Hot take: I thought my password system was clever until a friend guessed it in under a minute.

For years, I used the same base word and just added the site name and a number. I felt smart because it was different for each site. Then, my buddy saw me log into one account and said, 'Let me try your bank login.' He guessed it on his second try, just swapping the site name. That was a real wake-up call. I switched to a proper password manager that week and made all new, random 16-character codes. Has anyone else had a 'secure' habit that turned out to be totally weak?

3 comments

3 Comments

tarar271mo ago

Remember thinking my email was safe because I used a long sentence from a book. Turns out, that specific quote was my public social media bio for years, so it was basically the first thing a hacker would check.

margaret_jackson731mo ago

Second try? That's honestly terrifying. My old system was similar, I used my dog's name plus the year I got him. Then I realized I posted his birthday and adoption story all over Facebook. It was basically a public password hint.

xenagarcia1mo ago

My bank actually flagged a login attempt from Brazil last year. They guessed my mom's maiden name because her wedding announcement is scanned online in a local paper archive. Makes you wonder what else is just sitting out there.