We have a staff member named MAX from one of the three BAT giants in our group. Since people often say that their accounts have been hacked, I asked him about account security.
Many people can't figure out why their accounts were hacked for no reason. MAX summarized the matter from a professional perspective. I posted the relevant content, I believe it will be helpful to everyone.
1: Do not connect to unfamiliar free wifi, and do not scan QR codes randomly to avoid being phished or implanted with Trojans.
Three: Do not throw away old mobile phones and computers at will. Be sure to clear all data. It is best to physically damage storage devices such as memory cards and hard drives.
Three: It is best not to check the "Automatic login" option on a computer that will be used by someone other than you.
Four: When changing your mobile phone number, be sure to unbind it from other accounts.
Five: [Key Point] Refuse to use the same account and the same password on different websites
Especially for banks, online wallets, social networking websites, consumption function websites, BBS forums and five types of websites, account passwords must be distinguished.
Case 1: In the early morning of May 14, the Wuyun vulnerability platform revealed information that the Xiaomi forum had been credential stuffed, including usernames, emails, and encrypted passwords. A total of 8.28 million Xiaomi accounts were leaked. Other websites using the same account and password were also affected.
.
Case 2: On October 19, 2015, Wuyun.com announced that NetEase had leaked information of over 100 million users, resulting in the hacking of iCould accounts of a large number of Apple users. Some users also used the same email account and password registered with NetEase to register for other websites such as Zhihu Douban Qidian.
When their accounts were stolen, many users changed their NetEase passwords after the incident, but other passwords remained unchanged.
Case 3: A famous website showing Japanese romance action art films went bankrupt and was investigated. A large number of registered user information was leaked, and a large number of accounts using the same account and password as the website were stolen.
Every day, websites may be breached, causing user account and password identity information to be leaked. Your favorite account and password may be in the hands of others, so be sure to use different account and passwords on different websites.
Six: Set a super strong password (the password needs to contain at least 8 characters of uppercase and lowercase letters and numbers and special symbols, and more than 10 characters are recommended). Do not display your account and password information in plain text. If there are secondary passwords such as payment passwords in the product line, the payment password must not be used with the login.
The passwords are the same and similar, and the two levels ensure payment security.
Seven: When filling in personal information online, especially on some websites that you know, the less personal content the better, and write it in general terms without being detailed. Avoid being analyzed by personal information social workers with ulterior motives.