More breaches happen everyday and your information is part of this wave of information floating around. Knowing how to properly keep your account secure and know what precautions to take can help protect your account from attacks.
Point Of Failure
No system is safe from any form of penetration. Crackers will always find a vulnerability and in the chance find a trove of user data, occasionally in plaintext with no form of protection such as hashing and salting. Minimizing the point of failure within your reach can prevent crackers from accessing other information from other websites and services.
Tips to follow:
- Never reuse the same passphrase/password on other websites and services.
- If possible, always use a combination of alphanumeric, case, and special characters.
- Make it as long as you can; Entropy makes it more difficult to brute force a credential.
- Having a password manager is critical.
- Use two-factor authentication; Avoid using a phone number as a way of 2FA, use code generators or a YubiKey.
You’ve set yourself up for success… they didn’t. Breaches in services and websites happen more often than you think. Whenever this happens the service or website has the obligation to disclose this information to their user base. When you receive a notification that a service or website you use has been breached, don’t panic! You’ve taken steps to ensure the security of your accounts by using unique passwords for each account and, if possible, used two-factor authentication. Change the password for the account along with other related services.