As IT security consultants, one of the first things we address with organizations during a Risk Assessment is password management. Most companies have a pretty strong grasp of “strong-password” requirements, or at least we have been lucky enough to find the fortunate few.
In a recent study released by SplashData, they compiled a listing of the 25 most common passwords used to lock down online accounts. This list is made up of over 1 million stolen passwords reported in 2013 and as evidenced by the creativity of our fellow citizens, Praetorian Secure will continue to make password management a mainstream part of our risk assessment process.
Here are the Top 25 Most Common Passwords of 2013
After reading this list it is clear that utilizing passwords related to the application or website it’s used for is common practice. I certainly hope our friends in the banking and defense industry are little more stringent with their requirements — though after supporting some of these entities in the past, I know better!