SecurityBrief Asia logo
Story image

Consumer password hygiene doesn't reflect cybersecurity threat in 2020

15 May 2020

As waves of new, more sophisticated cyber attacks become more prevalent in the wake of COVID-19 it’s becoming more apparent that risky password behaviour can lead to serious consequences.

It’s one of the basics of internet security hygiene, but according to a new report from Kaspersky, 83% of internet users think up their own passwords, while 54% say they are unaware about how to check if any of their credentials have already been leaked.

They’re still the most common form of authentication, but with the rising tide of cyber threats, passwords must also be strengthened in turn. While many may think their password is unique to them and next to impossible to guess, the reality is that if that if a hacker knows enough about a user, there’s a good chance they can guess their password.

According to Kaspersky’s report, 55% of users claim they remember all of their passwords - which can be difficult if security requirements such as password complexity and uniqueness are to be satisfied. 

Almost one in five (19%) keep them written in a file or document stored on their computer, while 18% use the browsers on their computers, smartphones, or tablets to store their passwords.

But of course, if any of these modes storage are compromised, potentially all of a user’s personal data stored in their password-protected accounts could be up for grabs.

“Consumers can monitor the spread of personal data, including which passwords might have been leaked,” says Kaspersky head of consumer product marketing Marina Titova.

“And this is not only for the sake of ‘just being aware’; it also allows individuals to take the right action to minimise any invasion of privacy – along with any wider consequences. 

“That’s why we at Kaspersky put a big focus on protecting consumer’s privacy.”

One way of bolstering password protection is knowing whether a password is at risk of breach.

For example, users can use services such as Have I Been Pwned?, where they can check if their passwords have been included in public leaks or data breaches without visiting the sketchier parts of the web.

To ensure the safety of personal data, Kaspersky recommends users:
  • Minimise the number of people who know your login information, and never leave passwords where others might find them – be it on paper or on a device. 
  • Find out if any passwords used to access online accounts have been compromised. The Account Check feature within Kaspersky Security Cloud allows users to check their accounts for potential data leaks. 
  • If one is detected, the solution provides information about the categories of data that may be publicly accessible so that the individual affected can take the appropriate action.
Story image
Hybrid IAM solutions are the way of the future, study states
“As this first-of-its-kind research shows, while IT leaders are faced with unique criteria and conditions that shape their IT strategy, hybrid IAM has emerged as a necessity."More
Story image
Why a more secure organisation is a collective responsibility
With vast volumes of data moving to the cloud, many IT professionals are frequently challenged to protect their enterprise environment, and there is a greater focus being placed on advancing cybersecurity strategies.More
Story image
Cybersecurity budgets still not keeping up with threats — report
Executive teams are failing to recognise the level of damage cyber-threats pose to organisations, according to Sophos — many of them taking a ‘conservative approach’ to cybersecurity expenditure.More
Story image
Remote work continues, and endpoint security cited as a must
Nearly half of workers will stay remote after the pandemic ends, and two out of three IT professionals are concerned with endpoint misuse, according to Prey Software's new study.More
Story image
5G network security a US$9 billion dollar opportunity - report
The cloud-native nature of 5G networks will have a disruptive and positive impact on the cybersecurity industry in the next few years, with 5G network security presenting a US$9 billion enterprise market opportunity by 2025.More
Story image
Data transparency increasingly important, Kaspersky study states
“It is clear from the data that people have developed a sense of control and they are now demanding openness about how and where their data is being managed."More