Data Storage Today

CIO Today Network Sites:   Top Tech News  |   CIO Today   |   Mobile Tech Today   |   Data Storage Today
News & Information for Data Storage Professionals
APC Free White Paper
Optimize your network investment &
Enter to win a Samsung Galaxy Note

www.apc.com
Friday, April 25th 
Next Generation Data Center Is Here!
Trending Topics:   Security Heartbleed Big Data Cloud Computing Windows XP Data Centers OS X Mavericks
Home
Data Centers
Storage Solutions
Storage Networks
Data Storage Issues
Data Security
DST Press Releases
 
Free Newsletters
Top CIO News
 
Mobile Tech Today
 

World Wide Web

'123456' Surpasses 'Password' as Most Common Password


January 20, 2014 1:43PM

Bookmark and Share
SplashData said one way to create more secure passwords that are easy to recall is to use passphrases -- short words with spaces or other characters separating them. It's best to use random words rather than common phrases. For example, "cakes years birthday" or "smiles_light_skip?" are much more secure than passwords like "qwerty" or "abc123."

Your Next Generation Data Center Is Here! Vblock™ Systems: the world's most advanced converged infrastructure are built on the Cisco Unified Computing System with Intel® Xeon® processors. Vblock™ Systems deliver extraordinary time to market, ROI and TCO, and flexibility to meet your continually changing demands with 5X faster deployment, 96% less downtime, and 1/2 the cost. Click here to learn more.

In an age of data breaches and identity theft, you would think consumers would take password security a little more seriously. But passwords like "123456" and "iloveyou" are still among the list of most common passwords found on the Internet.

SplashData just announced its annual list of the 25 most common online passwords. For the first time since SplashData began compiling its annual list, "password" has lost its title as the most common and therefore worst password. The two-time runner-up "123456" took the dubious honor while "password" fell to second place.

"Seeing passwords like 'adobe123' and 'photoshop' on this list offers a good reminder not to base your password on the name of the Web site or application you are accessing," said Morgan Slain, CEO of SplashData.

'abc123'

According to SplashData, this year's list was influenced by the large number of passwords from Adobe users posted online by security consulting firm Stricture Consulting Group following Adobe's well-publicized security breach.

SplashData's list of frequently used passwords reveals that many people continue to put themselves at risk by using weak, easily guessable passwords. Some other passwords in the Top Ten include "qwerty," "abc123," "111111," and "iloveyou."

"Another interesting aspect of this year's list is that more short numerical passwords showed up even though Web sites are starting to enforce stronger password policies," Slain said. For example, new to this year's list are simple and easily guessable passwords like "1234" at No. 16 on the list, "12345" at No. 20, and "000000" at No. 25.

SplashData's top 25 list was compiled from files containing millions of stolen passwords posted online during the previous year. The company advises consumers or businesses using any of the passwords on the list to change them immediately. Others on the list include admin, letmein, monkey, shadow, abc123, princess, password1, sunshine and 1234567890.

"As always, we hope that with more publicity about how risky it is to use weak passwords, more people will start taking simple steps to protect themselves by using stronger passwords and using different passwords for different Web sites," Slain said.

Creating Solid Passwords

SplashData suggests using passwords of eight characters or more with mixed types of characters. But even passwords with common substitutions like "dr4mat1c" can be vulnerable to attackers' increasingly sophisticated technology, and random combinations like "j%7K&yPx$" can be difficult to remember.

The company said one way to create more secure passwords that are easy to recall is to use passphrases -- short words with spaces or other characters separating them. It's best to use random words rather than common phrases. For example, "cakes years birthday" or "smiles_light_skip?"

Avoid using the same username-password combination for multiple Web sites, the firm suggests, and especially risky is using the same password for entertainment sites that you do for online email, social networking, or financial service sites. Finally, use different passwords each time you sign up for a new Web site or service.

Tell Us What You Think
Comment:

Name:

David Carper:

Posted: 2014-02-02 @ 8:32am PT
When at someone else desk or in a group of people I have always used one password. It is 1qaz@WSX, but as soon as I was at my desk or alone I would always change it so my partners did not know it. But I also never knew that people did the word PASSWORD as a password.

