Strengthen your passwords for world password day

Issue 4 2020 Information Security

“The recent headlines about 500 000 Zoom passwords being up for sale confirm how important it is that people change their password habits. Passwords are painful. I get it. But using the same password over and over again puts us at risk. My advice is using a password manager. This means you only have to remember one very strong password, and the password manager takes care of all the other ones. And wherever possible apply multi factor authentication. This is combining your password with something that you own, like a One Time Password app on your phone,” says Anna Collard, MD of KnowBe4 Africa.


Anna Collard.

KnowBe4, the provider of the world’s largest security awareness training and simulated phishing platform, today announced it has launched a new kit to help people strengthen and improve their password management in recognition of World Password Day on May 7.

The National Cyber Security Centre in the UK found that the most hacked passwords that were used the most overall were as follows: 123456, 123456789, qwerty, password and 111111. First names, premier league football teams, musicians and fictional characters were also found to be popular password categories that are easily cracked.

“Contrary to popular belief, bad guys don’t actually need to crack weak passwords, they can just reuse the billions of passwords already available for sale on the dark web. Using a technique called “credential stuffing”; hackers use account details obtained from older data breaches,” says Collard.

According to the LastPass Psychology of Passwords Report, 91% of people know password reuse is insecure, yet two-thirds do it anyway. Half of respondents hadn’t changed their passwords in over the past 12 months even after hearing about a breach in the news.

“There’s a lot of debate out there about the best password policy and whether or not they should be long, short, how complex, etc.,” said Roger Grimes, data-driven defence evangelist, KnowBe4. “The National Institute of Standards and Technology (NIST) has drastically changed their advice recently, stating that long and complex passwords shouldn’t be required and they don’t need to be changed unless they’ve been compromised in some manner. This has been continuously debated and many security professionals do not agree with this advice. The most important thing to remember is to never reuse the same password for multiple sites. It’s also recommended to use multi-factor authentication whenever possible and a to use a password manager.”

The KnowBe4 World Password Day Kit is available to anyone who is looking to learn more about password best practices and includes:

Complex password guide

Video by Kevin Mitnick on how easy it is to crack a password  

• KnowBe4’s complimentary Password Exposure Test




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Highest increase in global cyberattacks in two years
Information Security News & Events
Check Point Global Research released new data on Q2 2024 cyber-attack trends, noting a 30% global increase in Q2 2024, with Africa experiencing the highest average weekly per organisation.

Read more...
Cybersecurity a challenge in digitalising OT
Kaspersky Information Security Industrial (Industry)
According to a study by Kaspersky and VDC Research on securing operational technology environments, the primary risks are inadequate security measures, insufficient resources allocated to OT cybersecurity, challenges surrounding regulatory compliance, and the complexities of IT/OT integration.

Read more...
Cybersecurity in South Africa
Information Security
According to the Allianz Risk Barometer 2025, cyber incidents, including ransomware attacks, data breaches and IT outages, are now the top global business risk, marking their fourth year at the top.

Read more...
Are AI agents a game-changer?
Information Security
While AI-powered chatbots have been around for a while, AI agents go beyond simple assistants, functioning as self-learning digital operatives that plan, execute, and adapt in real time. These advancements do not just enhance cybercriminal tactics, they may fundamentally change the battlefield.

Read more...
Disaster recovery vs cyber recovery
Information Security
Disaster recovery centres on restoring IT operations following events like natural disasters, hardware failures or accidents, while cyber recovery is specifically tailored to address intentional cyberthreats such as ransomware and data breaches.

Read more...
Back-up securely and restore in seconds
Betatrac Telematic Solutions Editor's Choice Information Security Infrastructure
Betatrac has a solution that enables companies to back-up up to 8 TB of data onto a device and restore it in 30 seconds in an emergency, called Rapid Access Data Recovery (RADR).

Read more...
The rise of AI-powered cybercrime and defence
Information Security News & Events AI & Data Analytics
Check Point Software Technologies launched its inaugural AI Security Report, offering an in-depth exploration of how cybercriminals are weaponising artificial intelligence (AI), alongside strategic insights defenders need to stay ahead.

Read more...
The deepfake crisis is here and now
Information Security Training & Education
Deepfakes are a growing cybersecurity threat that blur the line between reality and fiction. These AI-generated synthetic media have evolved from technological curiosities to sophisticated weapons of digital deception, costing companies upwards of $600 000 each.

Read more...
What does Agentic AI mean for cybersecurity?
Information Security AI & Data Analytics
AI agents will change how we work by scheduling meetings on our behalf and even managing supply chain items. However, without adequate protection, they become soft targets for criminals.

Read more...
Phishing attacks through SVG image files
Kaspersky News & Events Information Security
Kaspersky has detected a new trend: attackers are distributing phishing emails to individual and corporate users with attachments in SVG (Scalable Vector Graphics) files, a format commonly used for storing images.

Read more...