If you use Gmail, please use Google’s new “two-step verification” system. In practice this means that to log into your account from any place other than your own computer, you have to enter an additional code, from Google, shown on your mobile phone. On your own computer, you enter a code only once every 30 days. This is not an airtight solution, but it can thwart nearly all of the remote attacks that affect Gmail thousands of times a day. Even though the hacker in Lagos has your password, if he doesn’t have your cell phone, he can’t get in
Hacked! - Magazine - The Atlantic
seriously, really, this is worth doing. it is a tiny degree of hassle every 30 days but worth it for the extra security. and it’s not that much grief to set up ‘application specific’ passwords for apps on ipad/phone/etc
(via interestingsnippets)
(via journo-geekery)
