P@s$w0rdz: Weak Passwords

Quotes | Weak vs. Strong | References

Quotes

• "I speak the pass-word primeval" ~Walt Whitman, Song of Myself
• "Don't use 'beef stew' as a computer password... It's not stroganoff."
  (Crossword about passwords (by Steve): Not Stroganoff. Try Again)
• The 25 Most Popular Passwords of 2018 Will Make You Feel Like... a Security Genius:
  1. 123456; 2. password; 3. 123456789; 4. 12345678; 5. 12345;
  6. 111111; 7. 1234567; 8. sunshine; 9. qwerty; 10. iloveyou;
  11. princess; 12. admin; 13. welcome; 14. 666666; 15. abc123;
  16. football; 17. 123123; 18. monkey; 19. 654321; 20. !@#$%^&*;
  21. charlie; 22. aa123456; 23. donald; 24. password1; 25. qwerty123"
  ~from 5 million passwords that have leaked online in 2018 (most annual lists below)
• "Changed my password to fortnight but... apparently that's two week."

• 
  

  "One out of every 142 passwords is '123456'...
  (7 million in dataset of 1 billion passwords); avg. password length of 9.48 chars;
  most security experts recommend using passwords as long as possible,
  and usually 16-24 characters, or more; only letters (29%); only numbers (13%);
  include special character (12%)" ~Recent study (7/2020)

• What do passwords and teenagers have in common?...
  They are both insecure.
• My email password has been hacked again...
  That's the third time I've had to rename my cat.
• "'123456' is a weak one... PASSWORD" ~USA Today Crossword, 9/5/2017
• "49-Across: It may require letters, a number and a special character...
  -- as seen in 20-, 33- and 39-Across" : STRONGPASSWORD ~NYT; Wed, 7/29/2020
• "They'll Never Guess," The Week, 3/18/2022; crossword, solution;
  16-A. Keyboard sequence that's the 18th most common computer password,...
  according to a recent report by security firm Lookout = QWERTYUIOP
  19-A. The 4th most common password... (and the least creative one imaginable) = PASSWORD
  39-A. 13th most common password,... for which no effort is required = DEFAULT
  56-A. 19th most common password,... which restores your faith in humanity = ILOVEYOU
  61-A. Most common single-character password,... and 14th overall = NUMBERZERO
  9-D & 24-D. Numerals that are the 16th most common password --... and you thought
  you were being tricky with a reversal! 9-D: SIXFIVEFOUR, 24-D: THREETWOONE

What Makes a Password Weak (or Strong)?

• Short vs. long
• Simple vs. complex (larger set of characters available&used)
• Predictable/common vs. random/unusual
• Public vs. private
• Reused vs. unique
• ...

References

• Check if an account was involved in a breach/leak
  haveibeenpwned.com: enter email or phone;
  "credential stuffing": hackers reuse info from breached accounts
  to try logging into other accounts with same username and password
• Wikipedia: Lists of the most common 20-25 passwords,
  10,000 passwords SplashData annual comparisons, plus other sources
• "Worst 25+": 2022; 2021; 2020; 2019; 2018;
  2017; 2016; 2015; 2014; 2013; 2012; 2011; 2010
• Top 200 most common passwords compare by country; Nordpass
• 100 latest world's worst passwords — don't use any of them Tom's Guide; 7/6/2020
• 100,000 Leaked Passwords UK National Cyber Security Centre;
  .txt; from haveibeenpwned.com
• Ten Years Of Breaches In One Image
  Nearly 8 billion usernames have leaked since June 2011; Verge; 6/8/2021
• National Password Day project:
  A unique password for every website you go to
  (typical advice): strong, unique passwords that you can remember,
  and/or subscribing to a password manager;
  additional authentication factor; USA Today; 5/7/2020
• Why 'ji32k7au4a83' Is a Remarkably Common Password
  Taiwanese keyboard transliteration translates to 'my password'; Giz; 3/4/2019
• Kanye West Has Literally the Worst iPhone Passcode
  You Could Ever Have 000000; MB; 10/11/2018
• Snowden's 'Sexy Margaret Thatcher' Password Isn't So Secure
  MargaretThatcheris110%SEXY; Wired; 4/2015
• Crossword (by Steve; on right): Not Stroganoff. Try Again
• Refs: Password Strength