Stop using default Security Questions... here's why.



Stop using default Security Questions... here's why.


WEB-78
With all the buzz lately about celebrities having their private photos hacked, everyone seems to be focusing on potential hacks into Apple's iCloud by some kind of sophisticated hacking technique or security flaw.

I have news for you, most hackers aren't that sophisticated. It doesn't take a Rocket Scientist to hack any online account. It just takes a few educated guesses to make it past just about every major online site, but here's a quick tip that can protect you....

STOP USING DEFAULT SECURITY QUESTIONS!



That's it?.... WHY?

Before I get into details, let's do some role playing. Let's assume YOU are a hacker. Now, I want you to try to hack into the fictional account of "Mr. John Q. Public". Let's say you know the login ID, such as the email address, but not the password, as a non-technical person... how would you do it?

Most of the time, a site has a link next to the login for people who forgot their password. Bingo. Let's start there. What do you think most sites ask next... dum da dum dum... "Security Questions".

Why Security Questions are a BAD IDEA



I'm not sure what brain surgeon thought that Security Questions were a good idea, but it's a perfect example of a half-baked idea gone wrong. There is NOTHING secure about Security Questions. Simply stated. Security Questions are NOT Secure!.

The big problem with Security Questions is that most of the time, they are way too easy to guess. Even when you guess wrong, you can try again a dozen or so times over the few days and eventually be GUARANTEED to guess the right one.

Examples of some common, but REALLY INSECURE Security Questions



In fact, look at the attached photo to see the entire list of security questions that T-Mobile is using right now to secure their accounts... it's scary.

1. Your mother's maiden name?


Really? Are they nuts, a quick Google or Acestry.Com search can find that in a matter of seconds. If you were a celebrity with nude photos on an online account protected by this gem, you may as well sell them to Playboy first, at least you'll make a few dollars.

The same thing applies to things like "What is the name of your favorite aunt / uncle / cousin, etc" Any security question that asks about names of people in your family is absolutely useless. Don't use them.

2. What was the make of your first car?



Hmmm... that sounds more secure... NOT. If the person you are trying to hack was born in before the 70s, there's a pretty strong chance it was a Chevrolet, Ford, Pontiac, Lincoln, Mercury, Chrysler, Dodge or Plymouth. Yes there are a few others, and even if it wasn't one of those, how many brands of cars are there? Even if you tried 5 brands a day, in 5 days, you would eventually run out of car brands. So, if you've secured anything with with this brain dead question... don't expect them to remain secure.

I've seen one even worse... "What is the make of your first motorcycle?" Really? I mean... REALLY? How long do you think that will take to hack? If I gave you 1 minute to list every brand of Motorcycle you've EVER HEARD OF, I bet you'd run out of brands before 30 seconds even passed. That's how long it would take to hack this one.

What is the name of your favorite sports team?



By now, I assume you know why this is a bad question. Even if you don't assume your target is a fan of their current or past hometown teams, how many professional sports teams are there? Tens of thousands would be pretty secure, but the fact is, there aren't that many, so it doesn't take too long to eventually pick the right one. If you were trying to hack somebody you have never met, start with The Yankees., Red Sox, Giants, Dodgers or Cowboys That'll hack 75% of them.

What's your favorite book



Better... but try not to use The Bible. That's too common.

What was your favorite place to visit as a child



A good friend of mine who needed me to update something in one of his accounts, but couldn't remember his login information. I got this specific winner of a question, so I called him for the answer. I couldn't reach him on the phone, so I typed "Disney". Bingo. Once again... to obvious.


So what can I do?



1. When setting up your accounts, pick the most difficult security questions



Skip any questions like those above that may be easily guessed.

2. If you are given the ability to write your own question... DO IT!



Any time you can create your own security questions, here's your chance to dig deep inside your mind and come up with something only you and you alone could guess.

What if all the questions suck



The simple solution is to give an answer that has nothing to do with the question. So even if it asks "What's your favorite pet's name?", you can give anything as the answer, even a number. As long as you use that answer every time it asks the question, only you will know the answer.





