Why would you share login & password with someone?
Passwords and login details are something that we should guard at all times. Any unauthorized pass to this data means the holder can access and exploit other parts of one's life. Still, there are situations where you must know how to share passwords securely.
It is a general problem for a business environment where freelance workers and remote team members receive access to a shared social media account, online banking, or another tool or software account.
Also, in romantic and family relationships, subscription services like Netflix, Spotify, and Amazon allow users to have different sub-profiles.
Entering these with one shared password is convenient when more than one person needs to use that account at any time. However, this must be safely done so that the online activities of all those involved are not compromised.
What’s wrong with quick & dirty password sharing?
Distributing your password hastily via email or messaging services is unsafe since these channels are not encrypted. Cybercriminals can intercept private information with relative ease in this way.
Besides this, often the message will never disappear and the shared password will always be on the email services or the messaging services. This means it is not only now, but forever in the future they have to be secured.
The best thing is to prepare in advance and have a proper sharing strategy in place.
Why is it important to share logins & passwords securely?
A password in the wrong hands can lead to threatening data breaches. Many studies have concluded that most people use the exact login details across most of their accounts. This is, of course, due to convenience as it eliminates the need to remember or store multiple passwords.
However, such a practice is hazardous. If a malicious individual knows one password, they could access various other vulnerable accounts. So, a simple login can unlock vast amounts of valuable data. Thus, securely sharing logins and passwords retains the data integrity of those involved.
Password managers. Are they safe?
For the most part, password managers are relatively safe. However, they are only as effective as the computer or device you installed them on.
Malware or viruses can wreak havoc, accessing the master key of a password manager and all associated passwords.
Hackers have also been known to attack the corporations that offer such services. Still, an online encrypted password manager can be beneficial and safe with the right extra security features.
They allow you to store multiple logins in one place, which you don’t need to remember individually for website credentials. This software will autofill this information during logins and update it where necessary.
Also, these applications suggest strong passwords for each account and use advanced encryption, decreasing the chances of cybercriminals seeing your password.
However, here are some other things to put in place:
You should ensure that all your software is updated regularly.
A good antivirus program with a firewall is essential.
You should never install untrusted or unverified third-party software and browser extensions.
You still need some extra security measures when sharing access with someone.
How to find the best password manager for your business?
Here are the main factors to consider:
- Safety features
Security should be anyone’s primary motivation for using a password manager in the first place.
A secure password manager software will adhere to the latest preventive measures like multi-factor authentication (facial recognition, fingerprints, one-time PINs via email/SMS, authenticator apps, etc.).
Some managers even support hardware security keys (but these are costly and may not suit all enterprises).
- Device compatibility
Your manager goes wherever you or the business goes. So, it needs to work across multiple computer devices (desktops, laptops, tablets, and phones) and the most commonly used operating systems (Windows, Mac, Linux, Android, iOS, etc.).
- Easy-to-use interface
Any software application should be user-friendly.
Last but not least is the cost. A business will need to consider paying for a subscription to access all the service’s premium features that aren’t available on a free plan.
Yet, it should ensure the cost is within their budget constraints.
Can you share passwords over email or messenger safely ?
In most cases, email providers and instant messengers do not have encryption. So, disclosing any sensitive information via these channels is unsafe.
However, you may share secret words through these channels, particularly in the workplace. The best thing is to use an application that ‘self-destructs’ a message after a certain period.
For instance, Gmail has a confidential mode. This feature prevents forwarding, copying, printing, and downloading messages and attachments. A message has a set expiry time (after which it becomes unreadable), and you need a verification code to open it.
Still, this technique is not 100% foolproof, as someone nearby could take a screenshot. In other cases, malicious software can download the message without you knowing. It’s also a little laborious and time-consuming. And you have to trust Google, who has had notoriously bad data leaks.
Fortunately, there is a better and more elegant solution with Duckist.com.
Why share logins & passwords safely with Duckist?
Duckist is a free, simple, and beautiful secure password sharing software. This service is not a password manager alternative but makes sharing passwords and other secret messages easy with peace of mind.
Usually, when you wish to share logins with someone else, you can use word of mouth or a service like LastPass (which was sadly hacked again recently). This proves that very few conventional tools are fail-safe.
The verbal channel is old-fashioned. Plus, you rely on the recipient to accurately remember or note the secret word in a covert place.
Password managers are an alternative. However, getting accustomed to the interface may take some time, not to mention installing an application and repeatedly logging in to use it. Most people just don’t do it as they’re busy making sure their business runs.
Duckist is the happy medium, combining the ease of verbal sharing with the security of a password manager. You don’t need to download any application, register for an account, or provide personal information.
Users type ‘duckist.com’ into their browser and input the message they want to conceal. Duckist then produces an encrypted link that you can copy and paste onto an email or messaging app.
Once viewed by the recipient, the message ‘self-destructs’ to ensure no one else sees it. Even when observed by a potential intruder they would only see an expired link.
Password security 101
Are passwords secure?
Passwords can protect you from unauthorized access, provided you follow the best practices. Nowadays, with the insecurities that hackers have exploited, it has become necessary to use two-factor authentication as an extra security layer.
What is password strength & how to test it?
Password strength describes how unpredictable and compelling a secret word is against brute-force guessing. A highly complex secret word makes it very unlikely for someone to tell to the tee.
You can use many free online checkers to test your password’s strength according to its length, the character set used, and predictability. Some sites you sign up to have a similar feature as well.
What is password security?
Password security is a framework of policies, technologies, and processes to make passwords more secure.
What is the safest password in theory?
The most robust password is carefully designed so that it would be impossible to guess even after countless tries. It requires decent length and combines random alphanumerics, special characters, and unusual phrases.
What are password security best practices?
The longer your password is (at least eight characters), the better.
Avoid using common or easy-to-guess combinations.
Combine special characters, numbers, and letters into your password.
Use different passwords for each of your accounts.
Stay away from using passwords in unsecured Wi-Fi hotspots like internet cafes, libraries, or airports. Moreover, avoid entering passwords in computers you don’t control.
Ensure that no one ever sees you entering your password.
Your computer or mobile device should be regularly updated, protected with the latest antivirus program, and not have third-party software from untrusted sources.
You can check whenever your password has been compromised and change it immediately if necessary.
Where possible, use two-factor authentication for your accounts.