Originally Posted by 1010001011001
Thanks for the feedback guys. I use the same password or a similar password on different sites. So far i have changed passwords on sites such as Google and Hotmail and eBay. I have changed my Facebook password and have deactivated it if it helps. And i will be looking into reporting my credit information (i use my folks cards because i do not own one)
I have only bought from one store online recently and that's the only site that has valuable credit info. All other sites i used in the past contain only expired credit information.
What should i do about sites such as this one, toms, etc?
I have scanned my PC multiple times with the Microsoft security essentials scanner and nothing has come up. Is that scanner even reliable? I have also used cCleaner to clear all saved passwords from my computer.
I really appreciate the help fellas
Hey heres a general idea:
1) never use a password that can be looked oin your Facebook page example : your dogs name plus your birthday , college+anniversary etc
2) have 3-4 mayor passwords: 1) banking (most complex), 2) for personal email 3) for access email (this email is for newsletter and forums and anything that requires registration) 4) one for socialmedia 5) one for apps (itunes, etc)
3a)preferelly over 9 Characters including upper lower and symbols, substituting vowels for numbers is not efficient nor adding numbers in the froint/end of the word: example Firefox is as weak as F1r3f0x which is as weak as Firefox13. This is due of it being a commonly practice and therefore having the numbers substituting vowels is now included in part of the dictionaries. (fastest way to hack you)
3b) Best password practices: make a phrase into a password example: "When i was in college our football team won its 10th championship" this should become : WIWICOFTWI10thC then add complexity : WI\/\/1C,oftwi10TH!C! note that the second "w" is actualy "\ / \ / "
4) sometimes those alerts are not necesarily a access its an alert that somebody attempted to attackyou with a dictionary/breuteforce attack.
5) you can set up device trust, or access verification to your facebook . AKA it send syou a text for validation if the device is not recognice (or the ip/mac)