World Password Day, observed on May 7 this year, highlights how outdated traditional password advice has become. Adding an exclamation mark to “Password123” is no longer an effective defence. In today’s landscape, a robust password provides no safety if information-stealing malware extracts it directly from a browser cache, or if it is copied into an unmanaged AI chatbot by a well-meaning employee.