Top 10 Worst Passwords

Top 10 Worst Passwords

Security PoliciesUsers have continued to use the same worst passwords to access secure systems for several years

Top 10 worst passwords – Passwords are the first line of defense in securing systems, yet users continue to circumvent that basic security by using the same easily hacked passwords.

Below is a list of the historic top 10 worst passwords that Janco has found users continue to use.  As can see the same ones appear year after year.

 

2016

2015

2014

2013

2012

#1

123456

123456

123456

password

password

#2

password

password

password

123456

123456

#3

12345678

12345

12345678

12345678

12345678

#4

qwerty

12345678

qwerty

abc123

qwerty

#5

12345

qwerty

abc123

qwerty

abc123

#6

123456789

1234567890

123456789

monkey

monkey

#7

football

1234

111111

letmein

1234567

#8

1234

baseball

1234567

dragon

letmein

#9

1234567

dragon

iloveyou

111111

trustno1

#10

baseball

football

adobe123

baseball

dragon

In order to counter this here are 5 easy rules that can be implemented in your password routines. This will minimize the risk that your users will use these easily hacked weak passwords.

  1. Include in the list of unacceptable passwords the ones list above.
  2. Move towards biometric passwords or dual step authorization for access to systems.
  3. Do not allow users to use a previous password when a password reset is done.
  4. Do not allow the same password to be used by multiple users in the organization.
  5. Once an employee leaves see that his/her password is eliminated and see that all of the passwords in that “area” are changed in a timely manner.
Weak Passwords - Security Policy
Weak Passwords – Security Policy
Order Security ManualDownload Selected Pages

Author: Victor Janulaitis

M. Victor Janulaitis is the CEO of Janco Associates. He has taught at the USC Graduate School of Business, been a guest lecturer at the UCLA's Anderson School of Business, a Graduate School at Harvard University, and several other universities in various programs.