Incident Response, TDR, Vulnerability Management

Nearly two million breached Adobe accounts used ‘123456’ as a password

Security firm Stricture Consulting Group, which specializes in password cracking, released a list of the most common passwords used by the roughly 38 million customers who had information compromised in the massive Adobe breach reported on in early October.  

The theme is numbers.

The most commonly used password is '123456,' with nearly two million users choosing the six-digit password. Runner-ups: close to 500,000 chose '123456789,' 350,000 chose 'password,' 200,000 chose 'adobe123,' and another 200,000 chose '12345678.'

“Thanks to Adobe choosing symmetric key encryption over hashing, selecting ECB mode, and using the same key for every password,” according to a Stricture Consulting Group post, which also states that while the list should be fairly accurate, it has not been verified.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.