Top 10 passwords 2008

10.04.08

I just had a client send me a password, which I have told them they need to change, what made me laugh was Becky my wife said “it’s better than the old password” which was password .. lol, then that reminded me of the top 10 passwords ..
darkreading had these top 10 passwords :

1. (username)
2. (username)123
3. 123456
4. password
5. 1234
6. 12345
7. passwd
8. 123
9. test
10. 1

Threadwatch had in 2007

1. password
2. 123456
3. qwerty
4. abc123
5. letmein
6. monkey
7. myspace1
8. password1
9. blink182
10. (your first name)

modern life is rubbish has a UK List in 2006 :

1. 123
2. password
3. liverpool
4. letmein
5. 123456
6. qwerty
7. charlie
8. monkey
9. arsenal
10. thomas

But across europe the top 10 is still

1. Password
2. 12345
3. Football Club
4. Partners Name
5. letmein
6. Monkey
7. Own name
8. 1234
9. Qwerty
10. First school or Colour

and people wonder why their Blogs get hacked !!

DaveN

32 Comments

  • 1

    To be fair, though a top 10 list will have stupid passwords only, it can represent only 1% of the total passwords in a database.

    Michael Fridman
    http://anadder.com

    10th April 2008 @ 23:13

  • 2

    letmein…lol. That’s my new password.

    Josh Garner
    http://www.seo-factor.com

    10th April 2008 @ 23:42

  • 3

    Across Europe the #6 password is ‘monkey’ ????

    Seems unlikely to me.

    Either:
    * They all started speaking English
    * Monkey means ‘password’ in Esperanto, French, German, Italian or Spanish
    * Johnny Vegas is better known than I suspected
    * The survey had a flaw

    4eyes

    11th April 2008 @ 10:34

  • 4

    Good thing I don’t use my name. It’d be doubly stupid.

    qwerty
    http://www.qwertysqoncepts.com

    11th April 2008 @ 12:46

  • 5

    Ahahaha. aha. hahahaha hahaha, haha HA HA HA. Oh dear..

    SEO Ranter
    http://seorant.blogspot.com

    11th April 2008 @ 13:22

  • 6

    The easiest thing to remember when you combine safety is someone’s name along with some birthdays (the actually dates). Combine two different people and you can easily remember them and no one should be able to figure it out (sammy0514).

    SEO web hosting
    http://www.charmehosting.com

    14th April 2008 @ 21:05

  • 7

    LOL monkey!!! I have not thought of that one lol

    pKay
    http://pkayski.wordpress.com/

    16th April 2008 @ 01:19

  • 8

    Kind of flawed to look at it this way, as Michael said.
    If you have a good password, the chances of it being duplicated are slim to none. If you have 100 users, 2 of them use 1234 as their password, and all the others are good passwords, suddenly 1234 becomes the #1 password and everyone shakes their head at how horrible peoples’ passwords in general are.

    That said, a lot of people use stupid passwords.

    Shaun

    16th April 2008 @ 03:16

  • 9

    [...] The top passwords of 2008. [...]

    12345 | Pwn The Net

    16th April 2008 @ 03:30

  • 10

    I find these password used often as well

    pass
    trustno1
    Password (Capital P)

    Binny V A
    http://www.bin-co.com/blog/

    16th April 2008 @ 12:30

  • 11

    Wow, they were cool ;) i think i should create one site/blog for how to create strong passwords

    Krunal Chauhan
    http://www.searchrankpros.org

    16th April 2008 @ 16:51

  • 12

    Top 10 passwords 2008 » David Naylor a UK SEO and Search Marketing Agency…

    I just had a client send me a password, which I have told them they need to change, what made me laugh was Becky my wife said “it’s better than the old password” which was password .. lol, then that reminded me of the top 10 passwords …..

    Top Stumbles - Best of StumbleUpon

    17th April 2008 @ 01:07

  • 13

    STUMBLED!

    Thankfully my password isn’t listed here.

    VOTED for you at:
    http://www.newsdots.com/cool/david-naylor-a-uk-seo-and-search-marketing-agency/

    Geoserv
    http://www.pliggs.com

    17th April 2008 @ 01:09

  • 14

    @SEO Web Hosting

    That’s not true. You should pick a password that is random letters, number and special characters. Using a password that is someones name and some numbers is not nearly as secure but far better than “monkey” :P

    ramsey

    17th April 2008 @ 08:07

  • 15

    I see this sort of thing all the time at my work (I work for an ISP). You wouldn’t believe the amount of people who think that [username]123 won’t be guessed…

    And as for ‘letmein’… well that’s the password for a former colleague’s Adwords account. Oh man…

    Anyway, in order to have complicated passwords that I can still remember, I created a system where I make up passwords using a pool of smaller groups of letters/words. The order they’re in depends on what the password is for, so if I forget it I can still figure it out.

