Annual 'Worst Passwords' list revealed; is your password on the list?

January 22, 2014

New Delhi, Jan 22: Software firm SplashData has released the 2013 edition of its annual "Worst Passwords" list, and for the first time, "password" has been displaced from the top spot. The dubious distinction now goes to "123456", which had been in second place for the past two years.

After a year of high-profile security breaches, including a massive leak of Adobe user account details, it is evident that a huge number of users continue to put themselves at risk online by choosing easy-to-remember but highly unsecure passwords. SplashData's list was compiled after combing through millions of passwords leaked or posted online following security breaches in 2013.

Many of the top 25 weak passwords are as short as four characters, use simple sequences of only numbers or characters, or are simply the names of the websites or services that the user has signed up for. "qwerty" takes the number four spot, while "iloveyou" is at number nine.

The annual worst passwords list is a way to spread public awareness about password security.

SplashData, which sells password management software, recommends the use of a strong password manager that can automatically log in to websites, allowing users to create strong passwords that they don't have to remember. Other common-sense tips include avoiding number-letter substitutions such as "p4s$w0rd", and avoiding the same username and password combinations across multiple services.

SplashData suggests using longer strings of random characters, always mixing numbers with letters and symbols, and using long phrases consisting of multiple words and spaces.

Here is the full list of the 25 most common passwords for 2013:

1. 123456

2. password

3. 12345678

4. qwerty

5. abc123

6. 123456789

7. 111111

8. 1234567

9. iloveyou

10. adobe123

11. 123123

12. admin

13. 1234567890

14. letmein

15. photoshop

16. 1234

17. monkey

18. shadow

19. sunshine

20. 12345

21. password1

22. princess

23. azerty

24. trustno1

25. 000000

Comments

Add new comment

Coastaldigest.com reserves the right to delete or block any comments.
Coastaldigset.com is not responsible for its readers’ comments.
Comments that are abusive, incendiary or irrelevant are strictly prohibited.
Please use a genuine email ID and provide your name to avoid reject.

Mangaluru police issue alert over fake traffic fine payment Apps and links

coastaldigest.com news network

December 20,2025

Mangaluru, Dec 20: City Police Commissioner Sudheer Kumar Reddy has issued a high-alert warning to vehicle owners regarding a surge in cyber fraud targeting those looking to pay traffic violation fines. Fraudsters are reportedly exploiting recent government discount schemes on traffic penalties to deceive citizens.

The Scam: How Fraudsters Strike

Criminals are using SMS, WhatsApp, and social media to circulate suspicious links and APK files (Android application packages). They claim these apps allow users to pay e-challans at a discount.

• Device Hacking: Downloading these unauthorized apps gives hackers full access to the victim's smartphone.

• Financial Theft: Once the phone is compromised, fraudsters intercept OTPs and personal data to drain bank accounts.

• Phishing Sites: Fake websites mimicking official portals are also being used to harvest banking credentials.

Already, two residents within Mangaluru city limits have reported significant financial losses after falling victim to these fraudulent apps.

Comments