As common as identity theft has become, I am amazed at the poor password practices of many people I interact with.
You: Because I use my significant other’s name as my password?
That’s one example. But, at least according to this New York Times article, there are far more egregious examples. When a hacker was able to get into a big web site and decided to post all the passwords, an analysis of the top passwords used featured obvious choices that could easily be guessed.
The number one most commonly used password? See below:
You: that seems like a pretty easy one to figure out.
I agree, but apparently people figured it was far safer than the second most commonly used password . . . wait for it:
You: Not exactly a tough one.
You: What else did people use?
Besides the incredibly sly password 123456789, the next most common password, and the first one to introduce the complexity that letters create was:
The most common password that uses letters was “password”.
Yes. Also, Iloveyou.
You: Excuse me?
You: This is out of nowhere. I’m just reading your blog. . . I barely know who you are. You’re making me uncomfortable.
Sorry, just reporting the news. The next most common password after password is “Iloveyou”.
You: Oh. I knew that.
I know. It doesn’t get much prettier after that (although “princess” is a top 10 password too. My, how modest we all are.).
The analysis showed that 20% of all accounts could be opened by trying just 5,000 passwords. Those smart, yet evil, people with computers surely could figure out a way to try 5,000 passwords on your accounts in fairly short order.
The bottom line:
- “Password” ain’t no password.
- Don’t tell your bank that you love them (or at least not as a password).
- Your dog may be your best friend, but his name is a lousy password.
Also, don’t forget: nT09%9bUl2 is a damn good password. But if it’s on a post-it note attached to your computer, it sucks.