Three in five Singaporeans who access government services online have never changed their SingPass password once it is set.
These services include the online filing of tax returns and the checking of Central Provident Fund and HDB accounts, according to a survey conducted by the Infocomm Development Authority's subsidiary, Assurity Trusted Solutions, in April.
More than half of those polled who bank or trade securities online also do not change their passwords regularly.
"Good cyber hygiene practices are generally lacking across the board," The Straits Times quoted MrChai Chin Loon, chief operating officer of Assurity, as saying.
He suggested complex passwords comprising at least one upper-case letter, a special character and a number.
Assurity provides security technology to stock broking houses and companies here.
According to the survey results, Singaporeans' most popular online activities at home are social networking, online banking and online shopping.
It was also found that 45 per cent of all respondents do not have different passwords for all their online accounts.
Though nearly three-quarters of the respondents acknowledged that two-factor authentication (2FA) is a key element of an ideal security protocol, they weren't activating it, Channel NewsAsia reported.
To help bridge the gap between Singaporeans' 2FA awareness and actual practice, Assurity will hold 2FA awareness talks at various public libraries from until November.
This article was first published in The New Paper.