25 Worst Passwords of 2011

25 Worst Passwords of 2011
Top Stories
Trending Topics
People
Jobs
Join Mashable on Google+ Welcome to Mashable! Sign in with
or
Search
Social Media
Tech
Business
Entertainment
US & World
Videos
Featured:
Facebook IPO
YouTube
Google+
TRENDING STORIES
Path Apologizes, Deletes All Address 6 Book Data
10 Valentines Day Cards for Your Special 20 Tech Geek
Windows 8 Consumer Preview Event Set for 2 Feb. 29
SUBSCRIBE TO MASHABLE
25 Worst Passwords of 2011 [STUDY]

November 18, 2011 by Zoe Fox 164 Like Like 12,367 people like this. 794,548 people like this.
Send
Pro tip: choosing password as your online password is not a good idea. In fact, unless youre hoping to be an easy target for hackers, its the worst password you can possibly choose. Password ranks first on password management application provider SplashDatas annual list of worst internet passwords, which are ordered by how common they are. (Passw0rd, with a numeral zero, isnt much smarter, ranking 18th on the list.)
51.8k
Recommend on Google
LinkedIn Stumble
YouTube RSS
More subscription options
MASHABLE NEWS IN YOUR INBOX
Subscribe
The list is somewhat predictable: Sequences of adjacent numbers or letters on the keyboard, such as qwerty and 123456, and popular names, such as ashley and michael, all are common choices. Other common choices, such as monkey and shadow, are harder to explain. My Stories (Personalized) SEE ALSO: HOW TO: Protect Your Companys Passwords
TRENDING VIDEOS
Top Stories
As some websites have begun to require passwords to include both numbers and letters, it makes sense varied choices, such as abc123 and trustno1, are popular choices. SplashData created the rankings based on millions of stolen passwords posted online by hackers. Here is the complete list: 1. password 2. 123456 3.12345678 4. qwerty 5. abc123 6. monkey 7. 1234567 8. letmein 9. trustno1
PSFK Control Your Dreams With Your 15 iPhone TOP FROM OUR PARTNERS AppAdvice New Study Claims iOS Apps Crash More Than Android 34 Apps
http://mashable.com/2011/11/17/worst-internet-passwords/[09-02-2012 06:15:24]
10. dragon 11. baseball 12. 111111 13. iloveyou 14. master 15. sunshine 16. ashley 17. bailey 18. passw0rd 19. shadow 20. 123123 21. 654321 22. superman 23. qazwsx 24. michael 25. football SplashData CEO Morgan Slain urges businesses and consumers using any password on the list to change them immediately. Hackers can easily break into many accounts just by repeatedly trying common passwords, Slain says. Even though people are encouraged to select secure, strong passwords, many people continue to choose weak, easy-to-guess ones, placing themselves at risk from fraud and identity theft. SEE ALSO: 5 Tools for Keeping Track of Your Passwords The company provided some tips for choosing secure passwords in a statement:
Television
TRENDING TOPICS ClickZ Pizza Hut And Amex Team Up on Foursquare for Super 4 Bowl PSFK Sunscreen Ad Revealed Only When the Sun Comes Out 1 [VIDEO] Pocketnow Will Windows Phone 8 Launch Microsoft Back 19 In the Game?
Startups 7,866 followers
Entertainment 2,816 followers
US 610 followers
Gadgets 7,017 followers
Tv 0 followers
1. Vary different types of characters in your passwords; include numbers, letters and special characters when possible.
2,653 followers
World
2. Choose passwords of eight characters or more. Separate short words with spaces or underscores. 3. Dont use the same password and username combination for multiple websites. Use an online password manager to keep track of your different accounts. Are these lists helpful? Do you need to rethink any of your password choices? Let us know in the comments.
420 followers
Apple 38,917 followers
YouTube
Image courtesy of iStockphoto, peepo Print Story Email Story Reprints
11,989 followers
TOP STORIES TODAY
Topics to follow
Facebook Timeline: Disliked by the Masses 75 [INFOGRAPHIC]
1
Follow
Passwords 17 followers
Secure passwords 15 followers
Follow
Internet security 11 followers
Follow
10 Valentines Day Cards for Your Special 20 Tech Geek
For more Tech coverage

