This is why using same password for everything is not good

[bitmover]

If database of the service A leaks, you will expose the password for all other services  B, C ,D, E, F and G as well.

That's the assumption, that's why it is recommended to have different passwords. But technically, websites especially newly created ones have standard way of hashing passwords like Bcrypt or Argon2i which cannot be decrypted or what you ever call it. But let's just assume that's that for safer routes and practice security when creating passwords.

Yeah, hashing passwords is the best practice. But many websites do not follow the best security practices (and we often create accounts in poorly developed websites), and passwords do leak. Even some password managers find a way to leak passwords, unfortunately....

[CryptoYar]

This story is worst type of Secret HODLer's nightmare. So it is not that funny when you realise that Kunle's 1 BTC is now public asset of his house. Once that sibling cried out, privacy that Delin had enjoyed over his investment was gone and never coming back. It is cold reminder that in Bitcoin world the places in real world are just as perilous as hacker or phishing link.

Problem here was not using same password, but combination of this with the False Sense of Security as people who have lived in comfortable environment. You do not act on your guard when you are under your parents roof and that is when Murphy's Law strikes the most. Kunle now finds himself in Financial Trap.’ He cannot spend BTC on school fees otherwise his future is ruined, and he cannot if he does not spend it on them, he appears villain before his family.

[As-Soon-As]

It is not advisable to give the hardware wallet password in line with the phone password. Since its younger brother has opened the hardware wallet password by guessing the phone password, the privacy of this Bitcoin has been leaked.
Therefore, if someone is using multiple wallets and has deposited Bitcoin, he should definitely use different passwords, because all the eggs should not be kept in one pair. Because the stronger the password, the more your Bitcoin will be safe and secure for a long time.

[TastyChillySauce00]

Never ever use the same password for your phone on your crypto wallet or hardware wallet.

It should be the default practice for people, there are billions password combination leaked by hackers and some of them could be ours, if hackers are brute forcing with those leaked passwords our account might get compromised.
The best way to do this is to generate random password for every account and write it down especially if it's a hardware wallet. It's good that this story doesn't end in misery, imagine if the brother sold his bitcoin .

[Lucius]

What is the hardware wallet in question? The devices that I have personally used have a PIN that needs to be entered to unlock the device, and even when you unlock the device, you need a UI with which to view the balance, and that same UI may also have a password.

Honestly, it seems to me that this is just one more in a series of fabricated stories that I have read hundreds of in this board, and almost all of them come from users from the same local board.

Let's just say OP sometimes confuses a PIN for a password. It's possible.

Be that as it may, I guess this is the same user who also shared a story in the past that seemed to be too ridiculous to be real. If he/she weren't that person, then they're not too different from each other.

OP also loves to share stories. Other than the one he/she shared today, he/she also shared he/she knew of somebody who was kidnapped and was asked to pay ransom in Bitcoin.

He/she also once shared a story that his compound was raided by the authorities and his/her trusted neighbor arrested for being a Bitcoin scammer.

He/she's got a lot of stories to tell.[/size]

There are a few of us who didn't fall for the most likely fabricated story, but the OP achieved success and earned a couple of merits, which was the ultimate goal. Just imagine that now his entire village/town knows that a specific person has 1 BTC worth over $80k - because if we know, all the neighbors probably know, which is enough for it to spread like a virus.

Fortunately, no one actually gets hurt in fictional stories.

[SatoPrincess]

I sincerely hope that this is a fictional story because OP just told everyone his friend “Kunle” has 1 btc which is a lot of money in my country. It only takes one person who knows OP irl to find out who Kunle is and where he lives. So yeah, if the story is true which I doubt it is, OP has out his friend’s privacy and safety at an unnecessary risk.

OP also loves to share stories. Other than the one he/she shared today, he/she also shared he/she knew of somebody who was kidnapped and was asked to pay ransom in Bitcoin.

It is possible the story is made up, but people getting kidnapped for bitcoin ransom is very much real which is why I’m concerned the details in the OP.

[dansus021]

—snip—

This is actually most part of everyone’s story, I think one two people have actually experience similar to this about leaking their passwords and that password been used to access other platforms. This is social engineering attacks is still a thing until date.

But your second paragraph also raises concerns of how too many password or not reusing any password at all actually sends you towards trusting online platforms to store this passwords. I think that too many passwords are going to create redundancy which will lead to exposure of the password due to means of how you wish to safeguard it.

Personally I feel like three different passwords are ok, one for regular phone locks, one for social media accounts and one for extra important things like hardware wallet pin. Although this is not also perfect it reduces redundancy

what you do is actually perfect, Its more like we do with our wallet one for hardware wallet that act as a cold wallet one and second for the hot wallet one for daily transaction.

I do save my password now using bitwarden and this is the most easy way to store password and I do know lot of people use it, I hear that platfrom like dashlane same as bitwarden got hacked couple year ago but I dont save my important one on the platfrom.

