Even - perhaps especially - unimportant sites can open doors to your more important ones.
When it comes to sites that I only rarely use, and don’t consider important, I’m typically far more likely to end up (re)setting those passwords to something memorable, and thus something easily hacked. Complicated passwords need not take two tries to type.
#1password mfa password
One last bonus is that using a password manager is a heck of a lot more convenient. Passwords still don’t completely work, but this is probably the best band-aid there is. Thanks to Troy Hunt’s Have I Been Pwned, Watchtower will alert you if any of your passwords show up in a breach so you can change them. I chose 1Password because of their Watchtower feature. Using 1Password specifically has another, decidedly obvious, advantage. I’ll still need to remember one, long, complicated master password - 1Password uses this to encrypt my data, so I really can’t lose it - but I can handle just one. Since I’ve next to no hope of remembering a dozen variations of p/q2-q4! (I’m not a chess player), this is a task I can outsource to 1Password. So passwords don’t matter, but complicated passwords are still better than memorable and guessable ones. TL DR: our brains aren’t better at passwords than computers, and please use MFA. In more recent times, Alex Weinert expanded on this in Your Pa$$word doesn’t matter. Troy Hunt figured out almost a decade ago that trying to remember strong passwords doesn’t work. To figure out if putting all my passwords into a password manager is more secure than not using one, I set out to see what some smart people wrote about it.įirst, we need to know a thing or two about passwords. You know what’s great for irrational reactions? Education. I’ve historically avoided password managers because of an irrational knee-jerk reaction to putting all my eggs in one basket.
Here are three changes I’ve made that significantly reduce the chances of needing to fiddle with any of these things again. These fiddly things include resetting forgotten passwords, transferring multifactor authentication (MFA) codes when I change devices, and dealing with the fallout of compromised payment details in the event one of my accounts is still breached. Implementing proper cybersecurity measures can be fiddly, and I especially dislike fiddling with things that I could avoid fiddling with. Thankfully, most of the work necessary to keep up our cybersecurity measures can be outsourced. These areas only become an obvious problem when it’s too late for prevention. When humans are busy and under stress, we tend to get lax in less-obviously-pressing areas, like the security of our online accounts. Unstable times are insecure times, and we’ve already got enough going on to deal with. Take some work off your plate while beefing up security with three changes you can make today.
0 kommentar(er)
