Close Menu
TechCentralTechCentral

    Subscribe to the newsletter

    Get the best South African technology news and analysis delivered to your e-mail inbox every morning.

    Facebook X (Twitter) YouTube LinkedIn
    WhatsApp Facebook X (Twitter) LinkedIn YouTube
    TechCentralTechCentral
    • News

      Blue Label Telecoms to change its name as restructuring gathers pace

      11 July 2025

      Get your ID delivered like pizza – home affairs’ latest digital shake-up

      11 July 2025

      EFF vows to stop Starlink from launching in South Africa

      11 July 2025

      Apple plans product blitz to reignite growth

      11 July 2025

      Nissan doubles down on South Africa despite plant uncertainty

      11 July 2025
    • World

      Grok 4 arrives with bold claims and fresh controversy

      10 July 2025

      Bitcoin pushes higher into record territory

      10 July 2025

      Cupertino vs Brussels: Apple challenges Big Tech crackdown

      7 July 2025

      Grammarly acquires e-mail start-up Superhuman

      1 July 2025

      Apple considers ditching its own AI in Siri overhaul

      1 July 2025
    • In-depth

      Siemens is battling Big Tech for AI supremacy in factories

      24 June 2025

      The algorithm will sing now: why musicians should be worried about AI

      20 June 2025

      Meta bets $72-billion on AI – and investors love it

      17 June 2025

      MultiChoice may unbundle SuperSport from DStv

      12 June 2025

      Grok promised bias-free chat. Then came the edits

      2 June 2025
    • TCS

      TCS+ | MVNX on the opportunities in South Africa’s booming MVNO market

      11 July 2025

      TCS | Connecting Saffas – Renier Lombard on The Lekker Network

      7 July 2025

      TechCentral Nexus S0E4: Takealot’s big Post Office jobs plan

      4 July 2025

      TCS | Tech, townships and tenacity: Spar’s plan to win with Spar2U

      3 July 2025

      TCS+ | First Distribution on the latest and greatest cloud technologies

      27 June 2025
    • Opinion

      In defence of equity alternatives for BEE

      30 June 2025

      E-commerce in ICT distribution: enabler or disruptor?

      30 June 2025

      South Africa pioneered drone laws a decade ago – now it must catch up

      17 June 2025

      AI and the future of ICT distribution

      16 June 2025

      Singapore soared – why can’t we? Lessons South Africa refuses to learn

      13 June 2025
    • Company Hubs
      • Africa Data Centres
      • AfriGIS
      • Altron Digital Business
      • Altron Document Solutions
      • Altron Group
      • Arctic Wolf
      • AvertITD
      • Braintree
      • CallMiner
      • CambriLearn
      • CYBER1 Solutions
      • Digicloud Africa
      • Digimune
      • Domains.co.za
      • ESET
      • Euphoria Telecom
      • Incredible Business
      • iONLINE
      • Iris Network Systems
      • LSD Open
      • NEC XON
      • Network Platforms
      • Next DLP
      • Ovations
      • Paracon
      • Paratus
      • Q-KON
      • SevenC
      • SkyWire
      • Solid8 Technologies
      • Telit Cinterion
      • Tenable
      • Vertiv
      • Videri Digital
      • Wipro
      • Workday
    • Sections
      • AI and machine learning
      • Banking
      • Broadcasting and Media
      • Cloud services
      • Contact centres and CX
      • Cryptocurrencies
      • Education and skills
      • Electronics and hardware
      • Energy and sustainability
      • Enterprise software
      • Fintech
      • Information security
      • Internet and connectivity
      • Internet of Things
      • Investment
      • IT services
      • Lifestyle
      • Motoring
      • Public sector
      • Retail and e-commerce
      • Science
      • SMEs and start-ups
      • Social media
      • Talent and leadership
      • Telecoms
    • Events
    • Advertise
    TechCentralTechCentral
    Home » In-depth » How to create a bulletproof password

    How to create a bulletproof password

    By The Conversation31 August 2015
    Twitter LinkedIn Facebook WhatsApp Email Telegram Copy Link
    News Alerts
    WhatsApp

    password-640

    Technology brings with it convenience and the benefits of making life easier on many fronts. For example, one can shop or bank from the comfort of one’s own home. But it also makes life easier for criminals who prey on unsuspecting targets.

    Cybersecurity firm Kaspersky Lab says that 64% of South Africans have faced serious threats from criminals. Security firm Wolfpack Information Risk estimates that cybercrime costs South Africans between R2,5bn and R5,8bn annually.

    A study by researchers from Stellenbosch University found that South African password users often lack security-related knowledge, which results in users who tend to “make up their own rules” regarding passwords.