The last guardian is my email the password is totally diferent from any kind of site because if you lose your email than you basically ded

You can check your email and passwords but passwords you no longer used as it is stupid if pasting your current passwords there.
https://haveibeenpwned.com/
https://haveibeenpwned.com/Passwords

Google password is close source, it's not good, and let's choose open source password managers to use
https://keepass.info/download.html
https://proton.me/pass/download
https://pwsafe.org/

yes I have been pawned  because my old password and some hacked site

and thanks for the advice bro Im goin to use it

[henmark]

What is the hardware wallet in question? The devices that I have personally used have a PIN that needs to be entered to unlock the device, and even when you unlock the device, you need a UI with which to view the balance, and that same UI may also have a password.

Honestly, it seems to me that this is just one more in a series of fabricated stories that I have read hundreds of in this board, and almost all of them come from users from the same local board.

Lol, I had the same thought in my mind after reading the post, because it all sounds like it's a movie scene, the father forces the sun to go and do some work immediately, the sun doesn't keep the device in his pocket or somewhere where it won't be accessible for anyone else, as soon as he goes away, the younger brother decides to plug it in, and as soon as he does that, he is immediately asked for the password and as he enters it, the UI open up and he sees the balance and immediately understand everything. It definitely sounds like a made-up story because things don't happen this way in real life in general.

So, even though it is true and good advice that people shouldn't use the same password for everything, I think this story is not real and it is just used to describe the risks of doing so.

I personally know a lot of people who use the exact same password everywhere, and when you ask them, they would say that their memory is weak, so they can't remember different passwords for different things, so they use a single one.

[Exitoral]

The story is funny. But this story resonate to many of us. Me not included. But to be honest, there was a time where I used same password for everything until I decided to learn cyber security and I learned about the dangers of that. I quickly changed all my passwords. Making all different.

From the story it was his family member that accessed it. If it were to be a hacker, it will be another story. With family members, it may sound less dangerous. But it is still dangerous. All you can do just incase you feel you need to get them to know if something happens to you is to leave clues that they can use to access it. Pray nothing happens to anybody. But it is best to be safe than sorry.

Hardware wallet is the safest wallet. But human error can  make it less safe. Believe me when I say the best of hacks comes from human errors.

Best advice is for one to use different password for everything. And make sure it is safe were no one can just access it. For example, I have a password manager. I save all password there and only keep the password manager password in my head. That way I know one password to many passwords. If that can help you, you can adopt my style.

[atookz]

Keeping just one password for everything is like having one key for your house, car, and office. If one key is lost, then all the keys unlock. Use a unique passcode for each account, so that, if one account is breached, all of them will be secure. Thankfully only those who are closest to us do know. But if somebody else discovers them and have malicious intent, then your Bitcoins will certainly be taken from you.

[Little _damsel]

When I first saw this topic I said “is this really important?” Because if you think about it, why would you even think of using the same password in almost everything? But if people really do this till today, then it's dangerous. Because security is only as strong as the weakest platform you signed up on. Imagine using one key for your car, house, office and safe. If you lose that one key anywhere, everything is exposed at once. 
For bitcoin users it's even more dangerous, because bitcoin transactions are irreversible. If someone gains access to your authentication apps, exchange account, or your wallet email, your funds can be stolen permanently with little or no chance of recovery.
Another problem is that many smaller websites have poor security practices, big platforms like banks, email providers, and major Bitcoin exchanges usually invest heavily in cybersecurity. They have dedicated security teams, advanced encryption, monitoring systems, and strict protection measures because they know attackers constantly target them. But sometimes we register for random websites online, which most of us may have even forgotten about, but if any one should gain access to that random account, then the next thing that'll cross the scammers mind is “which other account can this password access?”

Let's all be guided pls. Use a unique password for every important account.
Make email passwords especially strong because email is usually the “master key” to reset other accounts.
Use a password manager if remembering many passwords is difficult.
Enable 2FA wherever possible. In cybersecurity, password reuse is considered one of the biggest escapable mistakes because a single violation can generate a chain reaction across your entire digital life.

[Bushdark]

Now you have to pay the bills, for your younger brother's school fees, says the father of my friend who have always hide under the roof of his parent, he is old enough to be married but brotherly don't want that, he have a great plan until everything went awhol.

I can't help but keep laughing still about it, this friend of mine always cherish his Bitcoin like without it there will never be a future, and since he is still living under his parent roof he hid the secret perfectly, until on Thursday morning.

He was about to update his hardware wallet when his father asked him to go and pump water, they were already facing problem with pumping water because of epileptic greed power, so the father shouted on him, go and do it right away before they take the power again.

Bro left his hardware wallet on the table and his sibling enter his room, inserted the same password my brother used on his phone and the wallet gets unlocked, right there is a 1 BTC sitting nicely in the wallet and the boy 😱😱 screamed.

