Given the iTunes account hacks last week, and again yesterday, we figured it was a good time to go over the basic ways you can reduce the chances of having your own iTunes -- or any other -- account hacked.
Sure, many of you regular readers already know all this, but take it as an opportunity to forward the link on to friends, family, and co-workers who might not.
Note, we're not security experts, these are just the tips and tricks we use to make our own accounts more secure, and some of the things we've learned -- sometimes the hard ware -- to avoid.
A weak password is one that's easy to guess, never mind actually spend time and effort hacking. Avoid them at all costs.
Using a short phrase gives you a good length of characters but is easier to remember than a random string. Capitalizing the words lets you vary the case, putting dashes or underscores between words and/or replacing some letters with similar looking numbers or symbols gives it a lot of strength without making it much harder to remember. Adding a little variation means if they somehow still get one, they don't get them all.
The easiest way to get anyone's password is to ask them for it. Get in the habit of never, ever, answering. No reputable company will ever ask you for your password, even for their site. Apple will never, ever ask you for your iTunes password.
They won't ask you to tell them your password. They won't send you an email with a link telling you to click it and login to your account, verify your account, or change your password. (And if they do, they shouldn't -- ignore it anyway). And iTunes accounts are managed in the iTunes application, not on webpages. Don't ever enter your iTunes password on a web page (it's most likely fake).
The above is all good, general purpose advise that will prevent most of the common ways your iTunes -- or any other account -- could be hacked. The nastier stuff involves viruses that infect your computer and spyware that tries to steal your information.
If you're running Windows, make sure you're also running Windows Update religiously, have a good anti-virus and anti-malware program installed (Microsoft's free internet security suite is great), and keep following the advice above (especially the advice about not clicking links in emails).
Here's where we apologize for scaring you slightly -- there's all sorts of nasty stuff out on the internet. If you visit sketchy websites, get your music, movies, and software from less than legitimate online sources, etc. you probably know the dangers already, but bad guys can infect even good sites so it pays to always be careful. DNS cache poisoning, keystroke loggers, man-in-the-middle attacks, and similar dangers are out there just waiting to try to separate you from your credit card information.
If you think you've been infected, if you haven't been doing your updates or you have been visiting sketchy websites, if you system is running slower than it ought to be, if things popup randomly or start and stop working all the time without explanation, do yourself a favor -- find the smartest, tech savvy-est family member, friend, or co-worker you can and have them take a look at your PC.
Worst case scenario, if you're infected, they can help you back up your data, re-format clean, and re-install your system. Then lock it down with automatic updates and that anti-virus and anti-malware software we mentioned above, and help you reset your passwords.
Hey, since we're an iPhone and iPad site, we'll just mention that -- so far -- you're safer doing your internet browsing and shopping on an iPhone or iPad than you are a Windows PC.
It absolutely won't protect you from weak passwords or phishing scams but as of this writing there isn't the malware -- virus and spyware -- problem on iOS that there is on Windows. And while iPhone and iPad can't do everything a computer can do, they can do a good portion of the most common things.
There are also a lot of dedicated apps you can use instead of the internet, including the iTunes and App Store apps. Those are currently harder to fake.
This is our best advice, to the best of our current knowledge. We can be wrong and things can change fast. Luckily a lot of smart people read TiPb and there's a good chance they'll correct, expand, and update what's written here in the comments below. We'll agree to weed out anything off-topic if you'll agree to give them a quick glance for important new information, deal?