Strong Passwords Are No Longer Enough

By Mrs Hudson-Findley (Director of Digital Learning, Enterprise and Sustainability)

Most people know they should use strong passwords, but passwords alone are no longer the main line of defence online. Increasingly, security relies on multiple layers, including verification codes, authentication apps and device recognition.

This matters because many account breaches do not start with hacking. They begin when a password from one website is leaked and then tried automatically on others. If the same password has been reused, several accounts can be compromised in minutes.

One of the most effective protections is two-factor authentication (2FA). After entering your password, you confirm it is really you with a short code or an authentication app on your phone.

A useful place to start is your main email account. Search for “Security” or “Two-step verification” in the account settings and enable it. Since email accounts are often used to reset other passwords, protecting this single account strengthens everything connected to it.

Digital security is rarely about one big change.
It is built from small protections that quietly work in the background.