Somehow my assumption is it will only get worse from here, with AI agents looking for exploits etc with much more efficiently than bots? weird future is waiting
It’s not enough; make sure to use a unique email for each service you sign up for. This limits the damage in case of an incident and protects your privacy, as no one can perform OSINT on you to cross reference other services. Additionally, I’ve found that sometimes you can detect a site breach before the owners do when you receive a malicious email sent to that unique address.
It isn’t a hassle, you won’t create a separate email, but an aliases.
> Do you know or recommend a service for this thats easy and fast to use?
Honestly I don’t like to promote any commercial services, but there are few out there that automate it, simplelogin (I believe you can host it yourself too), anonaddy, or fastmail that has an integration with 1password, so your password manager generate a random pass and an email alias automatically for you. There are more and it’s better to research it yourself to find the best solution for you, again, my post sounds like shilling for these products but a good start.
>Do you know or recommend a service for this thats easy and fast to use?
I use a google account with a catch all domain. {Website/Store} @ short domain that goes to the same mailbox. I reply from name @ different domain, though.
The benefit is when I give it over the phone it's easy to say "StoreName"@ than spelling my name or using another longer email.
DuckDuckGo and Mozilla have similar products. And if your email provider allows the "plus trick", as Gmail does, you should at the very least use that.
Still this makes the interent scarier. Most people don't have a clue how fragile the web is and how vunerable they are.