Seven deadly sins in UI and UX design
Nikhil Sridhar

Great article, but something to note for #4: while overall error messages should be more detailed, in the example you give the message was most likely intentionally vague for security purposes. If someone is trying to hack your account, the messages shouldn’t give any hints on how to get closer to your credentials (in the example it shouldn’t even reveal it was specifically the password that was wrong). Better to just push them to an account recovery flow.