Every year, certain security companies release a list of the most common worst passwords. For 2015, SplashData examined over 2 million passwords that were leaked online from data breaches and other hacking attacks. Sadly, it found that too many people are still really bad at making passwords, which is why we recommend using a strong password manager like our sponsor Dashlane (more on that in a minute).
For the umpteenth year running, the worst password was "123456," followed by "password," which has also held onto the number two spot for two years. But, some people have decided to stray from other bad passwords like "letmein" and "monkey" and come up with new bad passwords.
Some of the new bad passwords include "starwars," "login," "qwertyuiop" and "welcome." Here's the full list, along with how each password has changed from last year:
1 - 123456 (unchanged from 2014)
2 - password (unchanged)
3 - 12345678 (Up 1)
4 - qwerty (Up 1)
5 - 12345 (Down 2)
6 - 123456789 (Unchanged)
7 - football (Up 3)
8 - 1234 (Down 1)
9 - 1234567 (Up 2)
10 - baseball (Down 2)
11 - welcome (New)
12 - 1234567890 (New)
13 - abc123 (Up 1)
14 - 111111 (Up 1)
15 - 1qaz2wsx (New)
16 - dragon (Down 7)
17 - master (Up 2)
18 - monkey (Down 6)
19 - letmein (Down 6)
20 - login (New)
21 - princess (New)
22 - qwertyuiop (New)
23 - solo (New)
24 - passw0rd (New)
25 - starwars (New)
If you recognize any of these passwords as ones you use, or you use anything similar, it's time to rethink your password strategy. Passwords need to be long (10 characters or more), complex (including upper-case, lower-case, numbers and symbols), as random as possible and you need a unique one for every account.
Also, you really shouldn't be writing them down where a snooper can find them. That's a tall order, especially when you have dozens of accounts.
That's why a password manager should be an essential part of your life. It not only lets you securely store your password and only have to remember one master password, it can help you generate strong new passwords that hackers can't crack. If you get a password manager like Dashlane, however, it can do even more than the basics.
Dashlane's free password manager lets you import your existing passwords from other password managers or your browsers, so you can get started in seconds. It can tell you which passwords are weak, and it alerts you when sites you use have had data breaches. When you visit a website, it will fill in your username and password with a click, so you don't have to spend time typing and retyping.
Even better, Dashlane has innovative features like Password Changer that lets you automatically change every one of your account passwords in minutes. You don't have to spend hours or days doing it manually. If you're recovering from a data-stealing virus, or you just like to regularly update your accounts with stronger passwords, this is a feature you don't want to miss.
Beyond passwords, Dashlane has a Digital Wallet for storing critical financial and personal information. You can use it to fill out online shopping forms and other forms with a click. It's so fast, you won't be tempted to let websites store your information for later, which means fewer companies can lose your information in a data breach.
Dashlane has even more features you're sure to love, and the best part is it's free. It also works on any gadget, from Windows and Mac to Apple and Android smartphones and tablets. Get Dashlane now.
If you do have multiple gadgets, you might consider getting Dashlane Premium. It lets you sync your passwords between gadgets so no matter where you go you're always up to date. As a special bonus for Komando listeners and readers, you can get Dashlane Premium right now for 35% off.