Follow Mashable Tech Subscribe to the Tech channel Become a fan on Facebook Download our free apps for Android, Mac, iPhone and iPad
2
App Economy Has Created Nearly Half a Million Jobs Since 13 2007 [STUDY]
3
MORE STORIES IN TECH
Game Developer Wooga Draws In 40 Million Users

0
Pinterest Partner: Yes, Theyre Making Money 6 from Pins
British Cabinet Warns of Possible Internet Outages During 8 Summer Olympics
TOP RELATED STORIES
Amazon and Viacom to 6 Sign Video Deal Hacked Zappos Customers: Beware 4 Phishing Scams Windows 8 Tackles Password Fatigue With 8 Pictures
5
PARTNERS
164 Comments
To leave a comment on this story, please log in with or
MASHABLE JOBS
Christian Fredrickson
Follow
Sure, you can encourage people to change their passwords, you can even urge them to back up their computers, but in the end they will always fight for their right to be stupid.
November 18, 2011 Reply
Follow
Social Media Manager Los Angeles, CA - Ucla Manager, Digitial Marketing/Social Media New York, NY - Foot Locker
Laadi Datta
Web Content & Social Media Manager Boston, MA - Bain & Company Social Media Marketing Assistant Los Angeles, CA - Suicidegirls.com Social Media Analyst Boston, MA - Likeable Media
What are peoples thoughts on using the same password on multiple sites? usually passwords for banking sites are always unique, but for less important sites people use the same password for many.
November 18, 2011 Reply 0
tiivi
Follow
I use 3 levels of passwords and rely on a pattern so when Im forced to change my banking password, I can determine what it is in a few tries. I dont really trust password keeper programs or services. And in the end, most passwords arent stolen individually from people but en masse from the sites you are logging into. There aint squat you can do about that and if you use the same pass everywhere, you are screwed when its stolen from them.
November 18, 2011 2
Post a job for $199
See All Jobs

Jobs by SimplyHired
Jorden Beatty
Follow
I use pretty much the same strategy as TilVl a pattern of about 3 different passwords that vary depending how secure I need them to be. ie: spam email is less secure than, say, Internet banking. Definitely safer to mix it up. And, hey, maybe itll keep your memory in check as you get older. Ha.

Rakesh_Narang
Follow
There are many people who use these sort of password and call themselves non-geek. Well, in my eyes, they are just ignorant!
tony3dsilva
Follow
Lastpass service
Ken Wong
Follow
Everyone knows to use strong passwords but many websites still dont allow you to input special characters as part of the password.
Follow
Jesse Robinson
If that were the case, there wouldnt be a need for articles such as this one.just consider this: think of the most average person you knowgot em in mind? OK, now realize that around half of the worlds population is dumber than that person.
Follow
Joseph Slabaugh
Do they have anything of value that a hacker would want?

November 24, 2011 0
marduk191
Follow
dictionary attack in the open public are sure to use real words with common alpha numerics. All you have to do is make a password that doesnt make a word, use upper and lower case, add some numbers in the mix. Using game codes like uuddlrlrabba is probably bad too lol. There is no need for a 30 character pass, just something 8-13 characters that you can remember or keep safely written somewhere. If you are worried about brute force attacks then use 13 character passes. Anything beyond that is up to the server admins security practice and how many servers the cracker is using to crack it. Never use the same password twice either.
Michael Montes worst post ever.

November 18, 2011
Follow
Reply
Follow
Thepasc
Why dont you explain yourself when you make such an opinionated comment???
25 Worst Passwords of 2011 lifeboat1

Follow
Do you see yourself?

