The 25 Most Popular Passwords Of 2014: We're All Doomed

The 25 Most Popular Passwords of 2014: We're All Doomed

It's 2015 and it would be nice to think that people had learned what makes a good password by now. They haven't. And this list of the 25 most popular passwords of 2014 — maybe also make that the worst — proves it.

SplashData's annual list compiles the millions of stolen passwords made public throughout the year and assembles them in order of popularity. A glance down the list reveals that we're all still morons, with "123456", "password", "12345", "12345678" and "qwerty" making up the top five. No, really.

Now is clearly a good time to remind yourself not to be one of those morons, and start using sensible passwords, LastPass or some other system to keep your personal information safe. But anyway, enough of that, here's the list. You're welcome.

1. 123456 (Unchanged)

2. password (Unchanged)

3. 12345 (Up 17)

4. 12345678 (Down 1)

5. qwerty (Down 1)

6. 123456789 (Unchanged)

7. 1234 (Up 9)

8. baseball (New)

9. dragon (New)

10. football (New)

11. 1234567 (Down 4)

12. monkey (Up 5)

13. letmein (Up 1)

14. abc123 (Down 9)

15. 111111 (Down 8)

16.mustang (New)

17. access (New)

18. shadow (Unchanged)

19. master (New)

20. michael (New)

21. superman (New)

22. 696969 (New)

23. 123123 (Down 12)

24. batman (New)

25. trustno1 (Down 1)


Comments

    If you have people called Michael in your oganisation - you now know how to break into their accounts.

    I turned on 2 factor auth for my Google account last year. It's great.

    To be fair, only the stupid passwords are likely to make this list (because sensible passwords are generally unique), so it gives no real indication as to how many morons are actually out there.

    Though I do suspect it probably is a lot.

    What happened to the good old days of 'love, secret, sex and god'?

    12345? That's amazing, I have the same combination on my luggage!

    what shitty software is allowing these passwords

      As i found out recently, anyone who built to the bare minimum for PCI compliance. I would have figured a credit card compliance standard would have hard harder password requirements (caps, special characters etc)

    It also shows the stupidity of some online systems. No online account should allow such simple passwords to be set.

    I'm sure these passwords are made common by the fact that 90% of the passwords we have are to meaningless things. e.g. Why wouldn't any of the passwords above be suitable for your log-in here? I have strong passwords for things like PayPal and eBay but for most other things, including work (because they make us change them every 90 days), I just use simple things that anyone can remember.

    I've often wondered where I could find a list of new passwords. Thanks.

    @Jamie - observations for your consideration;
    1. SplashData doesn't compile this list, and they don't share any insight into how the list data is gathered.
    2. The actual source is sighted as the 'Stricture Consulting Group' - Stricture offers services in Password audit and cracking - they don't compile global audits of commonly used passwords (see point 4).
    3. SplashData is a vendor who sells authentication alternatives to password.
    4. This is the 2013 list. There is no 2014 list from SplashData posted (their blog has not been updated for 6 months) nor Stricture (their press page ends in 2013, their facebook posts stop in June 2013, they last tweeted Sept last year).
    5. This list comes from the Adobe hack ONLY. It may be indicative of overall password use, but there are many more comprehensive password use lists available = published freely from vendors and service providers, which also show the method for gathering and compiling said lists.
    6. The consultant (see point 7) from Stricture took the +9BG Adobe Password file which had been posted online and, understanding common passwords (see point 2), and having Adobe customers volunteer their passwords to him, the symmetric key protecting the hashed +9GB file was produced.
    7. The founder, owner and CEO derived the list. The company has 1-10 employees listed on their LinkedIn profile (3 actual employees listed on LinkedIn).

Join the discussion!

Trending Stories Right Now