Sign in with
Sign up | Sign in

Your Top 20 Most Common Passwords

By - Source: Tom's Hardware US | B 80 comments
Tags :

Is your password "123456"?

Last year, a major security breach at RockYou.com resulted in the release of 32 million passwords. With such a large data set available, security firm Imperva Application Defense Center (ADC) analyzed and found that, when given the chance, most users will choose a simplistic password.

Imperva found that nearly a third of users chose passwords whose length is equal or below six characters and almost 60 percent of users chose their passwords from a limited set of alpha-numeric characters. Almost half of users used names, slang words, dictionary words or trivial passwords (consecutive digits, adjacent keyboard keys, and so on), with the most common password being "123456".

Here are the top 20 most popular passwords from the RockYou.com leak.

Imperva notes that even though hacking techniques have become better, users of today are no wiser than those 20 years ago. The company's report says that a study of Unix password security in 1990 and hacked Hotmail passwords from 10 years ago showed little change.

So how can everyone get better? Imperva recommends the following:

1. Choose a strong password for sites you care for the privacy of the information you store. Bruce Schneir’s advice is useful: “take a sentence and turn it into a password. Something like “This little piggy went to market” might become "tlpWENT2m". That nine-character password won't be in anyone's dictionary.”

2. Use a different password for all sites – even for the ones where privacy isn’t an issue. To help remember the passwords, again, following Bruce Schneier’s advice is recommended: “If you can't remember your passwords, write them down and put the paper in your wallet. But just write the sentence – or better yet – a hint that will help you remember your sentence.”

3. Never trust a 3rd party with your important passwords (webmail, banking, medical etc.)

Read the full report from Imperva here.

Who is changing his or her password today?

Discuss
Display all 80 comments.
This thread is closed for comments
Top Comments
  • 29 Hide
    deadlockedworld , January 22, 2010 8:42 PM
    So there are a lot of dumb Nicoles? hahaha.
  • 26 Hide
    skine , January 22, 2010 9:29 PM
    Roland: One.
    Dark Helmet: One.
    Colonel Sandurz: One.
    Roland: Two.
    Dark Helmet: Two.
    Colonel Sandurz: Two.
    Roland: Three.
    Dark Helmet: Three.
    Colonel Sandurz: Three.
    Roland: Four.
    Dark Helmet: Four.
    Colonel Sandurz: Four.
    Roland: Five.
    Dark Helmet: Five.
    Colonel Sandurz: Five.
    Dark Helmet: So the combination is... one, two, three, four, five? That's the stupidest combination I've ever heard in my life! The kind of thing an idiot would have on his luggage!

    ----------------------------

    President Skroob: Did it work? Where's the king?
    Dark Helmet: It worked, sir. We have the combination.
    President Skroob: Great. Now we can take every last breath of fresh air from Planet Druidia. What's the combination?
    Colonel Sandurz: 1-2-3-4-5
    President Skroob: 1-2-3-4-5?
    Colonel Sandurz: Yes!
    President Skroob: That's amazing. I've got the same combination on my luggage.
    Dark Helmet, Colonel Sandurz: [looks at each other]
  • 12 Hide
    Hellbound , January 22, 2010 10:11 PM
    Because of this, I had to change my password.....................
Other Comments
  • 29 Hide
    deadlockedworld , January 22, 2010 8:42 PM
    So there are a lot of dumb Nicoles? hahaha.
  • 10 Hide
    the_krasno , January 22, 2010 8:52 PM
    Natural selection I say. People smart enough to have good passwords are less likely to get hacked- they are not worth the effort as it would be easier to hack someone dumber.
  • 3 Hide
    flyinfinni , January 22, 2010 8:54 PM
    Wow.... that is pretty pathetic. Doe people not realize that getting hacked into sucks?
  • -2 Hide
    iboomer , January 22, 2010 8:59 PM
    Stupid Sheep. Alpha numberic, upper and lower case.

    I have to suffer through phone calls from people who want my personal information everyday, just so I can conduct my business. This is because of people who steal identities from the idiot sheep who can't be troubled to remember not to use little Suzy's name as the password on your bank account.

    You get what you deserve, and I have to pay for it. Wasted time on the phone giving information, and wasted money on the taxes I pay because of the laws that get passed, because you idiots can't come up with a more secure password.

    Lazy stupid idiot sheep.
  • -7 Hide
    haunted one , January 22, 2010 9:03 PM
    123456 and qwerty?

