程阳：SplashData 发布2015年最愚蠢密码

http://splashdata.com/about/index.htm

 

CNET>Tech> CultureWorst passwords of 2015: Star Wars references sneak onto list

Worst passwords of 2015: Star Wars references sneak onto list

Enough with "123456" already! SplashData's annual list of the worst passwords in use includes some old favorites and some new sci-fi-inspired phrases.

 

【本文来源】http://www.cnet.com/news/worst-passwords-of-2015-star-wars-references-sneak-onto-list/

【2015版PDF】http://www.prweb.com/pdfdownload/13170789.pdf

【2014版】http://www.cnet.com/news/worst-passwords-of-2014-are-just-as-awful-as-you-can-imagine/

 

Tech Culture

January 19, 2016

8:26 AM PST

Amanda Kooser mugshot

by Amanda Kooser

@akooser

 

As much as I hate it when a website tells me my password needs to include 25 non-repeating letters in both capitals and lowercase, with at least nine special characters, my grandmother's maiden name and five numbers from a fictional language, I know the site at least has my safety and security in mind. But not every piece of technology requires such an unguessable code and tech users are still taking advantage of that fact by relying on absolutely awful passwords.

 

Security applications and services company SplashData on Tuesday released its annual list of the worst passwords. The 2015 edition bears a striking resemblance to the 2014 version, but there are some interesting new developments, including a leaning toward Star Wars.

 

As hard as it is to believe, "123456" once again tops the list, just like last year. The second slot is also unchanged and holds the truly terrible "password." The only marginally better "12345678" comes in third, and the lazy "qwerty" takes up the fourth position. Things don't really change much until we look at the seventh slot, which contains "football." The sporting pastime comes in above "baseball" at No. 10.

 

The bottom of the top-25 list is where things get really geeky. The password "solo" comes in at No. 23 and "starwars" debuts at No. 25. The word "princess" comes in at No. 21, but it's impossible to tell if it's wishful thinking or a reference to Princess Leia. None of these reached the heady heights of the mythical "dragon" at No. 16, a password that dropped seven spots since the 2014 list.

 

SplashData compiled the list based on more than 2 million passwords leaked during the last year, the majority of which come from North America and Western Europe.

 

The 2015 list includes some attempts at longer passwords, such as "1234567890" and "qwertyuiop." "The longer passwords are so simple as to make their extra length virtually worthless as a security measure," SplashData notes.

 

As usual, SplashData offers some helpful suggestions for strong passwords, which people who use "123456" will probably promptly ignore. Here are the tips: Have at least 12 characters with mixed types of characters. Use different passwords for different sites. Consider using a password manager to handle the hard work. (SplashData makes one of these, so you can see the marketing angle here.)

 

Here is the complete list:

 

1 - 123456 (unchanged from 2014)

2 - password (unchanged)

3 - 12345678 (up 1)

4 - qwerty (up 1)

5 - 12345 (down 2)

6 - 123456789 (unchanged)

7 - football (up 3)

8 - 1234 (down 1)

9 - 1234567 (up 2)

10 - baseball (down 2)

11 - welcome (new)

12 - 1234567890 (new)

13 - abc123 (up 1)

14 - 111111 (up 1)

15 - 1qaz2wsx (new)

16 - dragon (down 7)

17 - master (up 2)

18 - monkey (down 6)

19 - letmein (down 6)

20 - login (new)

21 - princess (new)

22 - qwertyuiop (new)

23 - solo (new)

24 - passw0rd (new)

25 - starwars (new)

 

 

【2015版PDF】http://www.prweb.com/pdfdownload/13170789.pdf

 

Sunday, January 24, 2016

SplashData’s fifth annual “Worst Passwords List” shows people continue putting themselves at risk

While longer passwords debut on this year’s list of most commonly used passwords, they are not necessarily more secure

 

http://www.prweb.com/releases/worst/passwords/prweb13170789.htm

 

 

LOS GATOS, CA (PRWEB) JANUARY 19, 2016

 

SplashData has announced the 2015 edition of its annual “Worst Passwords List” highlighting the insecure password habits of Internet users. “123456” and “password” once again reign supreme as the most commonly used passwords, as they have since SplashData’s first list in 2011, demonstrating how people’s choices for passwords remain consistently risky.

