Security

Password Managers & 2FA

Stop reusing passwords. The number one way accounts get hacked - and how to fix it for free.

Why You Need a Password Manager

The number one way accounts get hacked is not someone guessing your password - it is because you used the same password somewhere else and that site got breached. Check if your email has been exposed at haveibeenpwned.com.

Bitwarden - Free and Open Source

Bitwarden is the most recommended free password manager in security communities - consistently top of Reddit's r/privacy and r/netsec. Open source, independently audited, and the free plan covers everything most people need.

Create a free accountGo to bitwarden.com. No credit card required.

Install everywhereBrowser extension plus phone app. Shows up automatically when you log into sites.

Generate unique passwordsLet Bitwarden generate a random password every time you create or update an account. You never need to remember them.

Set a strong master passwordThis is the one password you memorize. Store it somewhere safe offline too.

Harbor Privacy Recommends

Open source, audited, free for individuals. No Harbor Privacy referral - we recommend it because it is the best free option.

Get Bitwarden free →

Two-Factor Authentication

2FA adds a second step to logging in - a code from an app on your phone. Even if someone gets your password they cannot log in without your phone.

Get an authenticator appAegis on Android (free, open source) or Raivo OTP on iPhone (free).

Find 2FA in account settingsLook for Two-Factor Authentication or 2-Step Verification on banking, email, and social media.

Scan the QR codeYour authenticator app scans it and starts generating codes. Done.

AVOID SMS 2FA WHEN POSSIBLE

Text message codes can be intercepted through SIM swapping. Use app-based 2FA whenever available - it is significantly more secure.