I've now changed my password.
Is it possible for me to see a longer history of "Recent Activity"? as it only goes back 3 weeks...
Is "2 Step Verification" the best thing I can do in terms of security?
What happened to those "Secret Questions and Answers" that Hotmail used to have? Does anyone have a Microsoft link for what happened?
I remember that someone I knew actually knew the answer to my "Secret Question" so could that person still have access to my Hotmail account?
Last edited by NiceAndShy; 19 Dec 2016 at 01:02.
Security is a personal preference.
Make sure to use long and complex passwords, at least 20 characters long. Also use a different password for every account/website and change them monthly.
Sometimes websites databases get breached and the usernames/emails with password are in the wrong hands. If you use the same username and password for every website you are totally screwed then.
Don't trust any device that is not yours. Do not log into computers at an Internet Cafe. I would never enter my credentials at an Internet Cafe. Perhaps they have a keylogger installed.
Also use 2FA when available.
About security questions , do not make the answer an actual answer (e.g: My cat is named Mittens) but use a complex password there instead.
Probably a very important one; do not let web browser remember your passwords. It is a piece of cake to extract all the saved passwords/usernames from Chrome with a simple tool.
Last edited by Asuza; 19 Dec 2016 at 06:55.
This is what I'm worried about: Where the hacker is able to login into my Hotmail account without me knowing he has accessed it.
"Review your account information
If someone else got into your account, you want to make sure they didn't use your data or change your settings. Sometimes attackers make back doors into your account so they can still see your information after you reset your password. Use the following steps to review your important settings."
1) If you use a strong password and change it monthly, when are you going to be able to remember it?
2) Changing a password too often generally makes the user pick an "easy to remember", spoken: easy to crack.
Changing Passwords - Schneier on SecurityThe downside of changing passwords is that it makes them harder to remember. And if you force people to change their passwords regularly, they're more likely to choose easy-to-remember -- and easy-to-guess -- passwords than they are if they can use the same passwords for many years. So any password-changing policy needs to be chosen with that consideration in mind.
The primary reason to give an authentication credential -- not just a password, but any authentication credential -- an expiration date is to limit the amount of time a lost, stolen, or forged credential can be used by someone else. If a membership card expires after a year, then if someone steals that card he can at most get a year's worth of benefit out of it. After that, it's useless.
This becomes less important when the credential contains a biometric -- even a photograph -- or is verified online. It's much less important for a credit card or passport to have an expiration date, now that they're not so much bearer documents as just pointers to a database. If, for example, the credit card database knows when a card is no longer valid, there’s no reason to put an expiration date on the card. But the expiration date does mean that a forgery is only good for a limited length of time.
Passwords are no different. If a hacker gets your password either by guessing or stealing it, he can access your network as long as your password is valid. If you have to update your password every quarter, that significantly limits the utility of that password to the attacker.
I have all my password on a yellow sticky note stuck to my computer monitor both at home and at work.
I'm just kidding - it's really stuck to the underside of my keyboard.
Just kidding again.
Does anyone use a "password manager" service?