Do You Use Any Of These Passwords?

Here are the 25 worst passwords


According to SplashData, these are the worst passwords to use. “Password” ranks first on password management application provider SplashData’s annual list of worst internet passwords, which are ordered by how common they are.

So have you ever used any of these as a password? Of course don’t tell us which one, but make sure to change it.

I can understand why most of those are common, but am puzzled by two of them.

“trustno1” = “trust no one” seems a little esoteric, and I wouldn’t expect a lot of people to come up with it independently. Was this used in some movie or TV show?

“monkey”? “sunshine”? These seem pretty random to have been chosen by large numbers of folks as their password. Again – were these words used by some movie or TV show?
To be honest, I’d expect “sesame” to be a much more common password, for reasons that should be obvious.

Oops, I lied. I voted “never”, but on our old phone system, my work voicemail password was 222222. We can’t use six of the same digit anymore, so I changed it to 222221.

(I’m a programmer. No one calls me. Ever.)

Yes, but not by choice. Some of the passwords I’ve been given for access to specific systems at work are in that list (and there’s no way for me to change them myself), however, they can only be accessed within the domain, which is secured by mandatory strong passwords.

I’d never choose any of those, unless I was trying to prove a point.

. . . the kind of thing an idiot would have on his luggage!

When our IT people reset our passwords because people forget them (they require us to change them every 90 days on a system we rarely even use), they always change the password initially to password1.

trustno1 is x-files, IIRC?

Huh. I figured that “please” would make the list.

I’m pretty safe. My password is “correcthorsebatterystaple”.

The X-files

Fox Mulder’s motto was “trust no one” and he used trustno1 as his login in at least one episode.

I’m surprised that swordfishisn’t on the list.

I have one of them, or a variety, as my work password. I don’t care too much as it also requires a keytag login, which changes every sixty seconds, and I have it on my keychain. you can’t log in without it. So meh.

And to be honest I’d rather have people use these simple basic passwords and be able to remember them rather than sticking them to their monitors or in their drawer.

I have often used 123456 as a temporary password, configured to be changed on first use.

I’m surprised “asdf” or “asdfasdf” isn’t on the list.

Not those, but I’ve used variations of weak passwords in some work and lab computers (not my own). The kind of passwords that are a repeat of the User name/log in word.

Knew someone who had #3 on that list as his password for everything.

I have worked for companies [as a temp] where the company specific program was accessed with a password shared with everybody in the company.

I have worked for companies where the issue password was Password <insert a number they issued you> where you could randomly put in numbers until you got logged in, no 3 strikes and you are locked out.

I have worked for a company that once you had a password in the system, it never changed [and worked for a company that all 7 passwords had to be changed every 30 days and you could not use the same one for 12 months, and no 2 programs could use the same password so everybody kept a stickynote of their current passwords somewhere>

And [real risk here] I worked for a data capture company that was scanning and capturing information for major corporations legal departments so they could put the hard copy files somewhere like Iron Mountain where there were NO passwords on the specific program they had written for their employees to actually do the data capture. And there were 2 breaks per shift, where everybody went on break at the same time leaving all the computers up and unlocked. There were no individual passwords to log into the computers, they stayed up all the time and people hotracked computers with the other shifts.

I’ve used ‘123456’ for accounts where security isn’t an issue. Meaning, very few people knew about the account(s), and if they did, they had no reason to access it (them), and if for some reason they did access it (them), they gained access to nothing important. Most of these have been employment-related, where having an account-based system is the simplest way of organizing work.

Yep. If anyone wants to hack into and listen to my voice-mail they are welcome to it.

Oh, good point. I forgot about voicemail and other strictly numeric passwords, in which case I certainly have had variations on 111111!

No, but I really do need to improve my password security. I’ve fallen into the habit of using the same password for everything, and I haven’t changed it in years, so I’m cruisin’ for a proverbial bruisin’. Granted, that password is highly secure. It comes from a dead, non-IndoEuropean language and contains some digit substitutions. That said, if someone got it, I could be toast.

ETA: I’m very surprised that “Default1” or some variation is not among the listed offenders.