Here's the WORST one I've ever seen. SBLI recently sent me a message telling me they increased the security of their accounts, so I was required to enter 3 security questions. They give you 5 choices, but you have to answer 3... all 5 are horrible candidates for a security question. That's their idea of increased security? Insane.

1. What street did you grow up on? --- Potentially found through public records.

2. What is your mother's maiden name -- Also public records.

3. What is the name of your elementary school. -- Harder, but not impossible, friends and family know this, and some people include their schools in their Facebook posts.

4. What is your favorite color? - Are they kidding... how long would it take to GUESS that? Unless somebody uses an obscure name like "Tapioca White", there's pretty much about 5-10 possible guesses before you get it right. It's actually more secure to ask what's your favorite number between 1 and 10. At least there are 10 possible answers... For men, you can start with Blue, Green, Black... For women, try Pink, Red, Purple.

5. What is your pet's name? - Why? Is that a secret that only you would know? Even if you don't plaster your Facebook account with photos of Fluffy... Don't your friends, family, neighbors know this?


, Founder

Related Media:
Media7Media8Media77

(Reply N/A) (Edit Topic N/A) (Like Topic N/A) [0 ] 5720 Views

Related Posts

Online Security(5)
Security(36)
Technology(83)


Subscribe Via RSS
No Comments

Leave a Comment

Title (optional)
To post your comment, just log in or Instant Register

Instant Registration / Login

Email Address (Required):

You are not logged in.


Top 25 Posts
* Note: The ideas on "Idea of the Day" were posted without any formal research into existing inventions.

In some cases, patents may already exist for these ideas, in other cases, there may not be any existing patents and you are free to develop and explore the viability of developing and patenting the ideas.

The authors make no claim that any of the ideas are safe, practical, or suitable for any particular purpose. You are responsible for the results of trying, developing, patenting or using any of the ideas on this site.

For some people, our ideas are just an interesting read, but our goal is to encourage you to take action. If you see an idea that you like, do something with it... Take action.


