The Worst Passwords of 2018

  • Published: Wednesday, Jan. 9, 2019

Let’s face it. Passwords are not going away. But when are we going to get better at using them? We have tried to implement many safeguards to ensure that our users are adhering to best practices. We use multi-factor authentication, restrict password reuse and require complexity.

We instruct our users to stay away from easily guessable passwords like their birth date, pet or child’s name and mascots. Changing a password from Fall2018 to Winter2019 won’t make it more secure. We educate our users against using the same passwords for multiple sites and apps. Never store your password on your browser. And NEVER use the same password on shopping and banking sites.

But the end user isn’t solely responsible for password security. What about those websites that don’t restrict the users from creating easily guessable passwords? Don’t they bear some responsibility in this? Of course, the sites can’t prevent the user from using the same password on multiple sites but adding some basic controls to the password creation process can be implemented quite easily.

Education is still a key factor in the use of passwords. The more we can relay the dangers and implications of insecure passwords then the more we can hope for a safer online presence for everyone.

And now, for fun, we present to you the worst passwords of 2018. If yours is on this list you might want to change it.