ChuckBaggett
Follow
Having unique strong passwords at hundreds of sites is beyond most peoples ability to remember. A security solution that overlooks that is unrealistic to the point of being useless.
Follow
John Brady Lastpass ftw.
November 30, 2011
Reply
Juno Park
Follow
The winner is. password as usual!

Darren McKenna
Follow
A dictionary attack isnt very common anymore with people tending to force users to have both numbers and letters. The best way to avoid both a dictionary attack and a brute force attack is to make a long password thats easy to remember, make up a story like the green horse jumped over the fence to remember the password greenhorsejumpfence, a 19 character password of just lower case letters is more secure than an 8 letter password thats random alphanumerics.
teedubya
Follow
Whew, my password is p3t3c4shm0r3

Follow
Jackie Engle
Your p/w sounds like Pete Cashmore.

dina595
Follow
dont u realize that u just told everyone ur password o.O

Follow
Efreak15
Read it again. Obviously its not his password.

November 18, 2011 0
tonyisontwtr
Follow
LOLOLOLOL!!!!
Tom Smith
Follow
Nice password but I assume youre joking.

Manny Luis
Follow
we call that jejemon password

Arushi Sharma
Follow
Its called trolling. Calm down, everyone.

December 02, 2011 Reply 0
Eric Johnson
Follow
I would think ihateyou would be used more often than iloveyou LOL!
worthbanner
Follow
Its a shame and puzzling that many sites, notably banks, wont allow machine symbols as part of passwords.
Follow
Scott Barbour
Banks often use a web front-end to a mainframe-type interface. Mainframes typically use the EBCDIC encoding, which depending on the implementation may or may not have the Latin-1 character set. Additionally, many symbols also double as control codes.
leisa i
Follow
Nice to think there are still quite a few x-files fans out there (trustno1 was Mulders password)
I_Trezise
Follow
My problem is I use the same password for everything it is nearly impossible to guess but if someone got it they would have the password to my entire internet identity.
tiivi
Follow
As security breaches happen at places and passwords are stolen, that is also how they try to get into other accounts by trying the same username password they stole on ebay over at Chase bank. If they get access to your email they can figure out where you do banking or brokerage. The rotating number keyfobs are a cool way to really lock things down but EVEN THEY got tricked into losing the master decoder for all the fobs out there and have to replace them all.
25 Worst Passwords of 2011 Mike Allan

Follow
Im the same, my password is unique and personal to me and completely impossible to guess. When one of my accounts got hacked and I had to change my password I just substituted a character for a common vowel and voila! new password.
Eric Toribio
Follow
I helped a friend of the family a few months ago with that since he could not log on Hotmail. I made him change the password since it was just numbers. I cant believe people really use only-numbers passwords. Those are detected in milliseconds. This is a must
Follow
Eric Toribio
This is a must-share entry.

tiivi
Follow
Doesnt hotmail just auto lock someones account after a few attempts? Letting anyone (thing) scan through a thousand passwords is bad account management.
Eric Toribio
Follow
No pet names, no birth dates.

Follow
Jackie Engle
How about a combination of pet name and birthdate?

Elaine Winter
Follow
I always try to stay away from using birth dates for a password.
Hayley Conolly
Follow
Damn it. I use Monkey for everything.

Shankar Arunachalam
Follow
numbers, letters and special characters? http://xkcd.com/936/ :)

Juraj Benak
Follow
25 Worst Passwords of 2011 my girlfriend has the same username and password on some important websites and then uses it to log on to the internet banking! I almost had a heart attack when I found out! I made her to change all of them immediately. The best password to me is a name of a song. Its long, it has a space (or spaces) and when combined with a capital letter and a number its pretty bulletproof. Try cracking Cant buy me love12 :)
Estela Hayward
Follow
Phew. Thank goodness Ive never used any of those. lol or more like wow, Im surprised Ive never used any of those. lol
Ruth Cox
Follow
pword advice
Kumar Jhuremalani
Follow
monkey beat 1234567 :)