Maureen Robinson:

Posted: 2014-01-23 @ 3:24am PT
Great article and great tips, Jennifer! I don’t think users are aware of the threats they’re facing. Most people tend to use the same password on multiple channels. It’s very important to know that the strength of a password stand in length, complexity, and unpredictability. Using strong passwords lowers overall risk of a security breach. Creating a threat model can help model a security design so that you can expose potential security design flaws and vulnerabilities before you invest significant time or resources in a flawed design and/or problems become difficult to reverse - http://bit.ly/1hILyER.

K Quina:

Posted: 2014-01-22 @ 3:36pm PT
Have a simple way to have a great password you can remember. Write down a favorite saying, then write the 1st letter of each word in UPPER, lower, UPPER ,etc. throw in one number and one symbol ea (_). Don't tell anyone! sample sayings = "No one Can make You feel Inferior 2_ without Your consent" .. "Lies are Like roaches, 3! If you See one There are More"



 World Wide Web
1. FCC Defends Internet Traffic Proposal
2. Google Maps, Now with Time Travel
3. NYPD Twitter Campaign Backfires
4. Net Gets Faster, But Easier to Attack
5. Verizon Report Exposes Cyberthreats




 Most Popular Articles
1. Intel Bets on Cloudera for Big Data Analytics
2. Fast Seagate 6 TB Drive Offered for Enterprise Data Centers
3. Resetting All Passwords Now May Be Worst Heartbleed Fix
4. ManageEngine Plug-In Monitors Data Center Security
5. Is Heartbleed the Biggest Web Security Threat Ever?

Have an informed opinion on this story?
Send a Letter to the Editor.
We want to know what you think.
Send us your Feedback.

 Related Topics  Latest News & Special Reports

  IBM Targets Big Data with Power8 Line
  Fund Seeks To Head Off Heartbleeds
  Lessons from Verizon's Threat Report
  Officials Reveal Microsoft Data Center
  Verizon Report Exposes Cyberthreats

 Technology Marketplace
Business Intelligence
Get real-time, cloud-based information services with Neustar.
 
Cloud Computing
Next Generation Data Center Is Here! Vblock™ Systems from VCE
 
Contact Centers
HP delivers the future of the contact center with HP Qfiniti 10.
 
Data Storage
Next Generation Data Center Is Here! Vblock™ Systems from VCE
Barium Ferrite (BaFe) is the future of tape.
2.5" Enterprise-class SATA & SAS SSDs for server & storage applications
 
Enterprise Hardware
Barium Ferrite (BaFe) is the future of tape.
2.5" Enterprise-class SATA & SAS SSDs for server & storage applications
 
Hardware
Protect your network with APC Smart-UPS battery backup
 
Network Security
Protect your network with APC Smart-UPS battery backup
 

Network Security Spotlight
Tech Giants Fund Initiative To Prevent Future Heartbleeds
Can more funding prevent Heartbleed vulnerabilities in future open-source software? A new Core Infrastructure Initiative at the Linux Foundation is attempting to find out.
 
What Verizon's Data Breach Report Can Teach Enterprises
It’s probably not a jaw-dropper, but cyberespionage is officially on the rise. And the use of stolen or misused credentials is still the leading way the bad guys gain access to corporate information.
 
Top Cyberthreats Exposed by Verizon Report
Beyond Heartbleed, there are cyberthreats vying to take down enterprise networks, corrupt smartphones, and wreak havoc on businesses. Verizon is exposing these threats in a new report.
 
Navigation
Data Storage Today
Home/Top News | Data Centers | Storage Solutions | Storage Networks | Data Storage Issues | Data Security | DST Press Releases
Also visit these Enterprise Technology Sites
Top Tech News | CIO Today | Mobile Tech Today | Data Storage Today

Services:
FreeNewsFeed | Free Newsletters | XML/RSS Feed

About CIO Today Network | How To Contact Us | Article Reprints | Services for PR Pros (In partnership with NewsFactor) | Top Tech Wire | How To Advertise

Privacy Policy | Terms of Service
© Copyright 2000-2014 Data Storage Today. All rights reserved. Article rating technology by Blogowogo. Member of Accuserve Ad Network.