    Some users overestimate their password abilities while others underestimate their vulnerability. Kaspersky Lab reported that at least 20% of South Africans mistakenly believe that their passwords would have no value to cybercriminals and as a result do not take the necessary protective measures.

    Because some people have so many passwords to remember, they choose weaker passwords (such as their pet’s name or favourite colour) that are easier to remember, but less secure. Using the same password for more than one purpose and re-using previous passwords are other examples of poor behaviour.

    The study also found that 65% of respondents were not sure what a “strong” password was. Unsafe practices evident from this study include using personal information when creating passwords, using old passwords or the same password simultaneously for multiple sites, sharing passwords and not changing passwords regularly.

    Creating a strong password
    The researchers make the following suggestions for improved computer password security:

    • Create strong, complex passwords. Do not use information that may be associated with the user (such as personally meaningful words, numbers or dates) and use a combination of alphabetical and numerical characters.
    • Do not use letters sequential in the alphabet, sequential numbers or letters, or numbers consecutive on keyboards (such as “12345” or “QWERTY”). Longer passwords are more difficult to guess. When creating passwords, keep the risk associated with the use of that password in mind. Choose even stronger, more complex passwords for high risk purposes, such as for internet banking.
    • Using passphrases is a safe technique to remember passwords. Passphrases are longer and easier to remember than ordinary passwords. It can include words (or phrases or full sentences) and numbers, both upper case and lower case letters, as well as special characters, for example “Iamthe#1passwOrdcreatOr”.
    • Another secure habit is the use of the mnemonic method, where the user selects a phrase, extracts a letter from each word in the phrase, then adds numbers or special characters to create a password, for example using the phase “I am the #1 password creator.”, the password can be “Iat#1pc”.

    Use only safe techniques to store passwords. Do not write passwords down or keep them in lists that are not password-protected. Rather, use reliable password manager programs such as Dashlane or Roboform.

    Also, make use of the following good password management practices:

    • Do not share passwords
    • Do not re-use old passwords
    • Do not use the same password simultaneously for more than one purpose
    • Change passwords regularly

    Access to personal banking details is usually controlled by passwords. As financial gain is the cybercriminals’ major motive, they use various methods to try to hack or guess passwords to gain access to individual financial accounts.

    In the recent Ashley Madison hacking episode, passwords were part of the information that was hacked by the cybercriminals.

    Phishing is a commonly used attempt in which criminals use e-mails to try to convince unsuspecting victims to disclose personal financial information (such as their account numbers and the passwords used to gain access to it).

    While technology can provide a certain level of protection against some of these attacks, human behaviour remains “the weak link”. When passwords are not properly created (“weak” passwords) or passwords (irrespective of whether they are “weak” or “strong”) are not kept safe, it increases their susceptibility to being compromised.

    There’s good news. The study also showed that South Africans are willing to change their behaviour if they found that their password practices were deemed weak. Given the dangers, password users must realise their vulnerability and empower themselves with the knowledge and capability to make their password secure.The Conversation

    • This article was based on a submission in the South African Journal of Information Management
    • Rika Butler is associate professor in auditing at the School of Accountancy at Stellenbosch University and Martin Butler is senior lecturer in business management and administration, also at Stellenbosch University
    • This article was originally published on The Conversation


    Ashley Madison Kaspersky Lab Martin Butler Rika Butler
    Subscribe to TechCentral Subscribe to TechCentral
    Share. Facebook Twitter LinkedIn WhatsApp Telegram Email Copy Link
    Previous ArticleRegional PC sales tank
    Next Article Electric aircraft: the future of aviation?

    Related Posts

    Kaspersky to shut its US business under pressure

    16 July 2024

    Biden to ban US sales of Kaspersky antivirus software

    20 June 2024

    Illegal crypto mining a huge threat in Africa

    14 December 2018
    Company News

    $125-trillion traded: Binance redefines global finance in just eight years

    11 July 2025

    NEC XON welcomes HPE acquisition of Juniper Networks

    11 July 2025

    LTE Cat 1 vs Cat 1 bis – what’s the difference?

    11 July 2025
    Opinion

    In defence of equity alternatives for BEE

    30 June 2025

    E-commerce in ICT distribution: enabler or disruptor?

    30 June 2025

    South Africa pioneered drone laws a decade ago – now it must catch up

    17 June 2025

    Subscribe to Updates

    Get the best South African technology news and analysis delivered to your e-mail inbox every morning.

    © 2009 - 2025 NewsCentral Media

    Type above and press Enter to search. Press Esc to cancel.