The CEO Forum – July 2019

How long do you think it would take a hacker to crack your current passwords?

On average, it takes a hacker about 2 seconds to crack an 11-character password that only uses numbers. See the attached chart that illustrates the time it takes for a hacker to brute force attack your password. A brute force attack is when cybercriminals use trial and error to guess your details. Cybercriminals currently use sophisticated software that can run thousands of password combinations in a minute, but their technology and resources are only getting stronger.

A general rule is that your password should be at least 11 characters, utilizing both numbers as well as upper and lowercase letters. That combination will take hackers 41 years to crack. Regardless of the possible variations, the shorter your password, the easier it is to crack. Check out how long it will take a hacker to crack your password at https://www.security.org/how-secure-is-my-password/.

Lastly, simplify and secure your accounts by using a password manager that creates and stores all your passwords for you.

Strengthen your password security with the following tips:

• Prioritize the length and complexity of your passwords.
• Don't use personal information. This can be publicly available and easily accessible by hackers.
• Avoid using dictionary words as passwords. Cracking tools can easily process every word in the dictionary.
• Don't reuse passwords. If one account is breached, your other accounts would be vulnerable as well. Rather, use password managers, which are a convenient and secure way to manage complex passwords on multiple platforms.
• Use multifactor authentication (MFA or 2FA) for especially sensitive accounts.
• Avoid typing passwords while using public Wi-Fi. Instead, use a VPN or avoid websites that require your login information.

Tax-related fraud and identity theft have continued to grow, with millions of people becoming targets. Scammers need little more than your Social Security number and other general information to file a fraudulent tax return and hijack your tax refund. Taxpayers typically don’t discover the fraud until they attempt to file their own returns, which is why it's essential to file taxes as soon as possible. At the same time, you may want to confirm the appropriate timing with your tax professional. Although 1099s are due by the end of January, custodians may correct 1099s throughout February. If drastic changes happen to a 1099 after you file your taxes, the change can severely impact the amount you owe.

Here are some helpful ways to prevent your SSN from being compromised:

• If you have been a victim of identity theft, complete  IRS form 14039, identity theft affidavit.
• Respond immediately to any IRS issued notice once you verify the authenticity of the notice. You can do so by calling the IRS directly at 800-908-4490 or setting up your  online account.
• Get an Identity Protection PIN: a 6-digit number that prevents someone else from filing a tax return using your Social Security number or individual taxpayer identification number. Only you and the IRS know the IP PIN.