Do you use the same password for everything?

It's time once again for a survey of the worst passwords of 2020, brought to you by Norpass and associates. The company has been analyzing passwords retrieved from the Dark Web to study them. They are trying to locate trends and see just how well we're doing overall, in terms of picking passwords that aren't easy to guess.

The results aren't pretty, nor have they ever been, since Lastpass began conducting this research. Having analyzed more than a quarter of a billion passwords

Here are a few of the highlights they spotted

  • While the top five worst passwords shuffled around a bit, with only one new entry, the top five is largely as it has been. This year, "123456" leads the bad password pack, with "123456789" coming in at the number two spot.
  • The number three spot is occupied by the password "picture1" which is actually a marked improvement over the first two. Where the first two could be brute force solved in under one second, "picture1" would take about three hours.
  • The rest of the top five, "password" and "123456t78" can be cracked in less than a second.

The solutions are here, and cheap - not easy

Combine the fact that too many people are using the simplest passwords with the fact that a shocking percentage of users are still, after years of warnings, using the same easy-to-crack password across multiple web properties. That is a recipe for disaster.

Is it any wonder then, that the number of successful data breaches continues to increase year after year? Given that this issue has been going on since at least 2015--and there's no reason to think it wasn't happening well before that, we simply don't have the data to prove it - this is a problem that will not be easily solved.

Our perspective

We have to do something to get our arms around it though, or we're in big trouble. Password managers are readily available, as are Two-Factor Authentication systems. Get these two into your business and train your people to use them (one of the Security Awareness Training systems). Not expensive, but you have to take the first step.

~ Mahatma Gandi observed. “Be the change that you wish to see in the world.” ~

By Denis Wilson

Cybersecurity Expert, Small Business Technology Consultant, Managed Services Provider, Managed IT Support

Thanks for reading this short post. For more tips on thriving with small business technology, check out the other blog posts at DWPIA Blogs. You can find us on LinkedIn, Facebook, and Twitter.

I am also a published author and speaker in cloud computing, work at home, and cybersecurity. I am working extensively with business and professional associations to provide small business technology education programs. Contact me if you would like me to speak at your association