What a Major Car Company's Security Response Teaches Us About Password Safety

Jaguar Land Rover recently experienced a cyberattack that made the company worry that employee login credentials had been compromised. The company took an unusual step: they required all 30,000 employees to physically come in and verify their identity in person before they could reset their passwords.

Former chief information security officer Ashish Shrestha shared this information at a cybersecurity conference. This incident does not directly affect families who own Jaguar or Land Rover vehicles. Your car is not at risk. However, the company's response teaches an important lesson about how seriously we should take password security, especially when there's a chance passwords have been stolen.

While you cannot reset your passwords in person at most companies, you can take similar protective steps right now. First, if you reuse the same password across multiple websites or apps, change that habit immediately. Second, enable two-factor authentication (sometimes called 2FA or two-step verification) on every account that offers it, especially email, banking, and social media.

Third, consider using a password manager app to create and store unique passwords for each site you use. For long-term protection, make it a family rule that everyone uses different passwords for different accounts. Teach your kids this habit early. Think of passwords like house keys: you wouldn't use the same key for your house, car, and office.

Your online accounts deserve the same approach. Two-factor authentication adds a second lock to that door, making it much harder for criminals to break in even if they steal your password.