Assuming this email is legit, the best thing that you can do is change as many of your passwords as possible to be unique and complex. You may also want to consider deleting old email addresses and getting new ones. Alternatively you can separate your emails addresses by having one for signing up for spammy services, one for personal stuff, one for work/school, etc. Try not to have much overlap between them all.
Edit: I also highly recommended using a temporary email for signing up for stuff whenever possible. I always use this one , but there are plenty of others too.
I also highly recommended using a temporary email for signing up for stuff whenever possible.
This is the worst security advice I have ever heard. Now someone doesn’t even need to get your password, just your email and they can just use the temporary email provider to reset your password?
For services that are throwaway, this is fine. I don’t care if someone gains access to my ice cream rewards account, they don’t have anything else important. And I believe these services only last 10 minutes, meaning you can’t password reset them because the inbox doesn’t exist.
I like grr.la because I can sign in into the services with any random name @grr.la before opening the temporarily mail site, and sometimes I find out that it wasn’t required to confirm the mail, saving some time
Assuming this email is legit, the best thing that you can do is change as many of your passwords as possible to be unique and complex. You may also want to consider deleting old email addresses and getting new ones. Alternatively you can separate your emails addresses by having one for signing up for spammy services, one for personal stuff, one for work/school, etc. Try not to have much overlap between them all.
Edit: I also highly recommended using a temporary email for signing up for stuff whenever possible. I always use this one , but there are plenty of others too.
This is the worst security advice I have ever heard. Now someone doesn’t even need to get your password, just your email and they can just use the temporary email provider to reset your password?
For services that are throwaway, this is fine. I don’t care if someone gains access to my ice cream rewards account, they don’t have anything else important. And I believe these services only last 10 minutes, meaning you can’t password reset them because the inbox doesn’t exist.
I kinda like https://yopmail.com/ as it’s much more customizable
I like grr.la because I can sign in into the services with any random name @grr.la before opening the temporarily mail site, and sometimes I find out that it wasn’t required to confirm the mail, saving some time