Checking the National Day Calendar today, I see that it is World Password Day. I found it interesting that the primary website dedicated to this seems not to have been updated since last year (maybe someone forgot the password to login?), but this does bring up an important point.
Generally, we are always told to pick different passwords for each site/service, make them long, change them frequently, and of course, no normal person can actually do this. Over the last year or so, I have seen a lot of recommendations for making sure you have a good password manager, so you don’t have to remember them all. Yet even the World Password Day site (even not updated) does at least mention moving to multi-factor authentication (or 2FA).
Instead of recycling the same old “change your passwords, make them all unique”, we could instead be saying “upgrade from a password to 2FA” and be in a much better place than we are today.
So I say today, Happy World 2FA Day!