Good call. Honestly people struggling to use password managers and 2FA/MFA/TOTP in '26 is borderline pathetic. I get it if one is new on the web, then maybe.
Would help to spread the word on some tools in the posts, and/or have these suggested in the user security settings panel:
KeePassXC for password management (and optionally 2FA too)
Sync the KeePass files between all devices for sync (no cloud stuff needed)
Android: KeePassDX
iOS: nope
Aegis for 2FA on Android
All of these are free as in freedom