1. TechSpot is dedicated to computer enthusiasts and power users. Ask a question and give support. Join the community here.
    TechSpot is dedicated to computer enthusiasts and power users.
    Ask a question and give support.
    Join the community here, it only takes a minute.
    Dismiss Notice

Millions of people still use 123456 as their password

By midian182 · 11 replies
Apr 22, 2019
Post New Reply
  1. The report by the UK's National Cyber Security Centre (NCSC) analyzed passwords found in public databases of breached accounts to find out popular words, phrases, and strings. It appears that the worst password of 2018—123456—remains the most popular, appearing in more than 23 million passwords.

    The second-most popular string was the equally bad 123456789, while the other top five entries include "qwerty," "password," and 1111111.

    People’s names are still commonly used as passwords, the most popular being Ashley, followed by Michael, Daniel, Jessica and Charlie. And when it comes to using band names, Blink182 is the most common, followed by 50cent. Superman, meanwhile, is the most popular fictional character name used as a password.

    The report was put together in collaboration with Troy Hunt, the Australian security researcher responsible for the Have I Been Pwned website, which reveals if your email addresses or passwords appear in data breaches.

    Most users know that it’s inadvisable to reuse the same credentials across multiple websites—even Mark Zuckerberg is thought to have been guilty of this practice in the past. Remembering multiple passwords isn’t easy, of course, so the best solution is to use a password manager such as LastPass. It’s also advisable to enable two-factor authentication wherever possible, but the most important thing is to not use terrible passwords.

    “Making good password choices is the single biggest control consumers have over their own personal security posture. We typically haven’t done a very good job of that either as individuals or as the organisations asking us to register with them,” said Hunt.

    “Recognizing the passwords that are most likely to result in a successful account takeover is an important first step in helping people create a more secure online presence.”

    Permalink to story.

  2. Uncle Al

    Uncle Al TS Evangelist Posts: 5,153   +3,575

    And they wonder why there is so much hacking ......
  3. netman

    netman TS Addict Posts: 251   +73

    The people who use such passwords should not open accounts in the first place or they should quit internet for good....
  4. elementalSG

    elementalSG TS Booster Posts: 90   +65

    One, two, three, four, five, six? That's amazing! I've got the same combination on my luggage!
    GeforcerFX likes this.
  5. Misagt

    Misagt TS Maniac Posts: 273   +190

    You know this really makes me feel better about myself. I some times worry that my 12-16 passwords aren't good enough. The answer is yes they are.
  6. Michael Lindo

    Michael Lindo TS Rookie

    Why do websites allow people to use such passwords in the first place?? They can tell me if I have not used a capital letter, numbers, or symbols, so why do they still allow people to use such blindingly obvious passwords???
    Lionvibez likes this.
  7. Lionvibez

    Lionvibez TS Evangelist Posts: 1,438   +601

    So millions are lazy and don't care about their online security might as well just walk around with a shirt that says hack me here is all my info.
  8. QuantumPhysics

    QuantumPhysics TS Evangelist Posts: 1,003   +732

    My daily internet use hosts demand I use a Capital letter, at least one number and at least one special mark.
  9. JamesJamesJames

    JamesJamesJames TS Rookie Posts: 17   +16

    It's so much easier to just use a password manager for all these throwaway accounts... It's even easier than using a crap password for all the pointless account creation requests.
  10. fktech

    fktech TS Maniac Posts: 512   +128

    Paper trails can't be hacked.
  11. Badvok

    Badvok TS Maniac Posts: 282   +137

    There are still so many sites that insist on you having an account with them just so they can spam you. It is hardly surprising that people don't bother with secure passwords, what's the potential loss? Less spam cluttering up your junk email folder?
  12. lexster

    lexster TS Booster Posts: 131   +75

    So basically, there are a ton of stupid people who really don't grasp the concept of the purpose of a password.

Add your comment to this article

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...