As I see on the field, I never this repeat enough:

Use a good (if possible open source) password manager and generate 20-32 characters random password for each online account as well as unique PIN for each device and card.

Enable 2 factors authentifications whenever it's possible, Webauth with a hardware token is a must, if not available from the service TOTP is the minimum.

Nextcloud, Wordpress, BTCPay Server, Kraken, Twitter, Github, Microsoft, Google and even Facebook (for the masochists) support WebAuth, one touch of a button for the most secure 2FA solution.

My recommandation:

- Bitwarden Premium (10$/year) for begginer and easier usage.

- Keepass XC + Keepass2Android sync over Nextcloud or Syncthing for more advanced users.

- Yubikey 5 as hardware token

More details in one of my old but still very relevant article: https://eluc.ch/password-managers-and-authentication-tools/

Did I miss anything? Let me know, I will be happy to discuss you setup and use cases.

#security #passwordmanager #keepass #bitwarden