Password management is still too much for people — and many of us still write them down

News
By
published

Turns out writing down passwords and sharing them with others isn't secure

Shadowed hands on a digital background reaching for a login prompt.
Image Credit: Shutterstock (Image credit: Shutterstock)

Keeper Security, creator of one of the best password managers, has released new research claiming people are still struggling to create and store secure passwords.

The report found nearly two-thirds (62%) of people remain overwhelmed by managing passwords with many of them feeling overconfident in their knowledge of cybersecurity practices, resulting in risky password practices.

The report also highlighted the importance of password management, as well as the importance of transitioning to passwordless alternatives such as passkeys and other multi-factor authentication (MFA) methods. 

Bad practices

When it comes to how people go about remembering multiple passwords, the most common methods were to rely just on memory (26%), writing them down (24%) and storing them within a browser or phone notes app (19%). The issue with these methods being that they are not secure and can lead to easily lost or stolen passwords.

Users also often share their passwords with friends and family, with streaming site accounts being the most shared (34%), followed by shopping accounts (22%), personal emails (20%), social media (16%) and work/school emails (16%). The latter being particularly concerning as it not only puts the account itself at risk, but also the wider organization.

Keeper recommends that users who struggle with remembering passwords should adopt a password manager, create strong and unique passwords using the best password generators, and using MFA wherever it is available.

“The data reveals a cybersecurity paradox where people feel confident in their cybersecurity knowledge, yet are frequently targeted by cyber attacks and scams," noted Darren Guccione, CEO and Co-Founder of Keeper Security. "This disparity emphasizes that knowledge alone cannot mitigate cyber risks; using tools like password managers and following best practices are vital for reducing cyber risks.”

More from TechRadar Pro

Benedict Collins
Benedict Collins
Staff Writer (Security)

Benedict has been writing about security issues for close to 5 years, at first covering geopolitics and international relations while at the University of Buckingham. During this time he studied BA Politics with Journalism, for which he received a second-class honours (upper division). Benedict then continued his studies at a postgraduate level and achieved a distinction in MA Security, Intelligence and Diplomacy. Benedict transitioned his security interests towards cybersecurity upon joining TechRadar Pro as a Staff Writer, focusing on state-sponsored threat actors, malware, social engineering, and national security. Benedict is also an expert on B2B security products, including firewalls, antivirus, endpoint security, and password management.