Millions of Android and iPhone owners are being told to use passphrase trick

IF you are still using regular passwords, stop. There might be a better way.

Security experts are now urging phone owners to consider using so-called “passphrases” instead.

Try passphrases: It’s a smart way to make sure you’re using strong passwordsCredit: Getty

When creating a password, you are generally advised to avoid isolated sentences and choose random characters instead.

But cyber experts say you can use a combination of phrases to create easy-to-remember and extremely secure passphrases.

However, it is important that you follow strict rules when creating them.

“You should use strong passphrases to protect your online accounts from unauthorized access,” warned Tim Tran of Keeper Security.

“Your online accounts provide access to your sensitive information that cybercriminals can sell on the dark web or use to commit identity theft.

“Using a weak passphrase makes your online accounts susceptible to password-related attacks and can put your accounts at risk.”

For example, Keeper Security gives the example of: charger-8brocoli-mordor-Penny-bottle as a passphrase.

However, make sure you never use this specific passphrase as it is now public.

SENSE THE ROOF

There are some important rules you shouldn’t break when using passphrases.

‘You can’t see the secret box’ on websites that steal your passwords and credit cards – stop using the common feature immediately

For starters, you should never use personal information, such as names of family members, important dates or sports teams.

Also avoid using popular phrases such as song lyrics or nursery rhymes.

You should also avoid theming your passphrases.

“A strong passphrase does not contain words that correlate with each other,” Tran warned.

“For example, adding a theme to your passphrase, such as fruits, makes it easier for cybercriminals to guess.”

Another golden rule for passphrases – and passwords in general – is to never reuse them.

Make sure each passphrase is completely unique, otherwise a single hacking attack could lead to several of your accounts being taken over.

Other password rules also apply, where you’ll want to include a mix of capital letters and numbers – and make sure it’s at least 16 characters long.

And finally, even though passphrases are easier to remember, it’s still worth saving them in a password manager.

LOCK AND KEY

Ultimately, security experts say that both passwords and passphrases are flawed.

That’s why many apps and services are now moving to an entirely new type of login method called access keys.

If you iPhone or an Android phone updated to the latest software, you may come across some of these apps or websites offer you the opportunity to register or log in using access codes.

These are alternatives to passwords that can’t be leaked or accidentally given away – and can’t be easily created or reused.

They typically use a biometric authentication system on your phone, such as Apple’s Face ID or a fingerprint scanner.

So if you see the option to create a passkey, consider trying it out. Security experts say it is much more secure.