 

In SplashData’s fifth annual report, compiled from more than 2 million leaked passwords during the year, some new and longer passwords made their debut – perhaps showing an effort by both websites and web users to be more secure. However, the longer passwords are so simple as to make their extra length virtually worthless as a security measure.

 

For example, “1234567890”, “1qaz2wsx” (first two columns of main keys on a standard keyboard), and “qwertyuiop” (top row of keys on a standard keyboard) all appear in the top 25 list for the first time, but they are each based on simple patterns that would be easily guessable by hackers.

 

As in past years’ lists, simple numerical passwords remain common, with six of the top 10 passwords on the 2015 list comprised of numbers only.

 

Sports remain a popular password theme. While baseball may be America’s pastime, “football” has overtaken it as a popular password. Both appear in the Top 10 of SplashData’s list, with “football” climbing three spots to number seven and “baseball” dropping two spots to number 10.

 

When it comes to movies and pop culture, The Force may be able to protect the Jedi, but it won’t secure users who choose popular Star Wars terms such as "starwars," "solo," and "princess" as their passwords. All three terms are new entries on this year’s list.

 

Other passwords appearing on the 2015 list that did not appear on the 2014 list include “welcome”, “login” and “passw0rd.”

SplashData, provider of password management applications including SplashID for consumers and TeamsID for businesses, releases its annual list in an effort to encourage the adoption of stronger passwords to improve Internet security. According to SplashData, the passwords evaluated for the 2015 list were mostly held by users in North America and Western Europe. The “Worst Passwords List” shows that many people continue to put themselves at risk for hacking and identity theft by using weak, easily guessable passwords.

“We have seen an effort by many people to be more secure by adding characters to passwords, but if these longer passwords are based on simple patterns they will put you in just as much risk of having your identity stolen by hackers,” said Morgan Slain, CEO of

SplashData. “As we see on the list, using common sports and pop culture terms is also a bad idea. We hope that with more publicity about how risky it is to use weak passwords, more people will take steps to strengthen their passwords and, most importantly, use different passwords for different websites.”

Presenting SplashData’s “Worst Passwords of 2015”:

 

1 - 123456 (unchanged from 2014)

2 - password (unchanged)

3 - 12345678 (Up 1)

4 - qwerty (Up 1)

5 - 12345 (Down 2)

6 - 123456789 (Unchanged)

7 - football (Up 3)

8 - 1234 (Down 1)

9 - 1234567 (Up 2)

10 - baseball (Down 2)

11 - welcome (New)

12 - 1234567890 (New)

13 - abc123 (Up 1)

14 - 111111 (Up 1)

15 - 1qaz2wsx (New)

16 - dragon (Down 7)

17 - master (Up 2)

18 - monkey (Down 6)

19 - letmein (Down 6)

20 - login (New)

21 - princess (New)

22 - qwertyuiop (New)

23 - solo (New)

24 - passw0rd (New)

25 - starwars (New)

 

SplashData offers three simple tips to help people protect themselves:

 

▶Use passwords or passphrases of twelve characters or more with mixed types of characters

▶Avoid using the same password over and over again on different websites

▶Use a password manager such as SplashID to organize and protect passwords, generate random passwords, and automatically log into websites

 

For more information on SplashData's last five years of research into commonly used passwords, please visit: http://content.teamsid.com/worst-passwords-ebook

 

# # #

 

About SplashData:

 

SplashData has been a leading provider of password management applications for over 15 years. The company’s SplashID (http://www.splashid.com) consumer application has grown to be one of the most trusted multi-platform password solutions with over 1 million users worldwide. SplashID’s popularity continues to rise as the number of user names, passwords, and account numbers most people have to remember is rapidly multiplying. At the same time, the risk of this kind of sensitive information falling into the wrong hands has never been greater. SplashID helps solve this dilemma by creating an encrypted digital safe available on smartphones, computers, USB keys, or online, offering the peace of mind of being able to access critical information whenever needed while maintaining the security of 256-bit encryption. The company’s business password manager TeamsID (http://www.teamsid.com) enables organizations to manage and share passwords and other sensitive records easily and securely. SplashData was founded in 2000 and is based in Los Gatos, CA.