The password management consultants at SplashData recently released their annual edition of its â€œWorst Passwords Listâ€â€”and itâ€™s not exactly the most reassuring compilation of security-protecting entry codes.
SplashDataâ€™s fifth annual â€œWorst Passwords Listâ€ shows people continue putting themselves at risk
While longer passwords debut on this yearâ€™s list of most commonly used passwords, they are not necessarily more secure
LOS GATOS, CA â€“ SplashData has announced the 2015 edition of its annual â€œWorst Passwords Listâ€ highlighting the insecure password habits of Internet users. â€œ123456â€ and â€œpasswordâ€ once again reign supreme as the most commonly used passwords, as they have since SplashDataâ€™s first list in 2011, demonstrating how peopleâ€™s choices for passwords remain consistently risky.
In SplashDataâ€™s fifth annual report, compiled from more than 2 million leaked passwords during the year, some new and longer passwords made their debut â€“ perhaps showing an effort by both websites and web users to be more secure. However, the longer passwords are so simple as to make their extra length virtually worthless as a security measure.
For example, â€œ1234567890â€, â€œ1qaz2wsxâ€ (first two columns of main keys on a standard keyboard), and â€œqwertyuiopâ€ (top row of keys on a standard keyboard) all appear in the top 25 list for the first time, but they are each based on simple patterns that would be easily guessable by hackers.
As in past yearsâ€™ lists, simple numerical passwords remain common, with six of the top 10 passwords on the 2015 list comprised of numbers only.
Sports remain a popular password theme. While baseball may be Americaâ€™s pastime, â€œfootballâ€ has overtaken it as a popular password. Both appear in the Top 10 of SplashDataâ€™s list, with â€œfootballâ€ climbing three spots to number seven and â€œbaseballâ€ dropping two spots to number 10.
When it comes to movies and pop culture, The Force may be able to protect the Jedi, but it wonâ€™t secure users who choose popular Star Wars terms such as â€œstarwars,â€ â€œsolo,â€ and â€œprincessâ€ as their passwords. All three terms are new entries on this yearâ€™s list.
Click here to download our eBook, Worst Passwords: What We Have Learned From Five Years of Studying the Internetâ€™s Most Commonly Used Passwords
Other passwords appearing on the 2015 list that did not appear on the 2014 list include â€œwelcomeâ€, â€œloginâ€ and â€œpassw0rd.â€
SplashData, provider of password management applications including SplashID for consumers and TeamsID for businesses, releases its annual list in an effort to encourage the adoption of stronger passwords to improve Internet security. According to SplashData, the passwords evaluated for the 2015 list were mostly held by users in North America and Western Europe. The â€œWorst Passwords Listâ€ shows that many people continue to put themselves at risk for hacking and identity theft by using weak, easily guessable passwords.
â€œWe have seen an effort by many people to be more secure by adding characters to passwords, but if these longer passwords are based on simple patterns they will put you in just as much risk of having your identity stolen by hackers,â€ said Morgan Slain, CEO of SplashData. â€œAs we see on the list, using common sports and pop culture terms is also a bad idea. We hope that with more publicity about how risky it is to use weak passwords, more people will take steps to strengthen their passwords and, most importantly, use different passwords for different websites.â€
Presenting SplashDataâ€™s â€œWorst Passwords of 2015â€:
|Rank||Password||Change from 2014|
SplashData offers three simple tips to help people protect themselves:
- Use passwords or passphrases of twelve characters or more with mixed types of characters
- Avoid using the same password over and over again on different websites
- Use a password manager such as SplashID to organize and protect passwords, generate random passwords, and automatically log into websites
For more information on SplashDataâ€™s last five years of research into commonly used passwords, please visit: http://content.teamsid.com/worst-passwords-ebook