NICEVILLE, Fla. — This week’s “It’s Geek to Me” column by Jeff Werner explores how bad password habits, like reusing simple logins across multiple accounts, continue to undermine cybersecurity for countless users.
Niceville.com Community Partner
“Insanity is doing the same thing over and over and expecting different results.”
– Rita Mae Brown (though often misattributed to Albert Einstein)
This quote is perhaps somewhat overused, but my dear Geeks, let me tell you, it is still absolutely relevant in the realm of cybersecurity — particularly in the way many choose to handle passwords.
For years, we’ve been told to change our passwords regularly (every ninety days is good) and to use passwords that are a jumble of special characters, numbers, and mixed cases. Words from the dictionary are a distinct no-no, as are combinations of pet names, children’s names, or special dates like birthdays or anniversaries.
The reason is simple — all of these are easily guessable by a skilled, determined hacker. Despite the warnings, people still use various versions of “Password,” often changing a single letter, capitalizing one character, or adding a “1” at the end. For the tech-savvy, maybe even swapping an “a” for an “@” or an “o” for a zero.
People repeat the same predictable patterns and expect different security results. That, fellow Geeks, is digital insanity. The stark truth is that the playing field has changed, and it’s time our habits caught up.
Niceville.com Community Partner
Because many still believe security means taping a list of passwords under a keyboard or keeping a box of note cards next to the computer, we need to have a serious talk.
When it comes to password management, the root cause of bad habits can generally be narrowed down to one thing — a preference for convenience over security. This includes everything from laziness in maintaining passwords to the struggle of remembering dozens of logins in today’s digital world.
Convenience takes many forms. The first and most dangerous is password reuse. It’s far easier to use one password across everything — from your bank and email to shopping sites and social media.
The problem? Data breaches are inevitable. When one site gets hacked and its database is leaked on the dark web, attackers use automated tools to test those same credentials on hundreds of other websites.
Niceville.com Community Partner
When the same key unlocks every door, the hacker can pick and choose what to steal.
The second bad habit is using easily guessable information in your passwords. Many people still use “password,” “QWERTY,” or “123456.” Hackers don’t guess these manually — they use massive dictionaries of common terms and public data scraped from your social media.
And those innocent Facebook posts that ask you to list your first car or favorite teacher? They’re often used for information gathering. That data helps build a profile on you.
For more on this topic, see “It’s Geek To Me” Issue #500, published February 19, 2017. It’s a little dated, but still highly relevant. You might think you’re clever using your dog’s name and birth year, but it would likely take a modern computer only seconds to crack.
Niceville.com Community Partner
I’m out of room for this week, so I’ll continue this discussion in the next exciting issue of “It’s Geek to Me.” Don’t miss it.
In the meantime, visit my website and drop off a question for me while you’re there. I’ll admit, it’s a lot more fun to answer reader questions than to yell at you about your (likely) poor password management habits.
To view additional content, comment on articles, or submit a question, visit my website at ItsGeekToMe.co (not .com!)
Jeff Werner, a software engineer based in Niceville, Florida, has been writing his popular “It’s Geek to Me” tech column since 2007. He shares his expertise to help readers solve everyday tech challenges.
