SplashData, a company that makes password management tools, has released a roundup of 2011’s “25 worst passwords,” gleaned from password-dumps posted by “hackers” (presumably, sources like the Lulzsec Sony password files). I can’t locate the actual study and its methodology (are these passwords “worst” because they’re the most common, or because they contain the least entropy? Is the sample set representative?) but the list is still informative, and, of course, it can give a warm glow of superiority to those of us with stronger passwords.
1. password
2. 123456
3.12345678
4. qwerty
5. abc123
6. monkey
7. 1234567
8. letmein
9. trustno1
10. dragon
11. baseball
12. 111111
13. iloveyou
14. master
15. sunshine
16. ashley
17. bailey
18. passw0rd
19. shadow
20. 123123
21. 654321
22. superman
23. qazwsx
24. michael
25. football
Passwords have been a recurring theme this year, and it’s becoming increasingly clear (to me, at least), that passwords may be reaching their end-of-life on the Internet.