Henry Dalziel | General Hacking Posts | October 28, 2012
This is a list of the crappest passwords of 2012.
The list comes from the fine folks over at Splash Data. When they compiled this data they certainly had enough security breaches and successful hacks to work with to compile this data, including Yahoo!, LinkedIn, eHarmony and Last.fm all being hacked.
If you use any of the above passwords – doubtful since our audience are highly educated and experienced information security experts and pentesters 😉 – but just in case – if you do use any of the above then, ahem, better change it. A dictionary attack, rainbow tables, John The Ripper et al will all crack these with no problem at all.
Also of course, users of any of these passwords are the most likely to be victims in future breaches.
Interesting to see that the top three passwords, “password,” “123456,” and “12345678,” remain unchanged from last year’s list.
New entries to this year’s list include “welcome, ” “jesus,” “ninja,” “mustang, ” and “password1.”