FORM CRS & ADV 2A
MEET WITH AN ADVISOR
Life Planning Advice

The Importance of Password Security

By
June Adams
May 10, 2021
Share on:

Weak passwords can compromise the best security tools and controls. With a never-ending list of applications and services that users and consumers access, people may have dozens of passwords to maintain at any given time. Often, the temptation to use familiar terms such as pet names, favorite teams or the names of children or friends can cause risk since much of those details can be discovered by a simple examination of social media.

Creating strong passwords offers greater security for minimal effort. Weak passwords can compromise the best security tools and controls. With a never-ending list of applications and services that users and consumers access, people may have dozens of passwords to maintain at any given time. Often, the temptation to use familiar terms such as pet names, favorite teams or the names of children or friends can
cause risk since much of those details can be discovered by a simple examination of social media.

Under Lock and Key
You can buy a small padlock for less than a dollar—but you should not count on it to protect anything of value. A thief could probably pick a cheap lock without much effort, or simply break it. And yet, many people use similarly flimsy passwords to “lock up” their most valuable assets, including money and confidential information. Fortunately, everyone can learn how to make and manage stronger passwords. It is an easy way to strengthen security both at work and at home.

What Makes a Password ‘Strong’?
Let’s say you need to create a new password that’s at least 12 characters long, and includes numerals, symbols, and upper- and lowercase letters. You think of a word you can remember, capitalize the first
letter, add a digit, and end with an exclamation point. The result: Strawberry1!

Unfortunately, hackers have sophisticated password-breaking tools that can easily defeat passwords based on dictionary words (like “strawberry”) and common patterns, such as capitalizing the first letter.
Increasing a password’s complexity, randomness, and length can make it more resistant to hackers’ tools. For example, an eight-character password could be guessed by an attacker in less than a day, but a 12-character password would take two weeks. A 20-character password would take 21 centuries. You can learn more about creating strong passwords in your organization’s security awareness training. Your organization may also have guidelines or a password policy in place.

Why Uniqueness Matters
Many people reuse passwords across multiple accounts, and attackers take advantage of this risky behavior. If an attacker obtains one password—even a strong one—they can often use it to access other valuable accounts.

Here is a real-life example: Ten years ago, Alice joined an online gardening forum. She also created an online payment account and used the same password. She soon forgot about the gardening forum, but someone accessed her payments account years later and stole a large sum of money.

Alice did not realize the gardening forum had been hacked, and that users’ login credentials had been
leaked online. An attacker probably tried reusing Alice’s leaked password on popular sites—and
eventually got lucky.

Guarding Your Passwords & PINS. Passwords and PINS protect sensitive data and it's critical to keep them safe. Try these best practices to stay protected.

1. Do not write them down – Many make the mistake of writing passwords on post-it notes and
leaving them in plain sight. Even if you hide your password, someone could still find it. Similarly, do
not store your login information in a file on your computer, even if you encrypt that file.
2. Do not share passwords – You cannot be sure someone else will keep your credentials safe. At
work, you could be held responsible for anything that happens when someone is logged in as you.
3. Do not save login details in your browser – Some browsers store this information in unsafe
ways, and another person could access your accounts if they get your device.
4. Use a password manager – These tools can securely store and manage your passwords and
generate strong new passwords. Some can also alert you if a password may have been
compromised.
5. Never reuse passwords – Create a unique, strong password for each account or device. This
way, a single hacked account does not endanger other accounts.
6. Create complex, long passwords – Passwords based on dictionary words, pets’ names, or other
personal information can be guessed by attackers.

 

 

 

You may also like:

Estate Planning Advice

Estate Strategies: Critical Elements of an Estate Plan

By
Mike Loo, MBA
February 23, 2021

With proper strategies, you may be able to maximize your opportunities and help manage stress and confusion for your loved ones. Learn the critical details to address when creating your own estate strategies. We're here to help.

Download your free ebook to learn more

Read more
Life Planning Advice

5 Questions to Ask Your Financial Advisor

By
Steve Hartel, MBA, AIF®
April 24, 2018

Congratulations. You’ve decided to work with a financial professional to help improve your financial situation. How do you find a good one? Unfortunately, that’s harder than it sounds. There is a huge barrier between people seeking good financial advice and professionals offering it. Advisors can be found in the yellow pages (Millennials, you might have to Google that), on various online sites, by answering incoming phone calls, by asking your friends and neighbors, or any number of other ways. Personally, I believe a referral or introduction from an existing client is the best way, but that could be another entire article. Here are some suggested questions you should ask a prospective advisor.

