Common security myths

Common Security Myths

Myth 1 – It's safe to use the same username and password across multiple accounts.

When you use the same password across multiple accounts, you increase your risk if one of the websites or applications becomes compromised or suffers a breach. Attackers will reuse those credentials across popular websites to see if they are able to gain access to the account.

Myth 2 - I can't remember all my passwords so I write them down or store them in a document on my computer.

Your passwords should be treated as very confidential. If the number of passwords you need to maintain becomes challenging, consider using a password management app on your phone or computer. 

Myth 3 – It's safe to allow my browser to save or store my password so I don't have to type it every time.

While letting your browser save your passwords seems like a helpful convenience, this can still have some risks. Most browsers don't save your passwords securely.

Myth 4 – Cybersecurity is a technology problem.

Cybersecurity has a big people component to it. There are plenty of important technical fixes and new tools to adopt, but if people aren't willing to invest in securing themselves, then they will remain insecure. An important element is to shift from a mentality of fear and unfamiliarity to working toward what matters more: resilience. As long as people use the Internet, they will always be exposed to risk from those who want to illegally acquire their personal information.

Myth 5 - I consider myself highly knowledgeable about information security - if I experience a data incident, it won't be because of me.

Thinking you're immune to an attack may make you more susceptible because it means you're likely to let your guard down. It's important for all of us to stay vigilant, no matter how knowledgeable we are about information security risks or the latest techniques being used by the fraudsters.

People with bad intentions are sending ever-more-sophisticated phishing emails that can be difficult to distinguish from the real thing. We all get busy and are likely to make a mistake at some point. Work hard to maintain a mindset of being alert as opposed to feeling a false sense of security.


Charles Schwab & Co., Inc. is an equal opportunity and affirmative action employer committed to diversifying its workforce. It is Schwab's policy to provide equal employment opportunities to all employees and applicants without regard to race, color, religion, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), gender identity or expression, national origin, ancestry, age, disability, legally protected medical condition, genetic information, marital status, sexual orientation, protected veteran status, military status, citizenship status or any other status that is protected by law.

The Charles Schwab Corporation provides a full range of securities, brokerage, banking, money management, and financial advisory services through its operating subsidiaries. Its broker-dealer subsidiary, Charles Schwab & Co., Inc. ("Schwab"), Member SIPC, offers investment services and products, including Schwab brokerage accounts. Its banking subsidiary, Charles Schwab Bank (member FDIC and an Equal Housing Lender), provides deposit and lending services and products.

Schwab Advisor Services™ serves independent investment advisors and includes the custody, trading, and support services of Schwab. Independent investment advisors are not owned, affiliated with, or supervised by Schwab. Schwab Retirement Plan Services, Inc. provides recordkeeping and related services with respect to retirement plans.