2015’s Worst Passwords

1st February, 2016 by

New research shows that we’re not learning from our password mistakes.

SplashData has released its annual “Worst Passwords List”, and it’s a bit worrying to say the least. Once again, “password” and “123456” reign supreme in first and second place, and things don’t get any more challenging as the list progresses. How is it in 2015 that our passwords are still so vulnerable?

It’s understandable that many of us opt for something quick and easy when creating login credentials. For sites such as Twitter and Facebook you may think it’s less important to iron-clad your password, but that depends on how valuable you consider your online reputation to be. If your social media passwords – or password if you use the same one for several accounts – falls into the wrong hands the consequences can be dire, and with many employers taking to social media to gauge the personality of potential employees you can’t really afford to hand over your reputation to anyone.

When it comes to more potentially damaging accounts – such a online banking websites or PayPal – it is staggering that these passwords are still in play. Both “password” and “123456” will be at the top of any potential hacker’s guesswork list; how are we making things so easy for them in an age where online security is such a big threat?

These big questions can go unanswered for now, but we thought it was time to jog your memories on strong password etiquette. Below is 2015’s top 25 of the “Worst Passwords of 2015” list:

1 – 123456

2 – password

3 – 12345678

4 – qwerty

5 – 12345

6 – 123456789

7 – football

8 – 1234

9 – 1234567

10 – baseball

11 – welcome

12 – 1234567890

13 – abc123

14 – 111111

15 – 1qaz2wsx

16 – dragon

17 – master

18 – monkey

19 – letmein

20 – login

21 – princess

22 – qwertyuiop

23 – solo

24 – passw0rd

25 – starwars

First off: if you are utilising any of the above passwords it’s time to ditch them right away and forget about them. They’re not safe, by a long mile. Regardless of just how much you like football, dragons, monkeys and Star Wars (we love it too) these passwords will not protect you against malicious forces on the internet who intend to steal either your money, your identity or your reputation.

Here’s three top tips for upping your password security, aside from avoiding the above choices:

  1. Use a variety of characters.

A password becomes increasingly harder to crack if you use varying letters, numbers, characters and cases. Even “football” can be strengthened somewhat, for example by becoming “Fo0tB4L1”, although we still recommend avoiding anything that resembles an example from the “Worst Passwords of 2015” rank.

  1. Use uncommon words or phrases.

While we understand that “monkeys” is more memorable than “jU83h$xW”-P”, the truth remains that the latter is still harder to crack. Try to avoid using common words or phrases; if you have to use something legible then go for “M0keys1N5PaCe” over “monkeysinspace” for added security. Remember you can use software like LastPass to store any tricky passwords in a safe place.

  1. Change it regularly.

While we know it’s a hassle to forget your password to every single online account at intervals, it’s still best practice if you want to be fully protected online. Changing your password regularly can throw off a hacker who has been working to crack your password for some time, taking them right back to the beginning.

You can manage your UK2.net password within your CHI account.

(Visited 51 times, 1 visits today)