We’re all still making the same mistakes when it comes to secure passwords

From picking bad passwords to reusing ones that have been exposed online

When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.

As the number of accounts needed for all of the online services we use every day has skyrocketed in recent years,password reusecontinues to remain a huge problem for both consumers and businesses according to a new report from SpyCloud.

The cybersecurity firm’s new2022 Annual Identity Exposure Reportsheds light on how users still continue to reuse passwords across multiple online accounts as opposed to using apassword generatoror even apassword managerto create strong, unique passwords for each of the online services they use.

Over the course of last year, SpyCloud says it recaptured over 15bn credentials and personally identifiable information (PII) from cybercriminals which is a 200 percent increase from the assets it recaptured in 2020. With this information in hand, cybercriminals can commitidentity theftand other types of fraud that impact both businesses and consumers alike.

To make matters worse, many of the credentials recovered by SpyCloud had previously been exposed in past data breaches and leaks.

Bad passwords

Despite an increase in knowledge aboutpassword hygiene, users continue to pick bad passwords that are incredibly easy to guess such as “123456”, “qwerty”, “admin” and “password”. SpyCloud also found that more people are basing their passwords off of content fromstreaming serviceslike Netflix and Disney+ with Loki, Falcon and Wanda being the top pop-culture-themed reused passwords.

Of the passwords it recovered from publicly available data breaches and leaks in 2021 and from previous years, 64 percent are still being used across multiple accounts. SpyCloud also found that 70 percent of users whose credentials were part of a data breach or leak are still reusing the same exposed passwords.

Microsoft is hoping to make it tougher to steal Windows passwords

For some reason, these are still the most popular passwords around

Even Fortune 500 businesses have poor password hygiene

Even if you don’t want to upgrade to premium password manager, these days you can use abrowserlikeGoogle Chrometo create new, strong passwords for you and store them securely. With your credentials stored in Chrome, you can access and use them to log in to your online accounts on other devices such as yourAndroid smartphone.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

As the number of online accounts required in our digital lives doesn’t seem to be decreasing anytime soon, the responsibility of creating, remembering and securely storing all of your unique passwords falls on users themselves especially if they don’t want to fall victim to identity theft or fraud.

ViaZDNet

After working with the TechRadar Pro team for the last several years, Anthony is now the security and networking editor at Tom’s Guide where he covers everything from data breaches and ransomware gangs to the best way to cover your whole home or business with Wi-Fi. When not writing, you can find him tinkering with PCs and game consoles, managing cables and upgrading his smart home.

Dangerous Android banking malware looks to trick victims with fake money transfers

Sophos Firewall hack on government network used an all-new custom malware

Samsung reveals its next-gen Bixby AI – a Galaxy brain to rival ChatGPT and Gemini