Password for weak sites!

[The Debugger]

In our daily life we have to deal with lots of unsecured sites, some site maintenance is too poor & some are weak, slow & lengthy process to take appropriate attempt!
But cyber criminals don't wait for response, they the advantage of weak security system & dump data from server. well, I am aware of nothing is unbreakable in the sense of security!

I am talking about some weak govt. sites specially as from their we have to put our personal data which can be leaked due to weak security system ( for security reason of course I will not mention the region ) or some personal/ company maintained sites where we need to put our some basic personal data!

My point is what is the safe way to set password of that sites?

From my point of view, maximum data which had already been leaked & available in dark or open market or data breach sites are damped from database (the reason why I am emphasis on this process is that I found some data I found is hard to crack in general pc by brute force of course, even some data is also hard to create as custom wordlist!)

 

My question is what type of password should we set for that sites?
If data leaks & we use 15-20 character complex password it also added to leaked database which means that is not secured in future!


Thanks in advance

[harlan4096]

Welcome to Kaspersky Community.

 

My suggestions: a password longer than 20, with symbols, numbers, upper case and lower case...

 

And of course, We can't do much if the online service was hacked... but We can add 2fA -> authenticators apps.

[The Debugger]

That means you wanted to tell that using strong password & update it with very regular interval would be the solution right?

[harlan4096]

Yes... but keeping in mind, adding 2fA -> authenticators apps for online services...

[nexon]

@The Debugger as @harlan4096 wrote above create unique password. And use different passwords if you have more accounts. Also 2FA is best choice to protect your account. Hackers if have your password still need 2FA which is in your phone. So 2FA is more than recommended.

[The Debugger]

@nexon thanks for the suggestion 
in conclusion I can say that set unique & complex password and change it randomly like within every three will be the key for those weak secured sites for some purpose have to use like govt service and so on! As those sites is not offering 2FA system for security!

[Flood and Flood's wife]

8 minutes ago, The Debugger said:

As those sites is not offering 2FA system for security!

Hello @The Debugger, 

2FA - as @harlan4096 *originally* suggested, is to protect (your) MyKaspersky account.

Read: Use Authenticator &  What's new. 

Thank you🙏
Flood🐳+🐋

[The Debugger]

@Flood and Flood's wife I am not talking about my Kaspersky account security in this thread!

[Flood and Flood's wife]

2 minutes ago, The Debugger said:

@Flood and Flood's wife I am not talking about my Kaspersky account security in this thread!

Hello @The Debugger, 

We understand & that's fine *but* Kaspersky's 2FA is designed to protect the MyKaspersky account. 

Thank you🙏
Flood🐳+🐋

[The Debugger]

I appreciate Kaspersky's 2FA security system 
Also I have send my suggestion to Kaspersky support team for email login notification with ip address which will add extra security layer to the user account!

Hope in future update the developer team add this feature too!

[Flood and Flood's wife]

Hello @The Debugger, 

Thank you for posting back!

There's a *big* topic in the Russian section: Предложения к Kaspersky Password Manager -  Suggestions for Kaspersky Password Manager, now five pages long, with some interesting comments from Kaspersky Technical - the topic may interest you. 

Thank you🙏
Flood🐳+🐋