- Joe
Subscribe Via RSS


Categories

(1)
Entrepreneur(1)
Entrepreneurs(1)
3D Printing(1)
4K(3)
7-Eleven(1)
Accessories(2)
ACH(1)
Acid Indigstion(1)
Airlines(2)
AirPods(1)
Airports(1)
Alexa(4)
Algorithms(1)
Alka-Seltzer(1)
Amazon(23)
Amazon Alexa(1)
Amazon Echo(7)
Android(13)
Animals(1)
Antacids(2)
App(1)
App Store(2)
App Stores(1)
Apple(160)
Apple Radio(2)
Apple TV(16)
Apple Watch(16)
Apples(1)
Apps(57)
Art(1)
ATM(2)
ATMs(1)
Atticus Finch(1)
Auctions(1)
Audible(2)
Audio(4)
Audiobooks(3)
Auto(1)
Autocorrect(1)
Automation(1)
Automotive(14)
Awareness(1)
Backups(4)
Bacon(1)
Bad Ideas(1)
Baking Soda(1)
Balogna(1)
Bank Fees(1)
Banking(19)
Banks(3)
Baseball(2)
Baseball Cards(2)
Bathroom(2)
Bathrooms(9)
Batteries(1)
Behind the Scenes(4)
Ben Kenobi(1)
Beverages(3)
Big Brother(1)
Big Data(1)
Bing(3)
Bio Foods(1)
Bitcoins(1)
Blog(1)
Bloom County(1)
Bluetooth(5)
Books(2)
Brainstorming(2)
Branding(3)
Bread(1)
Browsers(4)
Bugs(1)
Bumper Guards(1)
Bundleware(2)
Burger King(2)
Business(26)
Business Cards(1)
Business Ideas(2)
Businesses(2)
C-3PO(1)
Cable TV(8)
Camera Makers(1)
Cameras(1)
Car Makers(5)
Car Rentals(1)
Car Wash(1)
Cars(34)
Cash(1)
Casinos(1)
Cats(5)
CB(1)
Celebrity(1)
Cereal(1)
Chat(2)
Checking Accounts(2)
Cheez Doodles(1)
Chewbacca(1)
Children(1)
Chinese Food(1)
Chipotle(1)
Chrome(3)
Chromecast(1)
Clean Streets(2)
Cleaning(2)
Cleanliness(13)
Cleanup(1)
Clinton(1)
Clothing(3)
Cloud(8)
Clutter(9)
Coats(1)
Coffee(1)
Cola(1)
Collaboration(1)
Collectibles(2)
Collecting(2)
Comedy(2)
Comics(1)
Common Sense(27)
Communication(3)
Companies(1)
Compatibility(1)
Computers(1)
Computing(91)
Condiments(1)
Consumers(1)
Content Marketing(1)
Contract(1)
Convenience(1)
Cookies(4)
Cooking(3)
Costco(1)
Coupons(1)
Creativity(5)
Credit Cards(3)
Crime(1)
Cup Sizes(1)
Dance Clubs(1)
Darth Vader(3)
Daylight Savings Time(2)
Debates(1)
Declutter(1)
Delivery(1)
Dell(2)
Design(1)
Dieting(1)
Digital Media(15)
Digital Rights(3)
Disabilities(1)
Disney(2)
DIY(3)
DMV(1)
DNS(1)
Dogs(3)
Domains(4)
Drinks(2)
Driver Safety(1)
Drivers(1)
Driving(20)
Dropbox(4)
Dumping(1)
Dusters(1)
DVD(1)
E-Ink(1)
E-ZPass(4)
eBay(2)
Echo(4)
Education(7)
Efficiency(1)
Election(10)
Elections(1)
Electoral College(1)
Electricity(1)
Electronics(8)
Elevator(1)
Email(32)
Emojis(1)
Encryption(1)
Energy Savings(1)
English(1)
English Language(1)
Entertainment(10)
Entrepreneur(1)
Equality(2)
Ergonomics(1)
Essentialism(2)
Excel(1)
Face Recognition(1)
Facebook(12)
FaceTime(7)
Fairness(1)
Fake IRS(1)
Families(1)
Family(3)
Family Values(1)
Famous Amos(1)
Fans(2)
Fashion(1)
Fast Food(29)
Fax Machines(1)
FBI(1)
FDA(6)
Fear(1)
FedEx(2)
Feedback(1)
Festivus(1)
Finaince(1)
Finance(21)
Fire Prevention(2)
Fire Trucks(1)
FireFox(3)
FitBit(3)
Fitness(1)
Fixes(1)
Flash Drives(1)
Flash Storage(1)
Food(51)
Food Safety(1)
Foodie(10)
Foodies(4)
Fraud(4)
Fun(30)
Fun Fact(1)
Fundraising(2)
Funny(9)
Furniture(1)
Fusion(1)
FYI(1)
Gadgets(6)
Games(1)
Gaming(2)
Garage Band(1)
