GUEST POST By Craig Petronella
Unless You WANT to Get Hacked? CHANGE YOUR PASSWORDS NOW!
DO YOU WANT TO GET HACKED?
This is NOT a drill!
In a huge week for Hackers’ News, this is still huge. Recently it was announced that BILLIONS of passwords and other sensitive information was leaked on the dark web via a 100GB text file almost 8-and-a-half billion passwords.
It’s being called “RockYou2020.”
While it’s likely that this is a massive conglomeration of stolen credentials throughout the decades, it is still, well… MASSIVE. And while breaches such as these can feel overwhelming, the last thing you want to do is stick your head in the sand, because all that will do is make it harder to breathe while the cybercriminals steal your data. This breach, combined with all the other breaches, is practically a disaster waiting to happen. And while the details are relatively slow coming and also relatively unimportant at this point, what IS important is what you do from here.
Dealing with Difficult Clients can be a Nightmare! If you want to sleep better at night, join the Alta Pro Risk Purchasing Group for our upcoming webinar entitled: Ethics in 3D: Difficult Clients, Dabbling, and Documentation. This webinar will feature James Bell, a noted expert in Lawyer Ethics and will cover the dangers of dabbling in risky areas, the importance of documentation, tricks for dealing with difficult clients, and the magic power of the phrase “Don’t Do It!” James has been recognized in the Best Lawyers of America and has been honored as an Indiana Super Lawyer. He was 2018 President of the Indiana Bar Association, and he even has a channel on Youtube focusing on ethical issues facing lawyers. This webinar will provide 1 hour of Ethics credit, so don’t miss this opportunity to get free CLE. July 7, 2021 12:00 PM Central (US and Canada). Register here.
Secure: Password Best Practices
- Long, random mix of upper- and lower-case letters, numbers, and symbols
- Never use the same password more than once
- Change the password regularly
More Secure: Software Managers like lastpass or roboform
- Online – More convenient but more vulnerable
- Device-based – Less convenient, but vulnerable if a hacker hacks your
MOST Secure: Hardware/Token-based solution token like Yubikey or Gatekeeper
- Hardware (key fob, USB, etc…) eliminates the need for manual login
- Efficient, convenient and secure – no need to create, change, or remember long, secure passwords
- Protects against phishing attacks and keystroke loggers
Everyone knows that strong, unique passwords are an absolute necessity. But with the vast number of breaches, we urge everyone, not just business owners, to employ the use of a password manager. You can use software, like lastpass or roboform, but with breaches becoming just ridiculous at this point, we STRONGLY urge you to invest in a hardware/token-based solution.
Additionally, ALWAYS employ multi-factor authentication (MFA) when offered to you.
Even before this breach, it was only a matter of WHEN, not IF you were going to get hacked, but with this breach, it’s now a matter of “how much longer?” And if you own a business? That time is even shorter; as of this year, 50 percent% of cyberattacks are now focused on businesses.
Source: Petronella Technology Group
About the Author
Craig A. Petronella is the CEO of Petronella Technology Group Inc, a cybersecurity group that specializes in helping law firms with security and compliance. With 30 years of experience, he is the author of “How Hackers can Crush your Law Firm,” Peace of Mind Computer Support” and other titles. MIT Certified: AI, Blockchain & Hyperledger. Phone: 919-601-1601; Helpdesk Support: 919-422-2607. For more information about a cyber-crime risk assessment call: 1-877-468-2721
If you practice in Wisconsin, Texas, Minnesota, Ohio, Illinois, Indiana or Michigan, you can stay on top of ethics and risk management news by being a member of Alta Pro Lawyers RPG. You’ll get access to free webinars, the Pro Practice Playbook, Reminger ProLink, Ask the Risk Pro and more. Here’s how to join.