Saturday 20 October 2018

Revealed: The worst passwords of 2017

"123456" tops the list for the worst passwords Stock image

Aatif Sulleyman

The worst passwords of the year have been revealed in a new report.

"123456" tops the list, as it did in 2016, 2015, 2014 and 2013.

For the fourth consecutive year, the next entry on the list is "password". Variations of each of them comprise six of the other 23 entries in the top 25.

"12345678", "qwerty" and "12345", meanwhile, complete the top five.

"Use of any of the passwords on this list would put users at grave risk for identity theft," said SplashData, which released the report.

The company says it "estimates that almost 10pc of people" have used at least one of this year’s selection of the 25 worst passwords, and "nearly 3pc of people" have used the outright worst password, 123456.

It adds that the passwords evaluated for the report were mostly held by people in North America and Western Europe.

"These past two years have been particularly devastating for data security, with a number of well publicized hacks, attacks, ransoms, and even extortion attempts. Millions of records have been stolen," said SplashData.

The 2017 edition of the list was compiled from more than five million passwords that leaked during the year. However, any login details that leaked as a result of the enormous Yahoo email breach and hacks of adult websites were not considered for the report.

SplashData recommends using passwords that are at least 12 characters long, comprising a mix of different character types and both upper- and lowercase letters.

The company says you should also use a different password for each of your logins. This, however, can cause a completely different set of problems, as it can be tough to remember multiple logins.

You can save yourself some hassle by signing up to a password manager.

"Hackers know your tricks, and merely tweaking an easily guessable password does not make it secure," said SplashData CEO Morgan Slain.

"Our hope is that our Worst Passwords of the Year list will cause people to take steps to protect themselves online."

The 25 worst passwords of the year are:

  1. 1234656
  2. password
  3. 12345678
  4. qwerty
  5. 12345
  6. 123456789
  7. letmein
  8. 1234567
  9. football
  10. iloveyou
  11. admin
  12. welcome
  13. monkey
  14. login
  15. abc123
  16. starwars
  17. 123123
  18. dragon
  19. passw0rd
  20. master
  21. hello
  22. freedom
  23. whatever
  24. qazwsx
  25. trustno1

Independent News Service

Business Newsletter

Read the leading stories from the world of Business.

Also in Business