact, @[email protected] is an insecure password.
Your password’s length should be more than 10 characters. You’re forbidden to go beyond it. In fact, even 9.
Your password must be made of unique unrelated words. This is foremost important. For the starters, you can make it MorningOxSocksInk. It qualifies to be an ideal password because it’s almost impossible to be cracked even if someone is using heuristics approach (artificial intelligence).
To make it better, you can use it as M0rn!ngS*ck$ink.
Observe that at the first place, I used O as 0. Whereas, in the second, I used * in the place 0. That’s the key. I’m leaving no clues whatsoever as to what special characters symbolizes which letter. The same is in the case of S. Firstly, I used it in upper case, then came the $ sign. The rule is to NOT leave a pattern—intentionally or unintentionally—so that even if someone scans your password against terabytes of passwords, your password doesn’t match. It’s resilient against SQL injections and dictionary matching.
An ideal password isn’t used in multiple platforms. Please. One password for one account. Otherwise, if someone, somehow, manages to Crack your Gmail password, the next he’ll be doing is watching Netflix with your subscription. And shopping with your credit card. You don’t want that to happen.
While we are here, also read: What is the loudest sound possible?