There's a new kid on the block with this year's countdown of the worst passwords you could possibly have but do. It's a first-time top ten appearance for “adobe123”.
Also breaking into the top ten with a rise of two places is “iloveyou” where it's amazing five-place jump for our number 8 password, “1234567”.
The unforgettable “111111” is up two to 7 while it's another new entry at 6 with “123456789”.
Then it's the chart's first fall with “abc123” down one to 5.
Replacing that at 4 is the classic “qwerty” which is up one spot.
Into the top three now and still steady at number 3 is “12345678”. Number 2 is a shock drop of one place for the all-time legend that is “password”.
That top ten again:
- adobe123
- iloveyou
- 1234567
- 111111
- 123456789
- abc123
- qwerty
- 12345678
- password
Which means that rising one place since last year, the worst password of 2013 is… “123456”.
There are a few qualifications to make about this chart countdown but the thing to take away is that all ten are equally stupid. And if you use any of them, or any like them, you must change them now if only because it is embarrassing that your best idea is the exact same one that millions of other people had too.
Fixing your passwords is more important than hearing me snark at the data so go, be gone, get yourself over to 1Password. I couldn't endorse that software any more if they paid me.
But now. Snarking.
The definition of worst is debatable, I think. This countdown comes from SplashData, and firm that of course works in password management, and it's really a ranking of the most commonly used passwords. That's not quite the same thing as the worst: “password” is surely still the one you would try first if you were going to break into something. Or “pencil” if you're hacking WOPR, obviously.
Morgan Slain, SplashData CEO:
“[An] interesting aspect of this year's list is that more short numerical passwords showed up even though websites are starting to enforce stronger password policies.”
The definition of most commonly used is also debatable: SplashData says that this year's list is heavily influenced by the troubles Adobe had when a security breach meant quite a few of its users passwords became known.
So many, in fact, that the list has to have been distorted by that group – and you can see it the top twenty which includes such gems as “photoshop” and “adobe123”.
But, seriously, 1Password. On your way.