Calin noted that although the list began at 10,028 entries, after cleaning it up and removing accounts without passwords, 9,843 remained. Of those valid entries, 8,931 (90%) had unique passwords. The longest spanned 30 characters (lafaroleratropezoooooooooooooo), while the shortest was only a single character: ).
The most common password was "123456", which appeared on the list 64 times. The password "123456789" was listed 18 times, "alejandra" 11 times, "111111" 10 times, and "alberto" was used on 9 of the accounts. In addition to the first names and number sequences, passwords like "iloveyou" and "america" were also shown to be common.
Calin's statistics show the length distribution of passwords, as well as the types of characters most frequently used. The phishing attack and Calin's figures serve as a reminder that using six zeros as a password is both unsafe, and unoriginal.