    David
    http://www.dsj.za.net

    17th April 2008 @ 10:29

  • 16

    Damn, people are so stupid sometimes.
    How can somebody have “password” for password in 2008?

    Money Ideas
    http://moneyideas.us

    18th April 2008 @ 22:09

  • 17

    DaveN, I bet your password is DaveN. ;-)

    Igor The Troll

    19th April 2008 @ 05:43

  • 18

    Taking in consideration that english is not the the most spoken first language in europe. That european keyboards are not necessarily qwerty but qwertz and different combinations according to the languages. I would check the points you present as facts.

    Dubistdoof

    21st April 2008 @ 13:44

  • 19

    letmein was the standard password shipped with sage accounts

    IceMan

    10th July 2008 @ 10:01

  • 20

    We often suggest that our users define a phrase that they can remember and then take either the first letter of each work in that phrase, the first from he first word, second from the second work etc. or some other combination. It generates a combination of random letters that becomes difficult to ‘guess’ but relatively easy to remember.

    Regards
    Mike
    moneybackheaven.com
    Don’t just shop. Get paid to shop!

    Mike Williams
    http://www.moneybackheaven.com

    10th July 2008 @ 10:12

  • 21

    How do you knoww that people are giving you the real password. If asked in a survey I would give a password, but not one I use

    richard

    10th July 2008 @ 11:17

  • 22

    [...] isn’t necessarily secure, as you can make it pretty easy to guess. For example, here are some commonly used insecure passwords: darkreading had these top 10 passwords [...]

    How can I make sure my password is secure? | Ask Owen

    10th July 2008 @ 11:40

  • 23

    Current favourites here are :

    To put it on a Post-it note and cellotape it to your laptop or screen.

    And we’re going Sox soon!!!!!!!

    What do you expect, some of these people only earn £150,000 a year!

    Broadcast Media Support Person

    10th July 2008 @ 17:25

  • 24

    On the USB Storage front just buy an IRONKEY !! (www.secure-usb.co.uk) …10 password tries to get into the device..get it wrong and it destroys itself so you only need a 4 digit password and that would be considered strong !! That way a PIN would do. Also the PERSONAL version contains a password manager that maens that for web based login you can have the most complicated passwords you want (it has a password generator on board). Just generate one, paste it in the site, the IronKey then saves the password on the device. This way you have secure passwords, which the IronKey remembers and you don’t have to - all on a hardware encrypted USB device which of course is portable…and the device itself has an easy but strong password. What could be better ..www.secure-usb.co.uk and that :-)

    James Hall
    http://www.secure-usb.co.uk

    11th July 2008 @ 06:06

  • 25

    [...] report into the Top 10 passwords for 2008 puts ‘Password’ at the top of the list. It’s been in the top 5 for years - why? You would have thought that people would realise [...]

    And Your Password Is… Password : View From The Bunker

    11th July 2008 @ 09:17

  • 26

    [...] people use (with various lists placing “password”) at or close to the top of the list. His source contained some dubious claims (e.g. it claimed that one of the top passwords across Europe is “monkey”… maybe [...]

    markwilson.it » Generating secure passwords

    14th July 2008 @ 09:42

  • 27

    There was an article recently about a Government minister whose blog had her first name as her userid and her surname as her password. And she is in charge of a very large budget.

    Tim WMB
    http://www.inspirotechnic.com

    18th July 2008 @ 10:40

  • 28

    I know an idiot man who used his name backwards….

    …. he was up to no good and luring lonely stupid women to meet him in parking lots to act out his fantasies.
    Beware of friendly perverts ….liars and sick!

    not so stupid

    26th December 2008 @ 18:51

  • 29

    i was told monkey is half english half french
    mon= my (french)
    key= key/ code (english)
    Its pretty cool pswd for back then imo

    ray

    6th January 2009 @ 01:47

  • 30

    [...] Top 10 passwords 2008 [...]

    SEO for Graphic Designers // Search Engine Optimization Tips | V5 DESIGN

    20th February 2009 @ 00:14

  • 31

    Passwords should be at least 10 characters long. Mix it up with numbers and symbols or spell it wrong, there is dictionary scans for passwords so make sure it is not out of the dictionary.There is also a brute force scan that can trace smaller passwords which is why 10-12 character passwords is key, it would take many many years to scan 12 characters, as long as its not from the dictionary. Don’t use your family members names, including any pets or birthdays. Never, never leave your password under your key board or on a sticky note stuck to your monitor. Finally, never have your password hint the actual password !!!!!

    I hope this is useful.

    Melville

    17th April 2009 @ 03:44

Add a Comment

*

*

*

Come and work with David Naylor and the team Subscribe
to the David Naylor feed Follow
David Naylor's Twitter feed
View Dave's Blog