The importance of regular software updates is apparently lost on a large proportion of Internet users who aren't security experts, the survey found. Just 2 percent of non-experts said that routinely patching software was high on their list of security priorities, compared to 35 percent of experts.
In fact, the researchers wrote in a blog post, many non-experts were concerned that software updates could themselves pose a security risk.
One Respondent said:
I don't know if updating software is always safe. What [if] you download malicious software?
By contrast, non-experts were much more likely to list anti-virus software as one of their most important safety precautions, despite the fact that such software, by itself, doesn't provide a defense against many of the online threats they face today. While just 7 percent of experts said anti-virus software was one of their top three precautions, fully 42 percent of non-experts rated it that highly.
There was, however, some common ground. Both groups listed strong password management as a key part of staying safe online, even though experts were much more likely to use dedicated password management apps than users.
By and large, however, Google's researchers say their data shows that, despite years of breaches, hacks and privacy violations of every imaginable kind, the best security practices are still not generally understood.
Our findings highlight fundamental misunderstandings about basic online security practices. Software updates, for example, are the seatbelts of online security; they make you safer, period. And yet, many non-experts not only overlook these as a best practice, but also mistakenly worry that software updates are a security risk.