To log in somewhere, you need to know your account email. Most online authentication systems are built assuming your account email is public (which it is; email lists are everywhere now). But you can give yourself an extra layer of security for free by using a unique and secret email. The post from levelsio linked above suggests using a fully random email address. Now, you don't have to go that far to get most of the benefits. Just use a different email. The fastest way to do this is to use a plus sign + to make an alias, which most email providers support. For instance, suppose your personal email is alice@gmail.com. If you want to protect your bank account, you can sign up for your bank account using, say, alice+lovespayday@gmail.com, which automatically also goes to your inbox. Doing so instantly protects you from things like: - verification code spam hitting alice@gmail.com (because no bank account under that email exists) - your bank account getting locked because of too [...read more]