My FULL Account Security Strategy Explained (you can copy)

How does my strategy compare to yours? Let me know in the comments. And be sure to take advantage of the 20% off DeleteMe to get more privacy online: www.joindeleteme.com/allthingssecured

I have a request/suggestion. When you mention another video in your videos, please leave a link in the description in addition to the popup within the video. This has happened to me several times while watching one of your videos. I am wanting to watch the content you refer to, but am not finished watching the current video. So I either have to write down the time stamp, or click the new link, save it to watch later, then go back and finish watching the first video. Leaving the link in the description is more efficient for your watchers. Thank you for all you do.

A law I'd add is to have a physical safe. Store recovery codes in here, or use it to store passwords you don't want in your password manager, such as the password to you're email where password reset requests get sent. And for people who find an online password manager too complicated, this is where you can store your passwords.

I appreciate this simple video format.

1 don’t keep all eggs in one basket 2 long passwords 3 always use 2FA (with Authenticator codes NOT SMS) 4 Security Key 6 separate Authenticator apps 7 except for common accounts like Pinterest Bonus: A) Email Alias B) Secure apps with biometrics C) Private number D) Passkey if security key not available

Great video! I have also stuck with passwords and 2FA rather than passkeys because I still feel that the added convenience of passkeys ultimately degrades security and I'm also waiting to be convinced.

I do it only slightly differently because I mostly focus on making iCloud and Google accounts maximally secure with security keys, passkeys and in iCloud E2EE almost all of it. Then less important accounts can (preferably) Sign in with Apple or the slightly less secure Google. Greetings from Sweden. 👋

Very interesting and very useful video. I always enjoy your videos.

Holy cow!! It’s Josh from the Xinjiang channel! I have your PDF book from way back when.

Another awesome video josh! Thank you again! I’ve been following you religiously now for right at a year’s time as I’ve been navigating my way through a horrific stalking situation that is the makings of a PsyOps Horror Novel. lol 😂. Because of this channel, I’ve gone from knowing zero things about cyber security to feeling very knowledgeable and empowered about all of my online privacy and security. I’ve made massive shifts in 2023 towards extreme privacy and safety. Because my literal life has depended on it. Thank you so much!!

There are 2 kinds of passkeys: device-bound and synced. Device-bound passkeys can't be replicated; they're like physical security keys in that way.

Authy is planning to shut down its desktop authenticator app in August 2024. They still will have their mobile apps on iOS and Android

Thanks for the video! I will stick with physical hardware keys for now. Also, it's often said that the main security vulnerability is education, and I just can't understand Passkeys... And if someone as knowledgeable as you also struggling to see it's merits, then it is evidence that passkey proponents have a problem with the education part...

Do you recommend insurance?

So your bonus law number 4. Only use physical keys and not use passkeys if both options are available. I was in this camp until recently. There is something going on with iOS and MacOS recently where Google does not recognize my Yubikeys via Safari anymore. I was able to bypass this by using an old out of date Mac, reregister one of my Yubikeys and then switched back to my modern hardware to reregister all of other keys. So it’s hard to tell if it is Google or Apple, but someone f’d up and almost locked me out of my Google accounts.

I really like your advice. I like that you don't go too extreme and still use gmail or facebook like normal people. However taking a few steps towards better security and privacy.

Thank you for the video. I still haven't started using e-mail alias and I couldn't find a decent way to implement that virtual phone strategy in my country (maybe I'm not doing a proper research), but one thing I use in addition to long passwords, password manager and 2FA is the double-blind method, where you only store part of the password in the password manager, but the other part is some special characters that only you know. So when you are signing into an app, you generate and store a password from password manager + your own password I do that for important accounts only, but that gives me more security that, in case my password manager ever got hacked, the hacker still won't have the full information to log into my accounts

Do you suggest logging out of certain apps on your iPhone to allow for entering credentials like the 2FA?

Can you talk about outlook firewall. (Security policies)

Facial recognition or fingerprints don't matter if there's an option to use a pin instead. It seems that a pass key is the wiser option.