9 Ways to Steal Your Password. The Case for Two Step Verification.

Having a password is important, but stealing passwords has gotten so easy that it’s no longer enough by itself. In addition to your secret password stored in your head, many companies are confirming possession of some tangible thing, a phone for example, in order to login. That way if someone learns your password, they can’t use it without also physically taking your phone from you. A win for you. 

For perspective, 80% of the security breaches in a set of 621 companies in 2012 used a stolen password. That’s 44 million accounts that could have been protected if they had just turned on two step verification. Don’t be the next victim.

Why are passwords so easy to steal?  Secrets are hard to keep! It only takes one mistake before the cat’s out of the bag, and the cat may escape, so to speak, without you knowing it. Here’s some of the ways hackers will try to steal your password. The adversary could:

I could go on, but I hope that this short list is enough to motivate you to take a moment now and turn on two factor authentication so you don’t become the next victim.


What about all those sites that don’t care enough to setup two setup verification? Use a password manager to create a separate, complex password for each site.

Happy Passwords!