A password manager can do all the hard work for you
A strong password is just one part of the equation, though. You need to use a unique, strong password for each of your accounts. While your new password is certainly hard to crack, you should never use it more than once. Cracking your password isn’t the only way to figure it out. If a clumsy company gets hacked, your password could be leaked. Once that happens, hackers will test your password with all the accounts they can think of, and, if you’ve reused it, there goes your security.
Advertisement
Using a unique password for all accounts, therefore, is the best approach. You don’t need to go through the steps above for all of your logins, though. If you use a password manager, you only need to worry about this password procedure once. A password manager, like Bitwarden or LastPass, can create strong, unique passwords for each of your accounts automatically, and store them in an encrypted folder only accessible by a master password. You just need to make one strong, unique password to remember, and you’ll have access to your entire library of passwords at any time.
If you’re looking for recommendations to get started, check out our list here.
A password is only good until someone figures it out
OK, so we know to keep our strong, unique passwords in a password manager, protected by one strong and unique master password. However, those passwords shouldn’t just sit there forever. As we’ve mentioned, your password could eventually be cracked or leaked in a company hack. That certainly highlights the importance of not reusing passwords (seriously, please do not reuse your passwords), but it also emphasizes the need to change your passwords every now and then.
Advertisement
It’s not a fun process, but it’s the only way to guarantee a compromised password can’t be used against you. If a bad actor somehow gets a hold of your banking password, it won’t do them any good if you changed that credential during a routine checkup. Many password managers will have a link to the website in question so you can quickly change your password, but some, like Dashlane, are even better, and will change your password on the website for you whenever you want.
Always use 2FA when available
In addition to good password practice, you should also be using 2FA (two-factor authentication) whenever it is offered. More and more accounts and services are using 2FA as a second line of defense in your security, and for good reason.
Advertisement
We’ve covered 2FA in great detail before, but here’s a refresher: After you correctly enter your password to an account using 2FA, you will need to present a code from a trusted device in order to fully authenticate yourself. This code is usually sent either via SMS, or generator from an authenticator app. Some password managers even have this code generator built-in, allowing you to keep your security practices in one convenient location. Enter the code, and you’re in—without the code, you’re out.
Using 2FA helps ensure a password leak doesn’t fully compromise your account: A hacker can enter your correct password all they want, but if they don’t have access to the 2FA code, they’re sunk. That’s why 2FA scams are on the rise, and why you should never share your 2FA code with anyone. The companies and services you use 2FA with will never ask you for these codes unprompted. If you receive a phone call or an email from these “organizations” out of the blue asking you to confirm your 2FA code to prove your identity, ignore it.
Advertisement
We could go on all day about the various steps you can take to keep your digital life secure. Following these password and 2FA tips, however, goes a long way, and puts you at a great advantage. Use strong, unique passwords, set up 2FA, and share none of those credentials with anyone, and you’ll be celebrating World Password Day every day.
Comentarios recientes