    I'm not surprised that 1/5 th of Americans can't pinpoint the US on a world map.
  • 2 Hide
    TheDuke , January 22, 2010 9:15 PM
    these people are idiotic
  • 0 Hide
    Kaileb , January 22, 2010 9:21 PM
    Wow.....
  • 4 Hide
    anonymouse , January 22, 2010 9:22 PM
    Quote:
    3. Never trust a 3rd party with your important passwords (webmail, banking, medical etc.)


    I just used ninite to install apps after installing win7 last night. One of the apps to choose from was KeyPass. Would that be considered a "3rd party" I'm not supposed to trust or just a tool to store passwords that is better than a list in a wallet?
  • 0 Hide
    martinhersey , January 22, 2010 9:22 PM
    These passwords are all too easy...
  • -2 Hide
    saint19 , January 22, 2010 9:24 PM
    I think that the numbers is 'cause are the fast access in the keyboard. But also some people are a little idiots, all the accounts have recomendations for the password, if they don't read this, is their fault.
  • 0 Hide
    anonymouse , January 22, 2010 9:26 PM
    Fail. I meant KeePass.
  • 26 Hide
    skine , January 22, 2010 9:29 PM
    Roland: One.
    Dark Helmet: One.
    Colonel Sandurz: One.
    Roland: Two.
    Dark Helmet: Two.
    Colonel Sandurz: Two.
    Roland: Three.
    Dark Helmet: Three.
    Colonel Sandurz: Three.
    Roland: Four.
    Dark Helmet: Four.
    Colonel Sandurz: Four.
    Roland: Five.
    Dark Helmet: Five.
    Colonel Sandurz: Five.
    Dark Helmet: So the combination is... one, two, three, four, five? That's the stupidest combination I've ever heard in my life! The kind of thing an idiot would have on his luggage!

    ----------------------------

    President Skroob: Did it work? Where's the king?
    Dark Helmet: It worked, sir. We have the combination.
    President Skroob: Great. Now we can take every last breath of fresh air from Planet Druidia. What's the combination?
    Colonel Sandurz: 1-2-3-4-5
    President Skroob: 1-2-3-4-5?
    Colonel Sandurz: Yes!
    President Skroob: That's amazing. I've got the same combination on my luggage.
    Dark Helmet, Colonel Sandurz: [looks at each other]
  • 9 Hide
    djackson_dba , January 22, 2010 9:40 PM
    haunted one123456 and qwerty? I'm not surprised that 1/5 th of Americans can't pinpoint the US on a world map.


    That is actually not a fact. Please do not put all Americans in the same pot as this teen beauty pagent participant. While I find it sad that the numbers were not 100%, they certainly were not what you are stating.

    "Miss South Carolina Teen USA was asked recently why one in five Americans can't find the United States on a map. Unfortunately, that statistic is entirely inaccurate. According to the recent National Geographic-Roper Public Affairs 2006 Geographic Literacy Study, “Nearly all (94%) young Americans can find the United States on the world map, and Canada (92%) and Mexico (88%) are nearly as familiar.” The judges of Miss Teen USA should have gotten their facts straight! Only three in fifty Americans can't find the U.S. on a world map."
  • 2 Hide
    tenor77 , January 22, 2010 10:10 PM
    I love having to change my password at work every 90 days. It's awesome. And I can't reuse them either! I have about 20 different passwords I have to remember as a result.

    And those passwords are pathetic.
  • 12 Hide
    Hellbound , January 22, 2010 10:11 PM
    Because of this, I had to change my password.....................
  • 11 Hide
    ColMirage , January 22, 2010 10:21 PM
    HellboundBecause of this, I had to change my password.....................


    lol
  • -2 Hide
    Gin Fushicho , January 22, 2010 10:28 PM
    WOW! There are WAY more stupid people then I thought. My passwords 14 characters long with a mix of upper and lower and a couple of numerals.
  • 1 Hide
    welshmousepk , January 22, 2010 10:29 PM
    @skine, SPACEBALLS FTW!

  • 1 Hide
    aford10 , January 22, 2010 10:32 PM
    I can honestly say, I've never used any of them.
  • 8 Hide
    loomis86 , January 22, 2010 10:39 PM
    Oh all you people are SOOO smart. did you ever think that maybe there are lots of passwords for things that people don't really need or want a password for? And for these things(especially if there are several people using the same account) people intentionally invent really dumb passwords?
Display more comments