Do you use the same password for multiple sites?
Do your eyes glaze over after sites like LinkedIn or Yahoo get massively hacked and, like clockwork, the security wonks come wagging their fingers at you for reusing your passwords?
Do you shrug and say “Hey, it’s not my job to keep those sites from getting turned upside down and shaken by their ankles until all the data tumbles out – it’s theirs!”
If any of that rings a bell, you’re not alone.
Either you need to take a nap, and/or the people who write security warnings need to figure out how to make it all simpler for users, because many of us are suffering from a common malady called security fatigue.
That’s what it’s called in a new study from the National Institute of Standards and Technology (NIST) on what makes computer users feel hopeless and act recklessly.
The study defines security fatigue as “a weariness or reluctance to deal with computer security.”
One of the study research subjects put it this way:
I don’t pay any attention to those things anymore… People get weary from being bombarded by ‘watch out for this or watch out for that.’
Brian Stanton, one of the study’s co-authors and a cognitive psychologist:
The finding that the general public is suffering from security fatigue is important because it has implications in the workplace and in people’s everyday life.
It is critical because so many people bank online, and since health care and other valuable information is being moved to the internet.
If people can’t use security, they are not going to, and then we and our nation won’t be secure.
The study was published this week in IEEE’s IT Professional. It surveyed subjects ranging in age from their 20s to their 60s who come from a diverse mix of suburban and rural areas and who hold a variety of jobs.
Read more here: nakedsecurity.sophos.com/2016/10/07/security-fatigue-leading-computer-users-to-more-or-less-just-give-up/