ID Agent, a dark web monitoring company owned by IT software company Kaseya, says it identified the most common stolen passwords found on the dark web in 2020 based on a scan of nearly 3 million passwords.
If you don’t know what the dark web is, then you’re better off staying in the dark, and away from the dark web.
The analysis found that fifty-nine percent of Americans use a person’s name or birthday in their passwords, while 33% include a pet’s name, and 22% use their own name. The average user also reused their bad password 14 times.
I’ll admit that I have used one of our dog’s name in a password once or twice. For whatever reason, I stopped doing so years ago.
When looking at the top 20 passwords found on the dark web in 2020, I find it shocking, despite years of begging people not to use many of these passwords, that they are still so being used. I’m also surprised that such simple passwords are so popular on the dark web; I would have thought people using such a site would have been relatively sophisticated tech people who knew the importance of having a good password. I’m also surprised that sites would allow such passwords, since it seems to me that most of the web sites I visit require a combination of lowercase, uppercase, numbers, and special characters when creating a password.
Here’s the list:
- 123456
- password
- 12345678
- 12341234
- 1asdasdasdasd
- Qwerty123
- Password1
- 123456789
- Qwerty1
- :12345678secret
- Abc123
- 111111
- stratfor
- lemonfish
- sunshine
- 123123123
- 1234567890
- Password123
- 123123
- 1234567
As you can see, only one of them has a special character, and only five of them have an uppercase letter.
I’m also surprised that there are no variations on some of these popular choices, such as wordpass or 87654321 or p1a2s3s4.
I’m also not sure why stratfor, lemonfish, and sunshine are so popular. Maybe it’s a dark web thing.
Hopefully, no one reading this post is currently using any of these passwords. If you are, feel free to use one of my variations. That should be enough to keep the hackers away.
And I just thought of one I might use some day: JimmyLikesStats!
Wait, did I just ruin that password for myself?
I’m sure glad they didn’t include my usual password, which is 987654321. Seems like this one is safe from being guessed.
LikeLiked by 3 people
Yes, a very complex password, too mathematical for me. 🙂
LikeLiked by 2 people
Great! If you can’t crack it, then no schtupid person can.
LikeLiked by 2 people
LOL! Because I have the smartz, right!?
LikeLiked by 2 people
Uh, yeah, right.
LikeLiked by 2 people
I thought so. 🙂
LikeLiked by 2 people
it’s not listed as one that people use, so it might be safe…
LikeLiked by 1 person
is that also your SSN?
LikeLiked by 2 people
Shh, don’t tell anyone.
LikeLiked by 1 person
tell what?
LikeLiked by 1 person
Nuthin.
LikeLiked by 2 people
got it…
LikeLiked by 2 people
Like everything else in my life, Jim, my passwords have become more and more complex and difficult to remember over time. I have so many and they are so intricate that I have to write them down now which isn’t the best solution but it is the only one I have. The cleverer we get, the cleverer the criminals and people of bad intentions get so it is a vicious circle. Thanks for the post, those passwords interested me. I’ve never used one of them so there is that at least.
LikeLiked by 2 people
I wouldn’t think of you using one of those passwords. And yes, it is a cat and mouse game with the hackers…
LikeLike
The neverending battle of trying to stay one step ahead of the guys who are much more sophisticated than I am about stuff like this.
LikeLiked by 2 people
I guess I’ll never understand what motivates such individuals…
LikeLiked by 1 person
Haha 😀 that’s sounds like an easy password to hack, especially if the hackers know that we like you 😀
LikeLiked by 1 person
the hackers would probably be disappointed with what they found if they hacked me 🙂
LikeLiked by 1 person
I want to be there and laugh at them with you 🤣
LikeLiked by 1 person
I’d be scared to laugh at them – who knows what revenge they might take!
LikeLiked by 1 person
That’s true… I didn’t think of revenge twist 😱
LikeLiked by 1 person
I guess I’m paranoid… 🙂
LikeLiked by 1 person
But why the hell would they want revenge? They’re the hackers. The original criminal. That’s so unfair.
