After falling prey to an online security breach, there's a good chance your boss may want to know what your company password was. If you reply "password", start looking for a new job.
It might sound ridiculous, but the above eight-letter word was the most common password used on the web this year, according to management application provider SplashData.
The company made the find after compiling files containing millions of stolen passwords posted online by hackers in 2011.
Other passwords on the company's Top 25 common passwords list include "123456", the slightly more cerebral "12345678", "michael" (no prizes for guessing the password-owner's name) and the Jackson Five-esque "abc123" (it's as easy as 123... to crack, that is).
"Even though people are encouraged to select secure, strong passwords, many people continue to choose weak, easy-to-guess ones, placing themselves at risk from fraud and identity theft," said SplashData CEO Morgan Slain. "If you have a password that is short or common or a word in the dictionary, it's like leaving your door open for identity thieves."
According to Slain, even thieves with sophisticated hacking tools prefer to go after easy targets. "Hackers can easily break into many accounts just by repeatedly trying common passwords," he said.
To avoid security breeches, the company recommends using passwords of eight characters or more with mixed types of characters, using different username/password combinations for each website and using a password manager app (a service that SplashData just happens to offer).
SplashData's Top 25 Most Common Passwords can be viewed in all their infamy below:
Copyright © PC & Tech Authority. All rights reserved.
Issue: 322 | December 2013
Access CRN's extensive online resources including; email bulletins, community discussions and unique online news.
Processing registration... Please wait.
This process can take up to a minute to complete.
A confirmation email has been sent to your email address - SUPPLIED GOES EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can log on to the CRN website or start posting comments on articles.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain '@crn.com.au' to your white-listed senders.