Musthafa Ullal
Follow
Yes, we should not ignore the pros and cons of password strongness.
Chase Grisham
Follow
http://xkcd.com/936/
Ruben Paniagua Good to read

November 18, 2011
Follow
Reply
gerardo
Follow
shadow is not hard to explain: since Only The Shadow knows. Believe it or not.
Nofortee Wu
Follow
if you knew other languages, you can use a word meaning in that language but switch the keyboard to english. for example, (I love you) => cyoiydgTv
Gaurav Sehgal
Follow
One good one is to combine your name with your birthdate usually a difficult one to guess by a hacker
Marin Gaidarski
Follow
I use Password Guardian freeware.. brilliant. krispetkov.blogspot.com

Rasta Lulz
Follow
Be right back, changing my pass..

loumitch
Follow
thanks for telling me your clients common terrible passwords, Ill be sure to try those first
Jarrod Kahn
Follow
http://xkcd.com/936/ anytime i think about passwords this comes to mind.

Michelle Mears-Gerst
Follow
How safe is your password

SHIGGA.com
Follow
Nothing surprising about user behaviour. More surprised that websites actually let you use these in 2011.
Bret Knight
Follow
If you see your password on this list, change it!

AMENGODGA
Follow
DAMN *changes password*

Agli Panci
Follow
shkurt fare :)
Loudell Mirambil
Follow
wag kang magreklamo kung bakit nahack account mo..read this,,

Shivbhadra Gohil
Follow
These are called Noob passwords :P

Naomi Hasegawa
Follow
qazwsx & passw0rd was a common quick fix back in the dayslol
TomLeMartien
Follow
ahah trustno1, Xphiles rule the world :)

KatieSoze
Follow
great, now all the hackers know the most popular passwords too!
Matthew Kirkham
Follow
Oooh, one of my regulars is in there :0/

'Shanrico Balanay
Follow
I think this is the worst password secret .

Will
Follow
[hope no one is using any of these!]

Ramon Martinez Jr
Follow
If you find your password on this listtime for you to change it!

Serenity Rock
Follow
Check out Last Pass. It works over all platforms and it will generate passwords if you prefer.
Follow
Madeleine Dawes
My concern with using a password generated by the internet is that it can possibly be REgenerated meaning that someone else can use a generator to randomly put together the same numbers and letters.
El Fouad
Follow
111111 I use this one with forums :D

Ben
Follow
now all I need to do is figure out your username

Steve Joseph
Follow
Change that weak pasword

Load more comments (114)
Previous Story
Popular World War II Twitter Account Also Available in Two More Languages
Next Story
Who Should You Follow on Social Media? Proliphiq Knows The Answer
News
Lists
Topics
Back to top
About Mashable
Mashable is the largest independent online news site dedicated to covering digital culture, social media and technology. With more than 20 million unique monthly visitors, Mashable has one of the most engaged online news communities. Founded in 2005, Mashable is headquartered in New York City with an office in San Francisco.
Company
About Us Contact Us Announcements Submit News Advertise Reprints Privacy Policy Terms of Use
Site
Mashable Follow Jobs Mobile Version iPhone App iPad App Android App Blippr Mashable France
Resources
Guidebooks Lists How To Trending Mashable Awards Subscriptions
Channels
All Social Media Tech & Gadgets Business & Marketing Entertainment US & World Video
Partners
Subscribe
Mobile Dev & Design Media Social Good Startups
Global Syndication Partners
2005-2012 Mashable, Inc. Reproduction without explicit permission is prohibited. All Rights Reserved.

25 Worst Passwords of 2011

Uploaded by

Document Information

Original Description:

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

25 Worst Passwords of 2011

Uploaded by

Copyright:

Available Formats

25 Worst Passwords of 2011

Join Mashable on Google+ Welcome to Mashable! Sign in with

Path Apologizes, Deletes All Address 6 Book Data

10 Valentines Day Cards for Your Special 20 Tech Geek

Windows 8 Consumer Preview Event Set for 2 Feb. 29