A weak password is like locking your screen door but leaving the main door wide open. We need to install a deadbolt.
Strategy 1: The Passphrase (Not Password) Computers are good at guessing short words. They are terrible at guessing sentences.
- Bad:
P@ssword1(Too short, easy to guess) - Good:
Blue-Coffee-Mug-1955!(Long, random, but easy for you to remember). - Analogy: Think of a favorite song lyric or a memory. “I met John at the diner in 62.” becomes
ImetJohn@thedinerin62.
Strategy 2: The Double Lock (MFA) “Multi-Factor Authentication” (MFA) sounds technical, but it’s just Two-Step Verification.
- The Analogy: Think of your ATM card. To get money, you need two things: The Card (Something you have) and The PIN (Something you know).
- MFA is the same. To get into your email, you need your Password (The PIN) and a Code sent to your phone (The Card). Even if a thief steals your password, they can’t get in because they don’t have your phone.
Action Step: Go to your primary email account settings and turn on “2-Step Verification” (sometimes called 2-Factor Authentication). It is the single most important lock you can install.