Sign in Subscribe
Security

Securing Your Login Information

Sudeep Shrestha

3 min read
Securing Your Login Information
Photo by Zulfugar Karimov / Unsplash

Passwords, MFA/2FA, Passkeys & Password Managers Explained

In today’s digital world, securing your online accounts is more important than ever. With cyberattacks and data breaches increasing every year, taking a few simple steps can go a long way toward protecting your personal information. Whether you’re logging into email, banking, social media, or work systems—proper security practices help keep you safe.

This guide walks you through the essentials:
✅ Creating strong passwords
✅ Using MFA / 2FA
✅ SMS vs Token-based authentication
✅ Understanding passkeys
✅ Using password vaults like Apple iCloud Keychain & Google Password Manager

Let’s dive in!

Why Securing Login Information Matters

Your login credentials are the keys to your digital life. If someone obtains them, they could:

  • Access your email
  • Reset passwords for other accounts
  • Steal (or use) your financial information
  • Access cloud files and private data
  • Impersonate you online

Weak or reused passwords are the most common reason accounts get compromised. Protecting them is your first line of defense.

Create Complex Passwords

Strong passwords make it harder for attackers to guess or crack them using automated tools.

Tips for strong passwords

  • Minimum 12 characters
  • Use uppercase + lowercase letters
  • Include numbers + symbols
  • Avoid personal info (name, birthday, address)
  • Never reuse passwords across accounts

Example

Weak: football123
Strong: L9r$8m!Tg5Q4

Strong passwords are tough to remember—which is why password managers help!

Use MFA / 2FA for Extra Security

a screenshot of a phone
Photo by Ed Hardie / Unsplash

Multi-Factor Authentication (MFA) or Two-Factor Authentication (2FA) adds a second verification layer after your password, making unauthorized access dramatically harder.

Even if someone gets your password, they can’t log in without the second factor.

Common Types of 2FA

TypeSecurity LevelDescription
SMS CodeMediumCode sent by text
Email CodeMediumCode sent to email
Authenticator AppHighTime-based tokens
Hardware TokenVery HighPhysical device
PasskeysVery HighPassword-less login

SMS-Based vs Token-Based 2FA

SMS-Based 2FA

You receive a code via text.

Pros

  • Simple
  • No extra apps

Cons

  • Vulnerable to SIM swapping
  • Requires phone number

Better than no 2FA, but not the strongest.

Token-Based 2FA

a wooden usb stick sitting on top of a wooden table
Photo by Andy Kennedy / Unsplash

Uses an app or physical key to generate a code.

Examples:

  • Google Authenticator
  • Microsoft Authenticator
  • Authy
  • 1Password tokens
  • YubiKey (hardware)

Pros

  • Much more secure
  • Offline usable
  • Cannot be intercepted

Cons

  • More setup steps

Recommended for bank accounts, email, and cloud storage.

What Are Passkeys?

Passkeys are the future of login security—simple, fast, and secure.

A passkey uses your device’s biometric authentication (FaceID, fingerprint, etc.) instead of a password. You don’t type anything—it is stored securely on your device.

Benefits

  • No password to steal
  • Resistant to phishing
  • Easy & fast login

Supported by Apple, Google, Microsoft, and many services like PayPal, Amazon, and Dropbox.

If available on the website, always choose Sign in with Passkey.

Use a Password Vault

A password vault stores all passwords securely so you only need to remember one master password.

Why use a password manager?

  • Generate strong passwords
  • Store & auto-fill passwords
  • Sync across devices
  • Avoid reusing passwords
  • Easier + safer than memorizing
  • Apple Passwords (iCloud Keychain)
    Best for Apple ecosystem
  • Google Password Manager
    Great for Android + Chrome users
  • 1Password / Bitwarden / LastPass
    Cross-platform options

Using a password vault ensures you always have complex, unique passwords for every account without needing to remember them.

Best Practices

✅ Enable 2FA wherever possible
✅ Use unique passwords per account
✅ Store passwords in a password manager
✅ Use passkeys when available
✅ Avoid saving passwords in notes / browsers without protection
✅ Regularly review saved passwords
✅ Change passwords after a breach

Conclusion

Your online accounts are valuable—and securing them is easier than you think. Start by:

  1. Creating strong passwords
  2. Enabling MFA or 2FA
  3. Using a password vault
  4. Migrating to passkeys when available

Taking these simple steps significantly reduces your risk and keeps your digital identity safe.

Stay secure—and encourage your family and friends to do the same!

Thank you so much for taking the time to read my blog post! Your support and engagement truly mean a lot and inspire me to keep creating and sharing more valuable content. If you enjoyed this post, I’d love to hear your thoughts—feel free to leave a comment in the box below and join the conversation. And if you’d like to stay updated with the latest posts, tips, and insights, don’t forget to subscribe to my newsletter. By joining, you’ll be the first to know when new content is published, so you never miss an update.