Garage Doors(1)
Garden State Parkway(1)
Gas(2)
Gas Detectors(1)
Geeks(1)
Generation Gap(1)
Generic Drugs(1)
Gifts(1)
Gluten Free(1)
Gmail(25)
Golf(3)
Google(25)
Google Radar(1)
Government(3)
Government Abuse(1)
GPS(7)
Graphic Design(1)
Greeting Cards(1)
Groceries(1)
GTD(2)
Gun Control(1)
Gun Permits(1)
Guns(1)
Hacking(3)
Hand Dryer(1)
Hand Sanitizers(3)
Hashtags(2)
Hats(2)
HDMI(1)
Headsets(1)
Health(15)
Healthcare(7)
Hearing Aids(1)
HFS+(1)
Hiring(1)
History(2)
Hoarding(7)
Holidays(2)
Home Automation(1)
Home Improvement(9)
Home Theater(1)
Hospitals(4)
Hotels(2)
Household(1)
How-To(1)
Howard Stern(3)
HP(1)
HTML(1)
Hulk Hogan(1)
Human Resources(1)
Hygiene(1)
Ice Cream(3)
Iced Tea(3)
Icee(1)
iCloud(4)
ID Cards(1)
Idea of the Day(2)
Ideas(8)
Identity Protection(1)
Identity Theft(5)
Improvements(104)
Improvvements(1)
Imrovements(1)
Imrpovements(1)
Imrprovements(3)
Inspiration(40)
Instagram(2)
Integrity(1)
Intel(1)
Internet(9)
Internet Of Things(1)
Internet Radio(1)
Internet Trolls(2)
Interpreters(1)
Inventing(1)
Invention(7)
Inventions(64)
iOS(77)
IOT(1)
iPad(9)
iPhone(55)
iPod(2)
Iron Man(1)
iTunes(5)
iTunes Radio(1)
Jackass(1)
James Bond(1)
Java(1)
Jerry Seinfeld(1)
Jobs(5)
Joke(1)
Jumper Cables(1)
Junk(1)
Kaizen(1)
Ketchonnaise(1)
Keyboard(2)
Keyboards(5)
Keys(1)
Keywords(1)
Kids(2)
Kindle(3)
Kindness(1)
Kitchens(1)
Klondike Bars(1)
Kurt Vonnegut(1)
Landline Phones(1)
Language(2)
Laundry(1)
Lawnmowers(1)
Laws(10)
Leadership(2)
Lean(1)
LEDs(1)
Legal(3)
Leonard Nimoy(1)
Libraries(1)
Life Lessons(1)
Light Bulbs(1)
Lightning(1)
LinkedIn(2)
Local(1)
Lottery(1)
Love(1)
Loyalty Cards(3)
Mac(28)
Mac vs Windows(1)
MacOS(8)
Macs(2)
Mailboxes(1)
Management(2)
Manufacturing(1)
Maps(1)
Marketing(5)
Mattresses(1)
McDomalds(2)
McDonalds(18)
Meat(1)
Media(18)
Medical(2)
Medicine(1)
Memorial Day(1)
Memory(1)
Memory Cards(1)
Microsoft(43)
Microsoft Office(3)
Millennials(1)
Mini-Golf(1)
Minimalism(4)
Mission Impossible(1)
Mobile(76)
Money(2)
Money Saving(1)
Monitors(3)
Monty Python(1)
Motivation(1)
Movie(1)
Movies(33)
Mr. Rogers(1)
MTV(1)
Music(6)
Netflix(4)
Networks(6)
New Years(1)
News(6)
Newsfeeds(1)
Newspapers(1)
Nike(1)
Nintendo(1)
NJ(2)
Nostalgia(9)
NTFS(1)
Nursing Homes(3)
Nurtrition(1)
Nutrition(4)
Nutrition Labels(1)
Nuts(1)
OCD(1)
Office Equipment(1)
Office Supplies(1)
Offices(1)
Oldies(1)
Online Security(5)
OpenDNS(1)
Operating Systems(9)
Opinion(10)
Opinions(1)
Oracle(1)
Oreos(1)
Organization(2)
Organizing(2)
OS X(23)
OSX(2)
Overdrafts(2)
P2P(2)
Packaging(2)
Pandora(2)
Panera Bread(2)
Paper Shredders(1)
Paper Towels(3)
Parental Controls(2)
Parenting(22)
Parking(1)
Parking Tickets(1)
Passwords(3)
Patriotism(1)
PayPal(1)
PC(3)
PDF(1)
Peer to Peer(1)
Periscope(1)
Perspective(1)
Pete Rose(2)
Pets(7)
Philanthropy(1)
Philosophy(4)
Phishing(1)
Phone Makers(2)
Phones(4)
Photo Labs(1)
Photography(34)
Photos App(1)
Photoshop(1)
Pizza(1)
Play Store(1)
Playstation(2)
Plumbing(1)
Podcasts(2)
Politics(14)
