Why should you care about passwords?

Welcome to CyberHygiene, our weekly newsletter, where we share tips and actionable data to help everyone stay safe online.

First time seeing this? Please subscribe.

Are you guilty of using the same password for multiple accounts? Discover the dangers and how to fix it in the latest edition of my newsletter CyberHygiene.

But first, why should you care about passwords?

A password is a secret code that verifies the identity of the person who is trying to access an account or system. Passwords are the primary method of authentication for most online accounts, including email, social media, banking, and shopping accounts. If someone gains unauthorized access to an account or system, they can steal personal information, compromise sensitive data, and conduct fraudulent activities.

A report published by NordPass in 2021 found that the average person has around 100 passwords. That’s way too many to remember and that leads many people to use easy-to-guess passwords or reuse the same password across multiple accounts.

Unfortunately, weak passwords are still a widespread problem. They make it easy for hackers to guess or crack passwords and gain access to accounts. 80% of hacking incidents are caused by stolen and reused login information according to Verizon. In addition, many people also fall prey to phishing scams that trick them into revealing their passwords.

As a regular internet user, you’re 1 click away from getting hacked if you don’t take passwords seriously and you don’t start following the best practices today.

Keep reading to discover the latest tools and techniques for creating and managing passwords, and for keeping your accounts secure.

1. How have passwords evolved over time?

2. What are the top threats to passwords?

Cybercriminals can use software to crack passwords by guessing combinations of characters until the correct password is found. This is why it’s important to use strong, complex passwords that are difficult to guess.
Phishing and social engineering attacks are designed to trick users into giving away their login credentials by imitating a legitimate website or service. Once the cyber criminal has obtained the username and password, they can use it to access the account. For example, they may pose as a tech support agent and ask for the user’s password to fix an issue.
Keylogging is a method of recording every keystroke on a computer, including passwords. Cybercriminals can use keylogging software to steal login credentials without the user’s knowledge.
When a company or service experiences a data breach, it can result in user login credentials being compromised. Cybercriminals can use these stolen passwords to access the affected accounts.
Brute force attacks involve using software to try every possible combination of characters until the correct password is found. This method is time-consuming but can be successful if the password is weak.