“123456” is still the most common password that is used online. That’s despite numerous security experts warning against using simple passwords.
Make it stop. We have some advice for people who are too lazy to think up secure passwords.
Cybersecurity firm Keeper sieved through 10 million passwords that were made public through data breaches in 2016. With that information, the company released a list of the most common passwords that were used last year.
Even after years of security experts banging on about why we shouldn’t sequential string of letters and numbers, along with dictionary terms, as passwords (that are easily brute forced), a lot of people aren’t listening.
So surprise, surprise, “123456”, “123456789” and “qwerty” won the gold, silver and bronze medals, respectively. Last year, “12345678” took first place while both “123456789” and “qwerty” made an appearance on the 2015 list.
Nearly 17% of the accounts analysed used “123456” as the password. The top 25 passwords made up over 50% of the 10 million passwords that Keeper looked at. Here’s the full list:
If You’re Using Any Of The Passwords On The List… It’s Time To Stop
It might be easy to remember those common passwords, but you might as well open your door wide open and let burglars into your house.
If you think you have nothing online that would be of interest to hackers, it’s time to stop.
If you think it’s too hard to make up complex passwords for your online accounts, it’s time to stop.
If you can’t be bothered changing your password because you’ve had it for years, it’s time to stop.
When you use these common passwords for one account, chances are you’ve reused them on another ones that could be more valuable for criminals. These criminals may also take your personal information that is contained within compromised accounts for things like identify theft. By using different passwords for different online accounts, you can minimise the damage done.
There are a lot of tools that you can use to easily generate and store passwords for your different online accounts. Get yourself a password manager. Lastpass is a favourite over here at Lifehacker. We have a beginner’s guide right here.
You’ll still need to think up one master password to access your password manager, but for Pete’s sake please don’t make that “123456”.
Do any of the entries on the list surprise you? Do you know someone who still uses weak passwords? Let us know in the comments.