Credit for this document goes to a USDS colleague of mine, Alex Gaynor.
Follow this checklist to improve security today. These are roughly prioritized, and details for each are later in this document.
- Enable 2-factor for every place that offers it, in particular:
- Google (use the "security key" option if you have a YubiKey 4)