You definitely don’t want to be using these
Hackers (1995) taught me the four most commonly used passwords are “love”, “sex”, “'secret”, and “god”.
“secret” is there. “iloveyou” has love in it.
I wonder how true that actually was in the 90s.
YSK The World’s Most Common Passwords
Submitted 2 weeks ago by Eavesy@lemmy.world to youshouldknow@lemmy.world
https://www.shithot.co.uk/most-common-passwords/
Comments
IllNess@infosec.pub 2 weeks ago
lemmyng@piefed.ca 2 weeks ago
Before password composition rules, those were actually quite common, as well as passwords that were just the same as the username. Heck, it wasn't until that long ago that router manufacturers used to ship with admin/admin as the default credentials.
Ptsf@lemmy.world 2 weeks ago
Honestly every networking company that couldn’t be bothered to ship with randomized creds physically embedded/etched somewhere on the device should’ve probably went out of business. The cost has always been minimal and the increased security value has always been readily apparent.
otter@lemmy.dbzer0.com 2 weeks ago
Yeah, now in this enlightened future, they’ve ascended to admin/password. 😶
Endymion_Mallorn@kbin.melroy.org 2 weeks ago
Hack the planet.
At least it isn't always Swordfish!
surewhynotlem@lemmy.world 2 weeks ago
Operation suck his dick while he hacks the feds.
Such a great movie.
molten@lemmy.world 2 weeks ago
Mine is Secretsexgodoflove69!
Zwiebel@feddit.org 2 weeks ago
Honestly use Bitwarden
sunzu2@thebrainbin.org 2 weeks ago
A normie ready solution, Foss chads will self host tho
lena@gregtech.eu 2 weeks ago
Bitwarden is FOSS… and you can self host it easily with Vaultwarden.
floofloof@lemmy.ca 2 weeks ago
according to data from the password security website called NordPass all of which would take a hacker less than a second to crack. Take a look at this quality design to learn about popular passwords that you definitely shouldn’t use such as 123456 which was used 3 million times, 123456789 which was used 1.6 million times, 12345678 which was used 885 thousand times, “password” which was used 692 thousand times and qwerty123 which was used 643 thousand times.
Is it normal for a password manager to be able to recognize which passwords are being used? Does this reflect badly on NordPass?
Endymion_Mallorn@kbin.melroy.org 2 weeks ago
1-2-3-4-5-6!? That's the same code I use on my luggage!
MajorMajormajormajor@lemmy.ca 2 weeks ago
I’m surrounded by assholes!
Nemo@slrpnk.net 2 weeks ago
They didn’t pull this data from their own users, but rather from six public leaks.
teft@piefed.social 2 weeks ago
naticus@lemmy.world 2 weeks ago
The thumbnail shows “assword” so I’ll upvote.
max_dryzen@mander.xyz 2 days ago
Buttmash the kb. Your assword is ready sir
SorryImLate@piefed.social 2 weeks ago
What's with dragon and monkey?
who@feddit.org 2 weeks ago
I’m a little surprised not to see “changeme” on this list.
JackbyDev@programming.dev 2 weeks ago
The default ca cert store password in Java is “changeit”
sga@lemmings.world 2 weeks ago
I am really surprised some common shit is not there, like hello, hello1234, password1, abcd1234 (and other perms have numbers in front, etc)
psx_crab@lemmy.zip 2 weeks ago
So i guess p@s5w0RD123pA55wOrD would be super strong.
undefined@lemmy.hogru.ch 2 weeks ago
From my experience brute forcing passwords, no. It’s smart enough to try character substitutions and it annoys me so much that the FBI recommends this practice.
psx_crab@lemmy.zip 2 weeks ago
Wait it’s not? I remember some people in the industry recommend this sort of password albeit with variation of other random words as it’s pretty strong and would take a very long time to crack.
JackbyDev@programming.dev 2 weeks ago
I just see *******************
psx_crab@lemmy.zip 2 weeks ago
Need your credit card number and the 3 digit number at the back of the card to see what i typed.
itslilith@lemmy.blahaj.zone 2 weeks ago
That’s okay at best. Better if a passphrase, just random, impersonal words, something like this (~50 bits of entropy):
“virtual raging vineyard clad runner”
Best is a long, completely random string, stored in the password manager that you should be using anyways ~150 bits of entropy):
“hX0hZ1QTWtQo(h[Ta9jH]TmsVIhUTgSE”
psx_crab@lemmy.zip 2 weeks ago
I did use a password manager, but issue is i still need password for the password manager so it can’t be random lol.
Lenny@lemmy.zip 2 weeks ago
I see password and password1
Mfw I’m sittin’ safe all the way down here at password69 😎
Remember_the_tooth@lemmy.world 2 weeks ago
1Frog_isDancingOnMyPizzaNow!
TheBat@lemmy.world 2 weeks ago
W3!rd_tOpPing
Remember_the_tooth@lemmy.world 2 weeks ago
I laughed at my phone in public.
JackbyDev@programming.dev 2 weeks ago
Monkey 🐵
Amputret@lemmy.dbzer0.com 2 weeks ago
Not using reindeerflotilla, smh
kernelle@0d.gs 2 weeks ago
Everybody else uses a first name or birthday combo
ns1@feddit.uk 2 weeks ago
Strange how much higher the top one, 123456, is than the others, and how the most popular ones with repeating numbers also have 6 digits. Why do people like 6 digits so much more than 5 or 7?
emb@lemmy.world 2 weeks ago
Because of composition rules. Fewer characters, much easier to brute force guess.
So when a site tells you ‘Your password must be at least 6 characters long’, and they just want to get past it to get to the content, the number is already on their mind.
Rentlar@lemmy.ca 2 weeks ago
trustevery1helpImTrappedOnline@lemmy.world 2 weeks ago
P@ssw0rdno one will ever guess this one!craftrabbit@lemmy.zip 2 weeks ago
Pick password Unga. Monkey.
unphazed@lemmy.world 2 weeks ago
Really surprised my old one isn’t on there. Dontknow.
crazycraw@crazypeople.online 2 weeks ago
Hunter2 or gtfo
themeatbridge@lemmy.world 2 weeks ago
All I’m seeing is asterisks
NessD@lemmy.world 2 weeks ago
It censors your password in real time. Check it out: **********