After reading the recent social engineering of a user's twitter handle, I started thinking about ways to improve my own online security.
We can only do so much too protect ourselves because at the end of the day we have to trust the companies whose services we use to do their part in protecting us.
Nevertheless, I'm curious if using a unique email address for each online service adds a layer of security which increases the difficulty of social engineering attacks.
For instance, instead of using the same email address, e.g. joshu@mydomain.com I would use something such as github_a4f3@mydomain.com or github_cliche@mydomain.com. The _a4f3 part of the email address would be something random that has no specific meaning and makes it harder to guess than just using github@mydomain.com.
Alternatively, instead of some random string, using diceware to add a real word.
Is there any value in doing any of this?