We talk about passwords a lot. As you know, I am a fan of passphrases instead of passwords as they are hard to guess and easy to remember—a perfect combination for security data.

Despite emphasizing how important passwords and passphrases are in protecting data, most individuals are not trying very hard to think about and deploy a complex password or passphrase, putting both their own information and the information of their employer at risk.

Folks, it’s just not that hard to come up with a passphrase you can both remember and that would be hard to guess. Obviously, security wonks recommend that we not use our name, address, birthday, family members’ or pets’ names, or consecutive numbers such as 1234. UGH—really? Do we have to remind you? Apparently yes.

According to password platform Beyond Identity’s new report, which surveyed 1,000 Americans, a vast majority of us are trying to guess our co-workers’, boss’s and other family members’ passwords; the report also found that people still use generic passwords.

The report showed that 1 in 3 of those surveyed admitted to trying to guess another person’s password and 73.3 percent of them were successful in their efforts!

Message: try a little harder to come up with a passphrase that is more challenging for your co-worker or others to guess. Don’t make it so easy to compromise your personal or professional data.

Photo of Linn Foster Freedman Linn Foster Freedman

Linn Freedman practices in data privacy and security law, cybersecurity, and complex litigation. She is a member of the Business Litigation Group and the Financial Services Cyber-Compliance Team, and chairs the firm’s Data Privacy and Security and Artificial Intelligence Teams. Linn focuses her…

Linn Freedman practices in data privacy and security law, cybersecurity, and complex litigation. She is a member of the Business Litigation Group and the Financial Services Cyber-Compliance Team, and chairs the firm’s Data Privacy and Security and Artificial Intelligence Teams. Linn focuses her practice on compliance with all state and federal privacy and security laws and regulations. She counsels a range of public and private clients from industries such as construction, education, health care, insurance, manufacturing, real estate, utilities and critical infrastructure, marine and charitable organizations, on state and federal data privacy and security investigations, as well as emergency data breach response and mitigation. Linn is an Adjunct Professor of the Practice of Cybersecurity at Brown University and an Adjunct Professor of Law at Roger Williams University School of Law.  Prior to joining the firm, Linn served as assistant attorney general and deputy chief of the Civil Division of the Attorney General’s Office for the State of Rhode Island. She earned her J.D. from Loyola University School of Law and her B.A., with honors, in American Studies from Newcomb College of Tulane University. She is admitted to practice law in Massachusetts and Rhode Island. Read her full rc.com bio here.