Haaaa brother Kunle is rich, all this while he is rich...

I still can't help but cracking my ribs about this.

Never ever use the same password for your phone on your crypto wallet or hardware wallet.

Your story is sweet and and the way the story was going, I thought the boy which was Kunle brother was going to steal the Bitcoin by sending it to his own wallet. That was what I was expecting to read but the whole story has changed to a fair one and kunle was very lucky that his brother was not a bad person that have the mindset to steal. There are families where what they are known for is violence and kunle was fortunate not to come from that family. Using different password for different apps should be advisable because this is one of the ways hackers are using to steal and access their victims devices.

[Queen uloma]

We are not expected to use the same password on every portfolio we have just for security reasons, if we think we are not trying to make it possible to lose access to any of those password and decided to use the same for all, then it is more of taking risk than when we use different password and device a safety measure to save keep them, we must also understand that an online or any centralized platform is not the best ideal storage medium for keeping our password.

You are very correct, we are not supposed to use the same password in every portfolio and account because it’s big security risk and it’s very dangerous because once hackers mistakenly have access to your password, they will automatically have access to all your accounts at once. Thats why it’s advisable for us to use different password in all different platforms and try your possible best to keep them safe from hackers. Don’t save your password online or In any centralized platform it is not a safe place to store your sensitive password because anything can happen they can hack your account or the system can develop fault, That is why it is advisable for people to be very careful and use a strong password In other to protect your account.

[bangjoe]

Using the same password is wrong, I remember a lot of people suddenly losing their money, suddenly being able to access their social media accounts and even their bank accounts, there are also many cases of losing exchange accounts that still have a lot of money in them.
Starting from the same password, it is very easy to track if our email is successfully compromised, I remember in the email there is a list of accounts owned by the email and all the lists can be entered by only verifying with email.

[NotATether]

Bro left his hardware wallet on the table and his sibling enter his room, inserted the same password my brother used on his phone and the wallet gets unlocked, right there is a 1 BTC sitting nicely in the wallet and the boy 😱😱 screamed.

Haaaa brother Kunle is rich, all this while he is rich...

I still can't help but cracking my ribs about this.

I would genuinely have a heart attack if this happened to me.

But if the password is actually a PIN... how on earth are you supposed to remember 20 different PINs without writing them down somewhere?

[taufik123]

Luckily his brother didn't sell the Bitcoin or transfer it to another swallow.
Imagine if that 1 BTC is lost and his brother takes it, then pretends not to know what happened.

Using the same password for all devices, social media or for wallet access passwords, it is necessary to differentiate them all.
I will differentiate from the type and it will be a little more unique as a marker that the password of each device will be specific and recorded in the most secure place in my opinion.

It will be a valuable lesson for anyone who has experienced this kind of thing, but some people who have experienced it lose their assets due to password leaks
that are quite common or easy to guess and some passwords also need to be changed within a certain time frame, or when the password becomes common enough and feels it needs to be changed.

[icebar]

Giving the same password to something means increasing your security concerns. When giving passwords, everyone should definitely create different passwords. In the mentioned incident, his brother knew that he was probably using the same password there and because of his idea, he got access to that wallet. If the same password was not used, no one would have ever understood it. Moreover, since there are security risks online, everyone should definitely take maximum precautions. If the money saved for a long time is lost due to a small mistake, then the pain will never be bearable. You have to be careful about the security of your assets so that you do not lose your assets for any such reason in the future.

[Lida93]

We are not expected to use the same password on every portfolio we have just for security reasons, if we think we are not trying to make it possible to lose access to any of those password and decided to use the same for all, then it is more of taking risk than when we use different password and device a safety measure to save keep them...

It's not advisable to use a single password for different asset locks as it's obvious that a leak of the password leads to access to others. At least their could be a change of the last two to three numerical figures that makes up your password. Like if your password is John123 you can change the second password to John234 or something 222, in that way you don't use same password neither some complex different passwords which you may forget, leading to loss of your funds just because you were trying to securely protect them.

[uchegod-21]

This experience teaches a very serious lesson no one should ignore. We are always being reminded to protect our seed phrases and passwords from unauthorized access, but little is said about weak passwords.

Apart from the bad choice of using the same password for everything, another mistake people make is using passwords that others can easily guess, like their birth date, phone number digits, and other information people can easily link to them. Even if you do not use such passwords for everything, people close to you can still easily access your wallet using the information they know about you.

People just love convenience over security. I am sure that if people were given the choice to generate their seed phrases themselves, they would go for something very weak and easy.

[Findingnemo]

I wish that my brother would learn to respect the privacy of others.

A password manager is fine to maintain the more complicated sets of passwords on multiple logins but don't just leave the wallet like that while you no need to connect your HW in the first place unless you are about to make a transfer, and if you do then unplug and then d whatever you are supposed to do.