LikeLiked by 1 person
I guess life’s not fair…
LikeLiked by 1 person
As you say, I am somewhat surprised that these would be used on the dark web, a place you think of as being inherently nefarious. But I also know the bane of trying to remember an intricate password, or worse yet, more than one. I am also confused about the prominence of stratfor, lemonfish, and sunshine. I do the best I can with passwords, but if someone wants to hack my computer and steal the recipes from my sister, laugh at my poetry, or abscond with the email reminder of my electric bill, than so be it. I have often said that if someone hacked my bank account to rob me, when they got there they would feel so bad for me that they would actually deposit some of their ill-gotten gains out of pity. Informative and entertaining, as always Jim!
LikeLiked by 2 people
I think my computer would be a major disappointment to hackers as well. But I often wonder what motivates people to want to be a hacker; it seems like with their skill set they could find a good job in tech…
LikeLiked by 1 person
Jobs, even good tech ones, come with responsibilities, expectations, and a schedule. All things that I think most hackers do not like.
LikeLiked by 1 person
it may be the case for some hackers that their work is like a job, especially if they are doing the work for a government agency…
LikeLiked by 1 person
you did just out yourself, but no worries, i’ll never remember. i think the reason people create such simple passwords has a lot to do with not forgetting them, (myself included). like you, i am very taken by the ‘lemonfish’ popularity level.
LikeLiked by 1 person
yes, it is quite hard to remember so many passwords. I may have to do some investigating on the lemonfish thing…
LikeLiked by 1 person
Some people shouldn’t be allowed near technology! It makes you wonder how they even manage to switch the machines on, if they’re that stupid…
LikeLiked by 1 person
I wonder if it’s similar to having a death wish, but more with your data and private info…
LikeLiked by 1 person
I think you could be right…
LikeLiked by 1 person
I definitely need more secure passwords. But companies also need to spend the resources to protect our information. Given all of the data breaches that expose passwords and other personal information, it seems that they do not. Kind of like putting money in a bank that keeps getting robbed. End rant.
LikeLiked by 1 person
I’m just glad I don’t work in computer security; it must be tough having to constantly try and stay one step ahead of hackers. And I agree, most of us could probably do a better job with our passwords…
LikeLiked by 1 person
I’m not sure how this works. Do hackers “guess” individual passwords and put that info on the dark web or do hackers hack companies and get our passwords no matter how secure they are and put them on the dark web, or probably both in some ratio?
LikeLiked by 1 person
that’s a question for hackers – why don’t you go on the dark web and ask some of them 🙂
LikeLiked by 1 person
I don’t even want to know how to do that. 😊
LikeLiked by 1 person
same here 🙂
LikeLike
Phew…I have never used any of those but have so many now like Robbie I write them down as if anything happened to me I don’t want to think about that but I’m sure they would just give up…
LikeLiked by 1 person
I don’t think I’ve written any down, but I have had to reset my password many times because I have forgotten it…
LikeLiked by 1 person
Which is why I write them down…lol and also when I am not here it would be a nightmare for anyone trying to sort anything out…x
LikeLike
My compromised password is the IT administrators favourite – admin123
LikeLiked by 2 people
I’m sure your admins are happy that you make it easy for them to remember…
LikeLike
Oops! Another perspective password bites the dust. I pretty much have changed my passwords to use a combination of upper and lowercase with numbers and symbols.
LikeLiked by 1 person
I do the same thing, but it does make it harder to remember them…
LikeLike
People don’t take cyber security seriously until something bad happens. I use passwords that are 25 characters or more long. I know friends who use their date of birth, 4 digit numbers or even their own name. Makes no sense. My site recently conducted a two part investigation on how hackers obtain your passwords and the security breaches with different companies like Yahoo.
Part 2 is more in depth showing the websites hackers use to post the stolen personal info and how their website members get to it for their own uses and pleasure.
https://www.ario1.net/video-blogs/
LikeLiked by 1 person