I’ve read One Man’s blog, where John talks about guessing or brute force attacking to hack your password. The introduction of special characters dramatically increases the time it takes for an automated program to try and guess your password.

John writes about these following great tips.

1. Randomly substitute numbers for letters that look similar. The letter ‘o’ becomes the number ‘0′, or even better an ‘@’ or ‘*’. (i.e. – m0d3ltf0rd… like modelTford)
2. Randomly throw in capital letters (i.e. – Mod3lTF0rd)
3. Think of something you were attached to when you were younger, but DON’T CHOOSE A PERSON’S NAME! Every name plus every word in the dictionary will fail under a simple brute force attack.
4. Maybe a place you loved, or a specific car, an attraction from a vacation, or a favorite restaurant?
5. You really need to have different username / password combinations for everything. Remember, the technique is to break into anything you access just to figure out your standard password, then compromise everything else. This doesn’t work if you don’t use the same password everywhere.
6. Since it can be difficult to remember a ton of passwords, I recommend using Roboform for Windows users. It will store all of your passwords in an encrypted format and allow you to use just one master password to access all of them. It will also automatically fill in forms on Web pages, and you can even get versions that allow you to take your password list with you on your PDA, phone or a USB key. If you’d like to download it without having to navigate their web site here is the direct download link.
7. Mac users can use 1Password. It is essentially the same thing as Roboform, except for Mac, and they even have an iPhone application so you can take them with you too.
8. Once you’ve thought of a password, try Microsoft’s password strength tester to find out how secure it is.

When asked why she had such a long password, she said she was told that it had to be at least 8 characters long and include at least one capital…

A hacker found a personal email account. Similar to the Sarah Palin Yahoo! account hack, the hacker researched social networking sites to find the answers to the “secret question” required to reset the account’s password. In going through the emails in the account, the hacker apparently found the password used for Twitter which was linked to Google.

Therefore, when you are asked secret questions while setting up an account, do not use your mother’s maiden name when asked for your mother’s maiden name. Use nicknames for your mother’s maiden name or question if you really need to have that account created.

The safety of our information at work requires us all to have separate passwords from those in our personal lives. If you have separate passwords for your MySpace and your Online Banking, then great! If your logon to Yahoo! email and your work account are different, then congratulations! You are practicing safe computing!

Identity Theft – Protect Yourselves
Here is a list of ways you can stop identity theft from happening to you:

• Destroy private records and statements. Tear up — or, if you prefer, shred — credit card statements, solicitations and other documents that contain private financial information.
• Secure your mail. Empty your mailbox quickly, lock it or get a P.O. box so criminals do not have a chance to snatch credit card pitches. Never mail outgoing bill payments and checks from home. They can be stolen from your mailbox and the payee’s name erased with solvents. Mail them from the post office or another secure location.
• Safeguard your social security number. Never carry your card with you, or any other card that may have your number, like a health insurance card. And do not put your number on your checks. It’s the primary target for identity thieves because it gives them access to your credit report and bank accounts.
• Don’t leave a paper trail. Never leave ATM, credit card or gas station receipts behind.
• Never let your credit card out of your sight. Worried about credit card skimming? Always keep an eye on your card or, when that’s not possible, pay with cash.
• Know who you’re dealing with. Whenever anyone contacts you asking for private identity or financial information, make no response other than to find out who they are, what company they represent and the reason for the call. If you think the request is legitimate, contact the company yourself and confirm what you were told before revealing any of your personal data.
• Take your name off the marketers’ hit lists. In addition to the national Do-Not-Call registry (1-888-382-1222), you can also cut down on junk mail and opt out of credit card solicitations.
• Be more defensive with personal information. Ask salespeople and others if information such as a Social Security or driver license number is absolutely necessary. Ask anyone who does require your Social Security number — for instance, your insurance company — what their privacy policy is and whether you can arrange for the organization not to share your information with anyone else.
• Monitor your credit report. Obtain and thoroughly review your credit report, now available for free at Annualcreditreport.com or by calling (877) 322-8228, at least once a year to look for suspicious activity. If you spot something, alert your card company or the creditor immediately. You may also want to subscribe to a credit protection service, like Experian’s CreditCheck, which alerts you any time a change takes place with your credit report.
• Review your credit card statements carefully. Make sure you recognize the merchants, locations and purchases listed before paying the bill. If you don’t need or use department-store or bank-issued credit cards, consider closing the accounts.