I am going to tell a story here. ….
There are 5 websites you frequently use. You are a registered member and interact with these websites on various different levels.
Each of these websites has a different level of security.
The bank, has a team of experts and their sole job is to secure their system and your information. When I say team I mean 10-50 people who work full time around the clock on data protection and data security. Your password is 99% safe with them. These guys (and gals) are pros and they know what they are doing.
The credit card company has the same level of security. They have just as many people, doing just as many jobs. Your passwords are 99% safe with them.
Your local florists process credit cards daily. They may be a small outfit with great security. They do not have a team of security experts on staff working 24/7 on account security. They protect your passwords as best they can with the resources they have. They have never had a account breech or a security issue. Your passwords are 75% safe with them.
Your local charity is a non-profit. Mostly staffed by volunteers. They accept donations and conduct business online (it is 2011!) They may be a small outfit with great security. They do not have a team of security experts on staff working 24/7 on account security. They protect your passwords as best they can with the resources they have. They have never had a account breech or a security issue. Your passwords are 55% safe with them.
You go to www.my(insert favorite food)recipes.com each and every week. They have the best food ideas and the people are awesome! You feel like the people on this website are part of your extended family. You feel good just thinking about going on and sharing your secret pancake recipe tonight! This website is ran by a mom who works out of her home. This is a hobby for her and her teenage son put the website up for her. She has no security and no knowledge about security. Your passwords is 5% safe with them.
Each of these websites have the same email and password. You are just too _____ to remember more than one so you use the same one everywhere.
A hacker, password thief, criminal wants to get into your bank account and take all your money. They create a plan and where do they start?
They first try to get into your banks website. No luck. those guys are just too smart.
Then they attempt the same thing with your credit card company. No luck. Must have the same guys working for both.
They try to hack the florists website, but it is tough. Not as secure as the banks but doable. It may take a few weeks, but I’m sure we can hack it, eventually.
While that hack is working in the background the hacker tries your favorite charity. They have recently upgraded their security so this might be tough. We’ll keep working on it though. I’m sure we’ll get in eventually.
This hacker will not be defeated. He is determined to get into your bank account somehow. Robbing the bank is not an option, he’s not that dumb. His last attempt is at mypancakerecepies.com Wow, no security at all. Thy call this security? What a joke!
The hacker is in in less than 2 minutes. Brute force attack, and the entire website is down. He makes a quick copy of everyone’s email, home address, phone number, pets name, IM account, and account password.
Now he uses your mypancakerecipes.com password to log into your pnc bank account. You get a call the next day that a check bounced because you are overdrawn…….
Could this happen to you? Yup. Especially if you use the same account information everywhere.
True story? Yup. It happens everyday. Criminals never sleep. They never stop.
Don’t use the same password everywhere. I know it is a pain to remember, but the bank cannot secure mypancakerecipes.com So they spend all that time and energy on security, and all the hacker has to do is hack the little old lady with no security.