On Mon, 2019-09-02 at 16:31 +0800, Ed Greshko wrote:
On 9/2/19 3:53 PM, Patrick Dupre wrote:
Today, I got a message, staring: Hey, I know your password is ........
and asking for money.
The password is one of the password that I use. It is not one giving access to important accounts, but I am a bit wondering about other account. I am careful with my accounts and passwords. How can I prevent sort of password steal?
"You" cannot prevent your password being stolen from sites which store passwords in an insecure manner. Unfortunately you can't predict which sites use poor procedures.
The best thing you can do is change your passwords often for sites of valure and don't reuse passwords. Also, use different passwords for "important" sites than for "unimportant" sites. The "unimportant" sites would include those which don't store your CC# or other personal data.
The best way to do that is with a password manager.
Whenever possible, and practical, use 2 factor authentication.
+1, when available, which is not always. For example Amazon (at least in Europe) doesn't offer this.
poc