Some of you may have noticed that #CoSoSec has been reporting fewer breaches of late.
It's not that they haven't been happening, it's that they aren't newsworthy anymore.
They're happening at such a rate that only "the biggest ever" would get reported now... and that's a pretty high bar. (equifax et al.)
But you know what? Breaches are still happening. Your passwords are still being compromised.
Credential stuffing (https://en.wikipedia.org/wiki/Credential_stuffing) is still happening.
If you want to be safe from credential stuffing, you need to make sure that every single password is absolutely unique and unguessable.
And theres only one way to do that.. use a password manager. If you want an extra layer of protection, also use unique usernames and email addresses. Many email providers accept a plus and some arbitrary characters between the username and @ sign. If not then something like https://guerrillamail.com can help you be unique.