An account should not be able to recover your password for you. Your password is encrypted and known only to you. If you lose the password, the service associated with the account should reset it and send you a new password that you can then change. If the service says it can recover your password […]

The longer the password, the better. That’s why using an entire phrase instead of just a word is ideal. Instead of coming up with a nonsensical series of numbers, letters and characters, you could come up with a phrase that’s equally strong and much easier to remember. Like, Tacos Are The Best! or, everyone-loves-a-good-rainbow.

Scammers may invent fake password managers to trick people into giving them their passwords to sensitive accounts. To avoid this, only use password managers that have an established reputation and have numerous customer reviews, like Dashlane, Keeper or LastPass.

Complicated passwords provide exceptional protection against hacking – but what if somebody intercepted them? Reduce the risk of password theft, set up two-factor authentication on sensitive accounts. This requires anyone requesting access to supply an extra credential, such as a code sent to a separate device, in order to log in.

If a password manager claims it can recover your master password if you lose it, that means the service will receive access to that information when you create the account. This approach puts your sensitive information at risk. Normally, your passwords are all encrypted, and even the password manager does not have access to your […]

If you use a password manager to store your passwords — which you should! — you’ll need a master password that gets you into the application. It’s important to not forget this password, and it’s also essential to keep it secure. Write it down, put it in a sealed envelope and put that envelope in […]