Different websites but same username/password?
It seems that for the sake of convenience, it’s a very common practice to use the same email ID & password when registering an account of various web services.
Now, that practice is not just plain dumb but incredibly stupid.
Reason being is, if a website like Twitter or Tumblr (for that matter), were compromised, you actually put all the other services that were registered with the email ID at risk as well.
Not to mention, now the hacker group have access to your email account.
This leaves you no choice but to change the password for each and every web services that were subscribed with that email ID.
Thus, the best practice is to use a common email for account name but different password for different web services, plain common sense.
Sophos estimated that more than 40% of Internet users do not follow this best practice, hopefully with the latest news of famous Twitter accounts being compromised, people will start to be more careful on this matter.
