World Password Day. Join the Fight Against Cybercrime, One Password at a Time
Every year on the first Thursday of May, the information technology and computer security community around the world invites everyone around the world to join them in celebrating and taking part in World Password Day, a global initiative designed to raise awareness about the importance of strong password hygiene. This year, it falls on May 2nd, 2024, serving as a timely reminder for everyone to assess and strengthen their password management practices.
While many people are aware of password best practices, a recent survey sponsored by American computer security company Bitwarden, reveals a concerning gap between awareness and action. The survey, conducted in conjunction with Propeller Insights, polled over 2,000 individuals across the US, UK, Australia, Germany, and Japan. The results paint a picture of prevalent password reuse and a reliance on memory, leaving users vulnerable to data breaches and online attacks.
We asked lifetime cybersecurity industry expert and veteran computer security veteran Dez Blanchfield, CEO of Sociaall Inc, for his thoughts on World Password Day and his response was “Every day should be world password day of course, but if by highlighting the topic and key issues around it even just once a year with an event such as World Password Day, and that prompts folk to take action to help them avoid being hacked and potentially loosing their life savings or private data, then it is indeed worth doing, as education is the key to change, and if the latest data around the dramatic rise of digital & cyber crime isn’t prompting urgent action, then frankly anything we can do to raise awareness around cyber security and digital hygiene is a good thing“.
The Password Problem: Reuse and Reliance on Memory
The survey highlighted many troubling trends, one in particular which should keep I.T. security professionals awake at night was that a staggering 84% of respondents admitted to reusing passwords across multiple websites. This practice significantly increases the risk of a domino effect, where a single compromised password can grant access to a multitude of accounts. Imagine using the same key for your front door, your car, and your safety deposit box – a single breach could leave everything vulnerable.
Another rather disconcerting discovery the survey revealed was a concerning dependence on memory for password management. “My memory” topped the list of responses when participants were asked about their chosen method. While remembering every password might seem ideal, human memory is fallible. The second most popular response, pen and paper, while marginally more secure, lacks the convenience and scalability needed in today’s digital world. Password managers, which securely store and manage complex passwords, came in a distant third.
The Consequences of Weak Password Hygiene
The Bitwarden survey also underlines the real-world impact of poor password habits. Around 24% of respondents reported being affected by a data breach in the past year and a half. This statistic highlights the prevalence of cyberattacks and the importance of robust password security.
While some respondents (21%) reset their passwords frequently, a daily or multiple times a week basis, this approach can be counterproductive and lead to password fatigue, potentially increasing reliance on weak and easily guessed passwords.
The Path to Stronger Password Security
The good news is that taking control of your password security is relatively simple. Here are some key steps you can take:
- Embrace Unique and Complex Passwords: Move away from password reuse. For each online account, create a unique password that’s at least 12 characters long and includes a combination of uppercase and lowercase letters, numbers, and symbols.
- Utilize Password Managers: Consider employing a reputable password manager. These applications securely store your passwords and can automatically generate strong, unique passwords for each website or service you use.
- Enable Multi-Factor Authentication (MFA): Whenever available, activate MFA for your online accounts. MFA adds an extra layer of security by requiring a second verification step, often a code sent to your phone or generated by an authenticator app, in addition to your password.
Beyond World Password Day: Building a Culture of Security
World Password Day serves as a crucial reminder, but password security should be a continuous practice, not a one-day event. Businesses and organisations also have a role to play in fostering a culture of strong password hygiene. This can involve:
- Educating Employees: Regularly educate staff on password best practices and the importance of using strong, unique passwords and password managers.
- Implementing Secure Systems: Enforce strong password policies within organisations, and consider implementing password managers for employee accounts.
- Promoting Multi-Factor Authentication: Encourage users to enable MFA for all company accounts to bolster overall security.
By taking individual and collective action, we can significantly improve online security and make the digital world a safer space for everyone. World Password Day provides a valuable opportunity to take stock of your password practices, implement stronger security measures, and protect yourself from the ever-evolving threats of the cyber landscape. Remember, a strong password is like a digital lock on your online life – take the time to choose the right one.
So grab a hot beverage, make time now, or today, and update and change all of your passwords, both professional and personal, and take part in World Password Day 2024, and don’t forget that Personal Identification Numbers or PIN’s are also a form of password, they too need regular updates and changing, to keep you, your data, and potentially your livelihood safe. And please share this article with work colleagues, family and friends, and on social media please, and be sure to use the #WorldPasswordDay hashtag and tag @dez_blanchfield as well, as we’re sure you care about their digital and cyber safety as well.