If all you use is a password to access your online accounts, you're doing it all wrong.
Passwords, they're relatively unsecure.
If there was ever a data breach and your passwords were exposed, a hacker could easily access your accounts.
What you need is two factor authentication.
So think about it like this.
When you go to an ATM and you entered a debit card, that's one factor.
Then when you enter your PIN, that's a second factor.
And together you get two-factor authentication.
For online accounts that second factor is usually your phone.
So what will happen is you'll enter your password then the website will send a code to your phone.
Then you back to the website and you enter that code to access your account.
Some of the most popular websites that offer it are Facebook, Google, Dropbox, twitter and Yahoo.
Taking a second step to sign in can definitely feel like a hassle, but it's a lot better than having to deal with a hacked account.
And now your doing it right.