  1. Start by asking yourself what kind of help you think you want and/or need

Are you just seeking help with your investments? How about someone who will be the “quarterback” of your entire team of professionals (tax preparer, estate attorney, bookkeeper, banker, investment manager, etc.)? Are you looking for someone who simply suggests things for you to go do by yourself (what I call the “travel agent” model), or someone who will give you advice and then help you carry it out (what I call the “Sherpa” model)?

The answers to these questions will determine what kind of professional to seek out. I know some of you are thinking, “Wait—aren’t they all the same?” Trust me; the answer is an emphatic “NO”! One of the best ways to determine what type of professional someone is, is by asking about their credentials.

  1. What are your credentials and what do they mean?

Anyone can call themselves a financial advisor. A stockbroker, a life insurance agent, a mutual fund sales rep, an annuity salesperson, a banker, a mortgage broker. Seriously, there are no rules for the title Financial Advisor. The title Financial Planner, on the other hand, has very definitive rules. There are only two kinds of people who can legally call themselves a planner. One group took classes, passed some exams given by an industry group, and received the Certified Financial Planner (CFP®) designation. The other group took classes, passed some exams by a governmental group, and received their Series 65 or Series 66 registration. These folks are called Registered Financial Planners, although that moniker hasn’t caught on yet the same way the CFP® has. Both of these groups can legally charge you a fee for giving you advice.

You might also encounter professionals who received a Series 6 registration (this allows them to sell you a mutual fund) and/or their Series 7 registration (commonly called the stockbroker license). You will also encounter people who have some combination of these.

Someone who only has a CFP® can give you advice but can’t help you execute it. These are the “travel agents” I referred to. This might be a good choice if you want to pay for advice but then go do everything yourself. Another example might be people who hire a personal trainer at the gym one time to teach them the right exercises to do; then they go do them by themselves.

Someone who only has a Series 6 or 7 registration can sell you products for a commission, but they can’t give you any advice. Let’s call them “luggage salespeople.” This might be good for people who don’t want professional advice, make their own decisions, and simply need to buy financial products in a transactional relationship with a salesperson.

Someone who has their Series 65/66, or has their Series 6/7 and 65/66, or who has their CFP® and Series 6/7 and/or 65/66 can perform the “Sherpa” function of going on the journey with you and helping you implement the advice. These are good choices for someone who recognizes the value of professional advice and knows they need a little extra help with actually getting things done (or want that extra accountability). Think people who hire a personal trainer at the gym and see them week after week. In my experience, clients of these professionals make the most consistent progress toward their long-term goals.

  1. How will I be charged? How do you get compensated?

Sometimes those are the same question and sometimes not. Does the professional make a commission when you buy a product? If so, how much is it? Do they charge an hourly fee, a monthly fee, or a one-time flat fee? Is the professional paid a fee based on the size of your invested assets? What is that fee?

If you are buying products, are there any fees built into the products themselves? How much? Are the fees for the product clearly spelled out or are they buried internally?

Will ALL of your fees be clearly itemized on your statements? Ask to see an example.

  1. What services do you provide?

This should line up with your answers to Question #1. Don’t make any assumptions here. Make sure the service you are seeking is actually provided by the professional you are interviewing. The professional might want to sound like they can do everything for you. For example, a stockbroker can open an IRA for you, but that’s not the same thing as doing retirement planning for you. Be clear.

  1. Are you a Fiduciary?

Due to a recent regulatory change, this is the new industry buzzword. There are multiple standards of care in the financial services industry. One is the “suitability” standard. Professionals who do not give advice are held to this standard. They need to show that the product is appropriate for someone in your situation, but they don’t have to disclose their compensation or prove that the product they recommended is actually in your best interest. If there were two products that both accomplished the same thing, but one resulted in the professional receiving higher compensation, the professional doesn’t have to tell you that.

The other standard is the “best interest” standard. People held to this standard are fiduciaries. They must always act in the client’s best interest. If they sell you a product, they must demonstrate that it is in your best interest rather than their own.

Conclusion

I’m a Sherpa, so I naturally believe that’s a better choice for most people seeking professional help with their finances. My fees are very clear and, they appear right on the statement or contract signed by the client. I think hidden fees should be avoided at almost any cost. My clients hire me on an annual basis to be their DecisionCoach. I give them advice, I help them make better financial decisions over time, and I help them implement the advice. Depending on the client, I might be helping with organization, cash flow, investment management, budgeting, retirement planning, college planning, income planning, tax mitigation, asset protection, insurance, advanced medical expense planning, estate planning, and much more. Are you looking for a professional like me?

Read more

Get Started on Your Financial Life Plan Today