Common passwords 123456 and qwerty finally exposed

A report by database security firm Imperva has highlighted the most common consumer passwords. The study was based on an analysis of 32 million passwords exposed in the recent breach.

The report can be downloaded here – no registration required. The top ten passwords are:

1. 123456

2. 12345

3. 123456789

4. Password

5. iloveyou

6. princess

7. rockyou

8. 1234567

9. 12345678

10. abc123

Will users never learn?

By Nigel Stanley, Practice Leader – Security, Bloor Research

Join the conversation


Send me notifications when other members comment.

Please create a username to comment.

It's not surprising how many users are still using insecure passwords. And it's not just on web sites. The username also has to be found aswell. Which on many sites is also displayed as the "Nickname" which makes them easier to decypher. In a business environment, IT Administrators need to make sure their usernames are not merely firstnames and that a complexity or password policy is in place.
It appears that registration is required to download the report, contrary to the blog post. Also, it says that I can comment anonymously here but I have to provide a name and email address.
Hiya, I can't comment on the report, but with regards to the blog, although there are spaces to fill in email and name, you can actually leave the email field blank (it's not mandatory) and just put 'anon' in the name box - that should work fine.