Meta, account security Show more
If you haven't already, I strongly recommend you enable Two-factor auth on your Mastodon accounts. This option is available in your settings panel.
A password alone isn't very secure, but 2FA means even if a hacker got your password, they still wouldn't be able to get into your account. It's good practice to use 2FA wherever you can.
I use Authy on mine, which is available on both iOS and Android, and also has a Chrome extension. There are plenty of other options, though.