How to prevent your Epassporte from getting hacked
 

I've seen some people posting over time talking about their account getting hacked and all money gone, etc etc. So what do you think your solution would be to help prevent this? How was it hacked or hijacked in the first place?

My suggestion to a solution:
Minimum 10 character password. Upper and lower case letters and numbers and shift+number keystrokes. Change the password once a month or once every 2 weeks.

What are some other suggestions? And this could work for other accounts as well.

16 character password :). Dedicate one computer to all your online money handling, AND DO NOT USE IT FOR ANYTHING ELSE. EVER.

I highly doubt the passwords are bruteforced as epass has a system in place
to prevent that. So 10-16chr passwords are as vulnerable as the 8chr ones.

Paypal is offering free SecurID tags. Would be a nice touch.

Simple solution... don't keep money in epass, hit the ATM often.

Its not 1998, no one is using bruteforce. Just keep your PC free of spywares and you will never see trouble.

I like the suggestion of fluffygrrl.

But in case, you cannot afford or have place for another PC .. just use dual-boot (install two OS on same PC) and use one for online money handling.

One tip from me though:

Always use different password for every site you join. For example, password of epass should not be similar to any sponsor's password .. or password of sponsor's account should not be similar to passwords on some boards of stuff .. you got hint anyways.
You might consider using a password manager to handle too many passwords.

Great suggestions. And I like what my bank does. 1st page is login, 2nd page is password and on that 2nd page you have to see your chosen security image and security phrase.

I like what my bank does. You password is only 6 characters but can't be recorded by spyware.

They display a 5x5 cases box with one number from 0 to 9 by box, some boxes staying empty. you just click your password in theses boxes. Trick is they change the background picture every time puting digits in different places so any recording software just sees you punching boxes with no way to know what numbers were displayed for you.
I wish epass would add security like that.
My :2 cents:

what is the best and most "sure" way to find out if you have a keylogger on your computer? i need to check mine

I use Password Administrator to manage my passwords.
http://www.digiquirk.com/

I use Roboform www.roboform.com

99.9% of epass account hacks happen because people are too dumb to not have keyloggers on their PCs

is there a program which you can generate different charracters for passwords?

99.9% of why program owners get their epassporte hacked is they use the same password there as they do in their affiliate program and it is getting hacked. The hacker just gets lucky and gets a bonus.

99.9% of why the average joe gets hacked is because he uses the same password as he used as an affiliate somewhere so when a hacker hacks an affiliate program he also gets the user/pass to the affiliates Epassporte accounts.

This means that most hacking would not happen if you would stop using the same password for everything you do in your life.

I use Quicky Password Generator to create my passes and Roboform to manage them. It's not a foolproof thing, but unique alphanumeric passes are a good idea.

is there any program like this for mac? firefox has this roboform features right?

Apart from the things mentioned by all above of RoboForm:

1) Password manager functionality allowing you to have unique passwords for each site
2) Built-in random password generator

It also:

3) Does NOT use the keyboard, therefore rendering keyloggers useless even if they are installed.

4) It encrypts all data via 256 bit military level AES encryption.

One way to prevent it gettting hacked is posting your login info on GFY. :thumbsup:

Btw howmuch i know if you miss your password on epass 3 times your account is automaticly suspended.Best is to use roboform beacuse it function like anti keylogger.

dont send /receive money from strangers

Roboform has password generator thingy too, i've taken to using that

don't they have a "restrict to 1 ip" login feature or something? Remember seeing an email or thread about it.

if pc have keyloger here about 99% chances what it also have socks proxy installed with keyloger. so - limitation to 1 ip/subnetwork can help - but not at 100%

fethard system - similar to epass - have special passcode generation program for generate access key from number what shown after customer login with his/her login/pass. access key generated using special software provided by company. also they have more harder protection method - hardware usb keys.

Roboform is excellent and with it even if you have a key logger on your PC it cannot detect roboform entering the password.

Unless someone create trojan which targets roboform data then rf users are in big shit.