Skip to Main Content
passwords, Passwörter, mots de passe, password

The 25 worst passwords of them all

With all the data breaches that happened during 2016 – just think back to the 32 million Twitter passwords on the Dark Web or the time we found out that Mr. Zuckerberg’s password was ‘dadada’ –one should think that people have managed to notice that password security is a good idea and somewhat important.

Think again. Some people just never learn (and obviously don’t care about their account security). So, let’s take a look at what passwords you should avoid at all cost:

The list of passwords

  1. 123456 (Unchanged)
  2. password (Unchanged)
  3. 12345 (+2)
  4. 12345678 (-1)
  5. football (+2)
  6. qwerty (-2)
  7. 1234567890 (+5)
  8. 1234567 (+1)
  9. princess (+12)
  10. 1234 (-2)
  11. login (+9)
  12. welcome (-1)
  13. solo (+10)
  14. abc123 (-1)
  15. admin (New)
  16. 121212 (New)
  17. flower (New)
  18. passw0rd (+6)
  19. dragon (-3)
  20. sunshine (New)
  21. master (-4)
  22. hottie (New)
  23. loveme (New)
  24. zaq1zaq1 (New)
  25. password1 (New)

As before SplashData released its annual list of the 25 worst passwords which has been compiled from more than 5 million leaked passwords from last year. If you have been looking at those lists regularly you might have noticed that there is not a lot of change going on: most of the 25 passwords have been in there last year already.

So what to do?

You should definitely make sure you at least consider the following security tips:

  • Use a unique password for each of your accounts. When a website gets hacked one of the first things bad guys do is checking out if your username/email address/password combination works on other (high-profile) pages.
  • Your password should consist of at least eight characters. It should include upper- and lower-cases, numbers, and special characters.
  • Try and create passwords that can’t be found in a dictionary. Hackers nowadays have programs that cycle through dictionaries to check if they can access your account.
  • Don’t use character strings like 12345, abcde, qweertyui, etc.
  • Use passwords that can’t be associated with you: Your dog’s name, birthday dates of family members or yourself or your favorite sport are a not a good idea.
  • Change your password regularly – especially when it comes to your email and online banking/online payment accounts.
  • Don’t write down your password and do never ever share them.

If you have trouble coming up with a good, strong, and complex enough password, try one of the many password generators out there – and if you’re wondering how to remember it take a look at our shiny new password manager!

What are your password tips?

This post is also available in: GermanFrenchItalian

PR & Social Media Manager @ Avira |Gamer. Geek. Tech addict.