Pop-Tarts(2)
Popularity(1)
Post-Its(1)
Potato Chips(1)
Power(1)
Power Adapters(2)
Presentations(1)
Price Stickers(1)
Printers(2)
Privacy(13)
Problem Solving(2)
Product Ideas(1)
Product Packaging(1)
Product Safety(1)
Productivity(69)
Productivty(1)
Products I'd Love to See(1)
Psychology(1)
QR Codes(1)
R2-D2(1)
Radio(7)
Ransomware(1)
Rant(3)
Rants(74)
Rants.Cleanliness(1)
Reading(1)
Reality TV(1)
Recipe(1)
Recipes(3)
Refridgerators(1)
Religion(1)
Reminders(1)
Remote Controls(5)
Remote Desktop(1)
Remotes(1)
Renal Cars(1)
Respect(1)
Responsive Design(2)
Restaurants(9)
Restroom(1)
Restrooms(3)
Restuarants(1)
Resumes(2)
Retail(2)
Reviews(2)
RFID(1)
Ring Tones(1)
Rip Offs(9)
Rip-Off(1)
Rip-Offs(5)
Rodney Dangerfield(1)
Roku(1)
Running(1)
Safari(2)
Safes(1)
Safety(40)
Samsung(2)
Saturday Night Live(1)
Scams(1)
ScareWare(1)
Schools(3)
Science(5)
Science Fiction(8)
SD(1)
Search Engine Results Page(1)
Search Engines(9)
Security(36)
Security Questions(1)
Seinfeld(1)
Self-Driving(1)
Self-Driving Cars(2)
Selfie Sticks(1)
Senior Citizens(1)
SEO(3)
SERP(1)
Services(6)
Shaving(2)
Shipping(5)
Shoes(5)
Shopping(3)
Shopping Carts(1)
Silica(1)
Singers(1)
Siri(9)
Sirius XM(1)
Skills(1)
Skype(2)
Slot Machines(1)
Slurpee(1)
Smart Devices(1)
SmartPhone(3)
Smartphones(1)
Smoke Alarms(1)
SMS(1)
Snacks(2)
Snapple(2)
Snow(2)
Snuggies(1)
Social Experiment(1)
Social Media(30)
Soda(3)
Software(2)
Software Development(1)
Sony(2)
Spam(8)
Spamalot(1)
Speakers(2)
Sports(10)
Sportsmanship(1)
Spyware(1)
Staples(1)
Star Registries(1)
Star Trek(4)
Star Wars(27)
Starbucks(1)
Stickers(1)
Sticky Notes(1)
Storage(4)
Stormtroopers(1)
Stoves(1)
Streaming(4)
Students(1)
Subscriptions(3)
Subway(2)
Success(1)
Sunglasses(1)
Swiffer(1)
Tablets(1)
Talk Shows(2)
Target(1)
Tattoo(1)
Teamwork(1)
Tech(7)
Technology(83)
Techology(1)
Telemarketers(1)
Telemarketing(1)
Temp Files(1)
Tesla(2)
Texting(11)
Thanksgiving(1)
The Far Side(1)
The Internet Of Things(1)
The Tile(1)
Theaters(1)
Thunderbolt(1)
Time Capsule(1)
Time Management(1)
Tip(1)
Tips(30)
Tires(1)
TLDs(1)
Toilets(2)
Toll Booths(1)
Toll Plazas(1)
Toll Tags(4)
Tolls(3)
Tom Cruise(1)
Tonight Show(1)
Tools(2)
Towels(1)
Toys(2)
Traffic(2)
Translators(1)
Traps(1)
Travel(4)
Trivia(1)
Trump(3)
Tutorial(1)
TV(26)
TVs(1)
Twinkies(1)
Twitter(7)
Two-Step Security(1)
Uber(7)
Umbrellas(1)
Unfair(1)
UPS(3)
USB(4)
USPS(3)
Van Halen(1)
Vegans(1)
Video(4)
Video Conferencing(1)
Video Games(3)
Videography(5)
Videos(2)
Virtual PCs(2)
Virus(1)
Viruses(1)
Visual Studio(1)
Vlogging(8)
Voice Recognition(1)
Voice Recorders(1)
Voicemail(2)
Volunteering(1)
Voting(2)
Vudu(1)
Walking Dead(1)
Walmart(1)
War(1)
Washing Machines(1)
Waste(1)
Watches(1)
Water(3)
Web(13)
Web Design(2)
Website(4)
Websites(1)
WiFi(2)
WiFi Toilets(1)
Wii(1)
Windows(49)
Women(1)
Words(2)
Workplace(1)
Writing(2)
WWE(1)
XBox(1)
Yard Sales(1)
Yellow Pages(1)
Yoda(1)
YouTube(16)
Zen(1)
Zip Files(1)
Zombies(1)

Recent Activity

30 last Posts
(Originals)