Home » IT Services News » IT Services News No. 158. July-August 2012 » From the Helpdesk … Security Risks on People Using the Same Passwords on Multiple Web Sites

From the Helpdesk … Security Risks on People Using the Same Passwords on Multiple Web Sites

  1. Introduction
  2. Account Name and Password Problems
  3. Change Your Password

1. Introduction

Have you ever used the same password on multiple web sites? With the explosion of social network web sites and free email accounts, there is a growth in the number of online usernames and passwords that one has to remember.

2. Account Name and Password Problems

According to a survey by ZDNet in September 2011, 60 percent of users use the same password across more than one of their online accounts. Password sharing across different websites presents a security risk because hackers can learn the password from a less secure web site and use that password to compromise the individual’s important accounts including corporate email and online banking accounts.

Using the same password across multiple accounts coupled with the practice of using email addresses as usernames in many web sites adds more security vulnerability as it makes it so much easier for hackers to associate usernames with passwords.

3. Change Your Password

If you are using the same password on multiple web sites, it is highly recommended that you change your practice immediately. One compromised account may lead to all your accounts protected by the same password open to abuse, including your HKU Portal account.

In order to protect your personal information in HKU Portal, you should use a PIN, which is different from all your other passwords, for your Portal account as it is your primary means of securing your account.  You can change your PIN at any time via https://hkuportal.hku.hk  (Campus Information Services > Central IT Services > Change HKU Portal PIN > Change HKU Portal PIN).

Moreover, you are advised NOT to use your @hku.hk or @connect.hku.hk email address to sign up for social network web sites, online web sites, or online subscriptions. Use a non-HKU email address such as Gmail, Outlook.com (Hotmail), Yahoo Mail to reduce the risk of your HKU email address known to third parties.

Should you have any enquiry, you are welcome to contact the undersigned.

 

Agnes Chau
Tel: 3549 5707
Email: achau@hku.hk