Stop Reusing Passwords
The Simple Pattern That Protects Your Accounts
We all have that one password that's been with us since the dawn of our online life—a jingling key on a chain that unlocks email, shopping, and old forum accounts.
That convenience feels nice… until it doesn't. A few small changes to how you make and protect passwords can make the difference between a nuisance and a real security headache for the people trying to take your accounts.
Why Length Beats Fancy Characters (and What That Means for You)
For years we were told to add symbols, capitals, and a sprinkle of randomness. Today, cybersecurity experts have flipped that advice: length and uniqueness matter more than forced complexity.
Longer, easy-to-remember passphrases—checked to make sure they haven't been used in past breaches—are now considered far stronger than short, complicated strings.
Pick Patterns Hackers Dislike — But You Can Remember
A longer passphrase like 'lemon-bike-Sunday-7am' exponentially increases the time it takes a hacker's software to guess it, making it impractical for them to even try.
In contrast, a short, complex string can often be cracked quickly by modern machines.
Remember: reuse is the real weak link. If one account leaks, reused passwords become dominoes.
Use a Password Manager — And Use It Wisely
Password managers solve the reuse problem by generating and storing long, unique passwords for every site. They're recommended by experts and make modern password hygiene practical.
Important Security Note
That said, no product is perfect—researchers have shown vulnerabilities (clickjacking, autofill risks) in popular managers that were patched after disclosure. Keep yours updated and consider disabling browser autofill for sensitive forms until you understand a manager's settings.
Turn on Multi-Factor Authentication (MFA) Everywhere You Can
MFA is an extra lock: even if a password is compromised, a second factor (authenticator app code, hardware key, or biometric) often stops the attacker.
Organizations using MFA have dramatically fewer account compromises. For personal accounts, prefer app-based or hardware token authenticators over SMS where possible, and enable phishing-resistant options when offered.
Practical Example — Family Email and Banking
Family Email
Create a long, memorable passphrase for the account (e.g., "GrandmaPancakesJune92"), enable an authenticator app, and store a secure recovery contact in a trusted family member's device—not as a written note. This reduces reliance on SMS and keeps recovery tight.
Banking and Sensitive Logins
Use a password manager to generate a 20+ character random password, enable hardware-based MFA (a security key or passkey), and register account alerts so unusual logins trigger immediate action. These layered steps make account takeovers far less likely.
Small Admin Habits That Make a Big Difference
• If you hear about a major data breach, you can check whether your email address appears in a publicly known list of exposed accounts using a free website such as HaveIBeenPwned.com—a resource commonly used by cybersecurity professionals. If your information appears there, update your password immediately.
• Use unique recovery email addresses for critical accounts.
• Periodically review device access and logged-in sessions and sign out old devices.
• Favor passkeys or hardware authenticators when services support them—the web is steadily moving that direction.
(McKee Financial Resources is not affiliated with and does not endorse any third-party websites.)
⚠️ What to Avoid (and Why)
Don't reuse a password across multiple important accounts.
Don't rely only on SMS-based one-time codes when a stronger MFA option exists.
Don't be complacent about password-manager updates—new research shows attackers probe every convenience feature for abuse.
McKee's 40 year history of financial security and risk management in a changing world.
Since 1985, our focus has always been on protecting our clients' wealth and security, though the nature of the threat has drastically changed. Over four decades, we've helped clients manage risks that evolved from paper trails and telephone fraud to the sophisticated digital threats of today. We understand the financial damage an account breach can cause—not just to bank accounts, but to identities, credit scores, and peace of mind.
The digital habits we recommend are the result of observing four decades of successful risk mitigation, providing clients with robust, practical layers of defense.
Password managers, multi-factor authentication (MFA), and longer passphrases aren't theoretical fixes. They are proven layers of defense that significantly raise the bar for attackers. In a connected world where financial control is often one click away, these habits matter more than ever to comprehensive wealth management.
🔐 Final Thought
If you're looking for an easy next step, consider trying two small changes this week: explore a password manager and turn on multi-factor authentication for your key accounts.
Together, those habits can make it much harder for hackers to gain ground.
Copyright © 2025 Anthony Owens. All rights reserved.
40 Years of Security Wisdom
Since 1985, McKee Financial Resources has helped clients protect not just their financial accounts, but their digital identities. As technology has evolved from paper statements to mobile banking, we've watched password security become one of the most critical—yet most neglected—aspects of financial safety. The guidance we share here represents decades of observing what works: longer passphrases, unique credentials for every account, password managers to manage complexity, and multi-factor authentication as the extra lock that stops most breaches. These aren't burdensome tasks—they're simple habits that create lasting protection.
McKee Financial Resources — Wealth Management Services
Our Office Locations
Evansville Office
McKee Financial Resources
727 N. Cross Pointe Blvd
Suite C
Evansville, IN 47715
Bloomington Office
McKee Financial Resources
1612 S. Liberty Drive
Suite A
Bloomington, IN 47403
Greenwood Office
McKee Financial Resources
48 N. Emerson Avenue
Suite 100
Greenwood, IN 46143
North Indy / Carmel / Fishers Office
McKee Financial Resources
9465 Counselors Row
Suite 200
Indianapolis, IN 46240