A password generator is an online tool that automatically creates strong, random passwords at the click of a button. To create unique passwords, a password generator
A password is compromised when it’s leaked in a data breach and made available on the dark web, allowing others to gain unauthorized access to your online accounts. This risk not only arises from a data breach; your passwords can also be compromised in a phishing attack or if you don’t store your passwords securely. Dealing with multiple compromised passwords can be scary and stressful, but luckily there are steps you can take to protect your online accounts. These steps involve updating your compromised passwords with a password generator, enabling Multi-Factor Authentication (MFA) and changing any reused passwords.
Read more to learn why you might have multiple compromised passwords and what you can do to keep your private information safe.
Why do I have so many compromised passwords?
There are several reasons why you may have so many compromised passwords. For example, if you’ve reused the same password across multiple accounts and that password is leaked in a data breach, any account that shares the same password could become compromised.
Additionally, you might have multiple compromised passwords if you use weak and predictable passwords, such as “password” or “123456.” Your password can be easily guessed if you use personal information, like your birthdate or your child’s name, because cybercriminals can easily find this information through your social media profiles or public online accounts that create a large digital footprint.
If you accidentally click on a phishing link and provide your username and password, your account could be at risk because you unknowingly handed over your login credentials to a cybercriminal. For example, let’s say you receive an email from Amazon stating that to avoid your account being deactivated, you must click on the link they’ve sent. Without checking to see if the link is safe or verifying the sender’s email address, you panic at the thought of losing access to your Amazon account and immediately enter your information. However, this type of phishing scam will compromise your password and give a cybercriminal access to your account.
Steps to take when you have multiple compromised passwords
Here are several steps you can take to protect your online accounts and private information if you have multiple compromised passwords.
1. Sort your compromised passwords from most to least critical
If you have many compromised passwords, you should organize them from most to least critical so you can address the critical ones first. Any online account that contains Personally Identifiable Information (PII), like Social Security numbers, bank account numbers or medical records, should be prioritized when sorting through compromised accounts. Accounts deemed most critical include bank accounts, credit card accounts and medical insurance accounts. Creating a prioritized list of your compromised accounts, from most to least critical, will simplify the process of quickly updating your passwords and protecting your sensitive information.
2. Change compromised passwords using a password manager
After creating your prioritized list of compromised passwords, use a password manager with a built-in password generator to change your compromised passwords. A password generator simplifies the process of updating your passwords, and the password manager stores them in a secure digital vault. This combination will allow you to create strong and unique passwords for each compromised account and eliminate the need to remember your passwords. The only password you will need to remember is your master password, which acts as a key to unlock your password vault. Taking this approach ensures that each account is protected and is less likely to become compromised again.
3. Enable Multi-Factor Authentication (MFA)
In addition to changing your passwords, you should enable Multi-Factor Authentication (MFA) on not only your compromised accounts, but every account that has it available. MFA provides additional protection to your accounts by requiring extra proof of your identity before logging in. Examples of MFA include a PIN, a code from an authenticator app, a fingerprint scan or even your specific geographic location. If your password has been compromised but you have MFA enabled, the cybercriminal will know your password, but cannot access your account without the additional verification.
4. Change reused passwords
Since reusing passwords may have led to your passwords being compromised in the first place, it is important to change your reused passwords, including different versions of the same password, to be strong and unique for each account. Remember, if you have been using the same password for multiple accounts and that password gets compromised, your other accounts are also compromised.
5. Continue to keep an eye out for suspicious account activity
Watch your accounts diligently for suspicious activity if your passwords have been compromised. If you notice anything suspicious, like frequent login attempts or transactions you didn’t make, act immediately by changing your passwords to strong and unique ones, as well as setting up MFA on your accounts.
Don’t let compromised passwords place you at risk of identity theft
Without taking action after your passwords have been compromised, you risk your private information falling into the wrong hands and potentially becoming a victim of identity theft. Follow these best practices to avoid having compromised passwords:
- Don’t use weak or reused passwords for multiple accounts
- Store your passwords in a secure location, like an encrypted digital vault
- Be cautious of phishing attempts with unsolicited links
- Enable MFA whenever possible on all your accounts
- Create strong and unique passwords for each of your accounts
Start a free 30-day trial of Keeper Password Manager to create, change and store your passwords in a safe place today.