Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Email Security

‘Password’ No Longer the Internet’s Worst Password

The number sequence “123456” has overtaken “password” as the most common worst password among Internet users, an online security firm says.

Releasing its annual Worst Passwords list, SplashData said it was the first time “password” had lost its number-one position, changing places with its numerical rival.

The number sequence “123456” has overtaken “password” as the most common worst password among Internet users, an online security firm says.

Releasing its annual Worst Passwords list, SplashData said it was the first time “password” had lost its number-one position, changing places with its numerical rival.

In third place was “12345678,” unchanged from 2012, while “qwerty” and “abc123” came in fourth and fifth — and “iloveyou” climbed two spots to number nine.

Swinging the results, SplashData said, was a major security breach involving Adobe that laid bare the widespread use of weak passwords among users of such Adobe products as Photoshop.

“Seeing passwords like ‘adobe123’ and ‘photoshop’ on this list (for the first time) offers a good reminder not to base your password on the name of the website or application you are accessing,” said SplashData chief executive Morgan Slain, whose company markets password management apps.

Like other password experts, SplashData encouraged Internet users to opt for “passphrases” — a bunch of random words, numbers and characters, like “smiles_like_skip?” — that are easy to remember, but harder for online scam artists to crack.

Written By

AFP 2023

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Cybercrime

A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...

Identity & Access

Zero trust is not a replacement for identity and access management (IAM), but is the extension of IAM principles from people to everyone and...

Data Breaches

LastPass DevOp engineer's home computer hacked and implanted with keylogging malware as part of a sustained cyberattack that exfiltrated corporate data from the cloud...

Cloud Security

Cloud security researcher warns that stolen Microsoft signing key was more powerful and not limited to Outlook.com and Exchange Online.

CISO Strategy

Okta is blaming the recent hack of its support system on an employee who logged into a personal Google account on a company-managed laptop.

Compliance

Government agencies in the United States have made progress in the implementation of the DMARC standard in response to a Department of Homeland Security...

Email Security

Many Fortune 500, FTSE 100 and ASX 100 companies have failed to properly implement the DMARC standard, exposing their customers and partners to phishing...