Worst passwords of 2013

#4749156

Solfaur

2014-01-23 09:17

"000000" only on place 25? Pff... son, I am disappoint.

#4749177

k3vst3r

2014-01-23 09:57

why does sunshine appear twice?

#4749178

Ven0m

2014-01-23 09:58

LOL @ 10 - adobe123

(...) I am not arguing that such services\software are a good solution for multiple passwords, I just can't accept the risk of them not being totally safe. That's why not matter how complicated it is I keep all my password (most of them "strong") in the only place unconnected to network - brain

It makes sense for very sensitive passwords. On the other hand, some services are kinda safe. Eg LastPass - yes, their servers got hacked some time ago, however all the container encryption/decryption is done on the client machine, so as long as your master pass is safe, you are safe... However there are 2 glitches: 1. If your computer gets compromised, you're pretty much screwed, as someone can get your master password with a keylogger or other software. 2. There are auto updates. If you get a malicious update, it may steal your data. It might happen if there was a security hole in your browser's update mechanisms.

#4749180

brutlern

2014-01-23 09:59

why does sunshine appear twice?

Was going to ask the same question, also why do the first few paragraphs appear twice in the article?

#4749211

lucidus

2014-01-23 10:21

Try hacking a piece of paper :P

#4749214

anticupidon

2014-01-23 10:26

Time to harden even more my passwords.

#4749401

dsbig

2014-01-23 14:58

i been using sentences for passwords. for example Mydogateyourcat1

#4749437

Fender178

2014-01-23 16:01

The combination is 12345 That is the most stupidest combination I have ever heard in my life the thing an idiot would have on his luggage. lol. Man talk about craptastic passwords. It is just as bad as user: user Password:password.

#4749446

Agent-A01

2014-01-23 16:23

My princess pw has been exposed

#4749449

zipper

2014-01-23 16:27

31556925,9747 --I'll never forget; but the Russians seem to recognize it, too...

#4749456

Keitosha

2014-01-23 16:47

The combination is 12345 That is the most stupidest combination I have ever heard in my life the thing an idiot would have on his luggage. lol. Man talk about craptastic passwords. It is just as bad as user: user Password:password.

Don't forget admin / admin, pretty common on most routers/modems.

#4749532

UZ7

2014-01-23 18:47

"000000" only on place 25? Pff... son, I am disappoint.

Funny cause 00000000 were the nuclear launch codes back then 🙂

#4749606

alanm

2014-01-23 20:50

I know someone who wrote his ATM cards password on the card so he wont forget it.

#4749613

GenClaymore

2014-01-23 20:57

Neither will the person who takes his ATM card 😉

#4749668

Clouseau

2014-01-23 22:49

My password is dvorak. Nobody guess it because nobody know it.

Come on...anyone with hardly any musical knowledge knows the guy. Love all his symphonies.

#4750174

blkspade

2014-01-24 16:16

See the problem isn't that the passwords get hacked in realtime via normal login prcedures, but when a site's security is breached and hackers gain access to the password hashes. All of these weak passwords are then very easily broken via offline dictionary or brute force methods. Anything under 12 characters with moderate complexity is generally pretty trivial depending on hashing method.Then the fact that there are GPU based tools that make the process even faster.

You're more likely to get keylogged or phished than someone trying to guess your password for an online account either manually or automated dictionary attack. Most sites have a limit in the number of times you enter your password wrong before they start displaying CAPTCHA. Someone guessing your security questions is another weak link. And if you use the same password for every site you go on then there's also the chance that if one site gets attacked then they'd also have access to your other accounts.