Well, it is now World Password Day 2020, and not surprisingly passwords are still not dead. Since we will continue to live with passwords for the foreseeable future, here are some unorthodox tips on how to further protect your digital accounts from Account Takeover fraud.
Tip 1) Don’t reuse Usernames
Requirements: Password Manager, Custom email domain
The best way to protect your digital accounts is to never reuse the same password (as password reuse leads to Credential Stuffing attacks which leads to Account Takeover fraud). This recommendation can be taken a step further by never reusing the same Username.
In order to do this, you will need to register your own custom domain name. For example you may want to register something like “pizza-jungle-salad.xyz”. This will cost between $5-50/year depending on the domain and the Domain Registrar.
Now when you want to sign up for a new website you can use a custom and single-use username such as firstname.lastname@example.org. Make sure you save this unique username and password in your trusty Password Manager. For added convenience, you could also forward emails sent to *@pizza-jungle-salad.xyz to your real email inbox.
An additional bonus to this approach is you will be able to easily determine which website or organization has suffered a breach and has leaked your custom email address, or if that organization has sold your custom email address to
To read the rest of the tips, click here https://bit.ly/2L8Azu7
*** This is a Security Bloggers Network syndicated blog from Shape Security Blog authored by Carlos Asuncion. Read the original post at: https://blog.shapesecurity.com/2020/05/07/3-unorthodox-ways-to-further-protect-your-digital-accounts-from-fraud/