Warning: My friend in Austin said 'I just use the same password for everything, it's easier' and it cost him $2,000.

We were at a coffee shop last month and he was telling me about his new online store. I asked about his security setup and he just shrugged and said that line. He figured since his email password was strong, using it for his store, bank, and social media was fine. Two weeks later, his store account got hacked. The person got in, changed the payout details, and cleared out his balance before he even noticed. The bank said because he reused passwords, they couldn't do much to help. Now I'm torn. On one side, I get that unique passwords for every site are a pain to remember. On the other, seeing him lose real money from one simple habit was a huge wake-up call. Has anyone else had a friend or client learn this lesson the hard way, and what do you tell people who think password reuse is no big deal?

2 comments

2 Comments

stellabennett24d ago

Tell them to get a password manager. It's the only way to keep things both safe and sane.

the_john24d ago

Both safe and sane" is a bit of a stretch in my view. Putting all your logins in one place feels like a single point of failure to me. I just can't get comfortable with that setup.