As our online lives expand, so does the burden of managing countless login details. ‘Password Fatigue’ was first submitted to Collins Dictionary in 2014 and is defined as ‘feeling induced by trying to remember too many passwords’. Since then, the term has been widely used to describe the overwhelming exhaustion and frustration of managing an ever-increasing number of online accounts.

What are the dangers of password fatigue?

Password fatigue poses numerous dangers, such as: 

1. Weak passwords: users create simple, easily cracked passwords for easier management.
2. Password reuse: the same password is used across multiple accounts, amplifying risk if one is compromised.
3. Security shortcuts: overwhelmed users might compromise security by writing down log in details or using predictable patterns.
4. Avoiding security measures: the hassle may lead some to skip extra security steps like two-factor authentication.
5. Phishing susceptibility: less vigilance can make users more prone to phishing scams.
6. Ignoring security alerts: users overlooking important security notifications or lockout alerts.
7. Mental drain: managing multiple log ins can reduce focus and productivity, with users spending time on resets rather than tasks.

As the digital world expands, remembering countless log ins is becoming more urgent. Sometimes, it’s easy to forget what good password hygiene looks like. RoboForm has collated a simple reminder of how to ensure safe online browsing.

Top 6 tips for good password hygiene practices: 

1. Invest in a good password manager: its advanced technologies allow you to store your passwords safely and securely, making them easily accessible without a need to remember every one of them. These tools alleviate the cognitive burden of having to remember a multitude of complex log ins. By securely storing them, such tools ensure that you can access your accounts effortlessly, with just one master password to remember. This not only enhances security by enabling the use of unique, complex passwords for each account but also significantly improves convenience. Password managers like RoboForm have a variety of packages tailored to individual needs. 
2. Keep it complex: this is your first defence against unauthorized access. Passwords should be a cryptic mix of letters (uppercase and lowercase), numbers, and symbols, appearing as indecipherable as ancient hieroglyphs to hackers. RoboForm has an easy-to-use password generator tool and a strength checker, which are free. 
3. Diversify: just as a financial advisor recommends diversifying investments, cyber security experts suggest not using the same password across different platforms. Each account should have its unique log ins, reducing the domino effect if one account is compromised.
4. Practice safe sharing: if you must share a password, never do it over text or email. Use encrypted services or share them in person. Better yet, use a feature many password managers provide that allows for secure log in sharing without revealing the actual password itself.
5. Monitor your accounts: It is crucial to keep a close eye on the activity within your accounts. Many online services now provide comprehensive logs that detail the history of account access, including the specific times and geographical locations from which your accounts were accessed. By regularly reviewing these logs, you can become adept at spotting any irregularities or suspicious activities that may indicate unauthorized access or attempted breaches. RoboForm’s password manager can scan your log ins for weaknesses or breaches and prompt you to take action. 
6. Embrace 2FA (Two-factor authentication): Two-factor authentication (2FA) adds an extra security layer to your security. This means that even if an unauthorized party manages to discover your password, their attempt to access your account will be thwarted without this crucial second step, which often involves a temporary code sent to your mobile device or generated by an authenticator app. The widespread adoption of 2FA by most leading digital platforms and services today reflects its effectiveness in safeguarding users’ data and personal information.

Top 2 misconceptions about good password hygiene: 

1. Regular updates DO NOT increase security: Frequent password updates are believed to enhance security. However, evidence suggests this practice may actually lead to weaker initial passwords and predictable changes, reducing overall security. The Federal Trade Commission’s Chief Technologist and research from the University of North Carolina support this view, indicating that such changes often make passwords easier for attackers to guess. It’s better to promote better passwords to begin with, then frequent updates to weak passwords.
2. Complexity is NOT more important than length: While complexity is important, length plays a more significant role in your security. A longer password exponentially increases the difficulty for attackers, making it a more effective deterrent than complexity alone. Importantly, merely adding special characters does not inherently make a password secure, on the other hand, using a passphrase, a sequence of words or a sentence, can create a strong and memorable password.

Good password hygiene is akin to maintaining a healthy lifestyle for your digital persona. By crafting complex passwords, diversifying them across accounts, sharing them securely, monitoring your accounts, and using password managers with 2FA, you can significantly reduce the ‘fatigue’ and keep your online presence secure. This proactive approach to digital security is not just about protecting your personal or company information, it’s about creating a secure digital environment where your data remains impenetrable to unauthorized access, thereby ensuring your peace of mind.

Photo by Jakub Żerdzicki on Unsplash.