General Discussion
Related: Editorials & Other Articles, Issue Forums, Alliance Forums, Region ForumsPlease don't use these passwords. Sincerely, the Internet
http://www.engadget.com/2015/01/20/splashdata-worst-passwords/I hope no one here is guilty of the below list, but this also goes to show how easy it is to get into 2% of peoples accounts.
According to security expert Mark Burnett, the top 25 (below) represent an eye-popping 2.2 percent of all passwords exposed.
Rank Password
1 123456
2 password
3 12345
4 12345678
5 qwerty
6 123456789
7 1234
8 baseball
9 dragon
10 football
11 1234567
12 monkey
13 letmein
14 abc123
15 111111
16 mustang
17 access
18 shadow
19 master
20 michael
21 superman
22 696969
23 123123
24 batman
25 trustno1
benz380
(534 posts)At least they didn't post my 8675309 password.
FLPanhandle
(7,107 posts)benz380
(534 posts)redgreenandblue
(2,088 posts)People using that password probably consider themselves 1337 h@x0rz
cyberswede
(26,117 posts)I kinda understand the others...but why "michael?"
and "696969" and "trusno1" are funny, too.
Scuba
(53,475 posts)NV Whino
(20,886 posts)Nye Bevan
(25,406 posts)Oops, probably shouldn't have posted that publicly.
logosoco
(3,208 posts)FLPanhandle
(7,107 posts)whatthehey
(3,660 posts)and that is to get the hyper-paranoid intrusive security nabobs to actually favor REAL security instead of their insane imaginings and agree on ONE mandatory nomenclature. They can be as paranoid as they like but if they were consistent most people could actually remember a wacked-out nonsense string and have a very secure password. What makes this impossible is the conflicting rules that the various security gatekeepers insist upon.
I'm a reasonably active internet user and use 1st tier ERP and online software at work. I'm not into social media though. I counted I need 37 computer passwords to live as I do, not counting things like ATM pins or one-time throwaways for online purchases that insist on registration before I can track delivery (as if some legendary blackhat both knows my order number and cares when my sheets from Overstock will arrive).
There are 8 different rules on what my password must be. It is impossible to even maintain a range of passwords to use, as some insist on special characters and others forbid them. Same for numbers in the last place.
My memory is very good, but I like almost all mortals cannot remember 37 different combinations of small and large letters, numbers and symbols with a low min of 6 and a high min of 10, especially as the work ones mandate 90 day changes, when I only use some of them at lengthy intervals.
So like everybody else I know I keep a file for the key ones and tell Chrome to remember the lesser ones. Now on what planet is that MORE secure than allowing, say, twinkie147 web-wide and not insisting it must be tWinkie147! at one site and twinki147e at another and thus forcing us to keep those files? Are there really hordes of nefarious hackers who could discover twinkie147 with scornful ease but would throw away their crack apps in horror and defeat at moving the e outside the numbers or adding the exclamation point?
mythology
(9,527 posts)It encrypts before the passwords are stored on the cloud and makes it so that I only have to remember one password while making my passwords long enough to be secure. Plus I can keep a local copy in case something ever happens to Lastpass or their database.
samsingh
(17,599 posts)Spirochete
(5,264 posts)KittyWampus
(55,894 posts)Blue_Tires
(55,445 posts)who knew there were so many Mustang drivers out there??