2015’s Worst Passwords
New research shows that we’re not learning from our password mistakes.
SplashData has released its annual “Worst Passwords List”, and it’s a bit worrying to say the least. Once again, “password” and “123456” reign supreme in first and second place, and things don’t get any more challenging as the list progresses. How is it in 2015 that our passwords are still so vulnerable?
It’s understandable that many of us opt for something quick and easy when creating login credentials. For sites such as Twitter and Facebook you may think it’s less important to iron-clad your password, but that depends on how valuable you consider your online reputation to be. If your social media passwords – or password if you use the same one for several accounts – falls into the wrong hands the consequences can be dire, and with many employers taking to social media to gauge the personality of potential employees you can’t really afford to hand over your reputation to anyone.
When it comes to more potentially damaging accounts – such a online banking websites or PayPal – it is staggering that these passwords are still in play. Both “password” and “123456” will be at the top of any potential hacker’s guesswork list; how are we making things so easy for them in an age where online security is such a big threat?
These big questions can go unanswered for now, but we thought it was time to jog your memories on strong password etiquette. Below is 2015’s top 25 of the “Worst Passwords of 2015” list:
1 – 123456
2 – password
3 – 12345678
4 – qwerty
5 – 12345
6 – 123456789
7 – football
8 – 1234
9 – 1234567
10 – baseball
11 – welcome
12 – 1234567890
13 – abc123
14 – 111111
15 – 1qaz2wsx
16 – dragon
17 – master
18 – monkey
19 – letmein
20 – login
21 – princess
22 – qwertyuiop
23 – solo
24 – passw0rd
25 – starwars
First off: if you are utilising any of the above passwords it’s time to ditch them right away and forget about them. They’re not safe, by a long mile. Regardless of just how much you like football, dragons, monkeys and Star Wars (we love it too) these passwords will not protect you against malicious forces on the internet who intend to steal either your money, your identity or your reputation.
Here’s three top tips for upping your password security, aside from avoiding the above choices:
- Use a variety of characters.
A password becomes increasingly harder to crack if you use varying letters, numbers, characters and cases. Even “football” can be strengthened somewhat, for example by becoming “Fo0tB4L1”, although we still recommend avoiding anything that resembles an example from the “Worst Passwords of 2015” rank.
- Use uncommon words or phrases.
While we understand that “monkeys” is more memorable than “jU83h$xW”-P”, the truth remains that the latter is still harder to crack. Try to avoid using common words or phrases; if you have to use something legible then go for “M0keys1N5PaCe” over “monkeysinspace” for added security. Remember you can use software like LastPass to store any tricky passwords in a safe place.
- Change it regularly.
While we know it’s a hassle to forget your password to every single online account at intervals, it’s still best practice if you want to be fully protected online. Changing your password regularly can throw off a hacker who has been working to crack your password for some time, taking them right back to the beginning.
You can manage your UK2.net password within your CHI account.