Architecture, Network security

May the brute force be with you: Worst 2015 passwords pay homage to Star Wars

January 20, 2016

As Obi-Wan Kenobi would say, "These aren't the passwords you're looking for."

It doesn't take a Jedi mind trick to guess a bad password,just some savvy social engineering or a brute-force attack. So users who picked“starwars,” “solo” or “princess” for their credentials will be sorry to hearthat they selected one of the 25 most common — and therefore worst — passwords of2015, according to SplashData.

Aside from these references to Star Wars: The Force Awakens, there were several othernew entries to the annual list, including “1234567890,” “1qaz2wsx” (the twoleftmost letter columns on a keyboard) and “qwertyuiop”  (the top row of keyboard letters). In its blog,SplashData notes that while these passwords are longer than previous listentries, they “are so simple as to make theirextra length virtually worthless as a security measure.

Unchanged from 2014, the most common passwordof 2015 was the dreadfully uninspired “123456.” SplashData's list of worst passwords:

  1. 123456
  2. password
  3. 12345678
  4. qwerty
  5. 12345
  6. 123456789
  7. football
  8. 1234
  9. 1234567
  10. baseball
  11. welcome
  12. 12345667890
  13. abc123
  14. 111111
  15. 1qaz2wsx
  16. dragon
  17. master
  18. monkey
  19. letmein
  20. login
  21. princess
  22. qwertyuiop
  23. solo
  24. passw0rd
  25. starwars
prestitial ad