It is a hacker’s dream. Even in the face of repeated warnings to protect online accounts, a new study reveals that “admin” is the most commonly used password in the UK.
The second most popular, “123456”, is also unlikely to keep hackers at bay.
It’s not just a problem here – Australians, Americans and Germans also use “admin” more than any other password when accessing websites, apps and logging in to their computers. Around the world, “123456” emerges as the most popular.
Don’t use shit passwords. Don’t reuse passwords. Get a password manager. Use 2fa.
I reuse passwords on sites where I don’t care if my account gets breached.
On sites where it matters, I store them in a password manager.
On sites where money is managed, I keep the passwords only in my mind.
Use mfa not 2fa
The more factors, the less secure. Each one you add is another potential exploitable authentication method. It’s only as secure as the least secure MFA method you add.
I mean, how many factors do you advocate for? Two is generally plenty as long as they are good ones.
E.g a passphrase protected ssh key is solid. Similarly protected passkey is good. A TOTP with password is… Not terrible I suppose… SMS would be pretty bad…
Online or offline password manager?
Either or as long as theyre stored encrypted and decrypted on device.