Log In

Reset Password

If you’re using ‘Password1” change it. Now.

When it comes to creating passwords, the business world seems to be lacking in the creativity department.

The number one computer password employed by business users is, wait for it … “Password1.” And that’s just one of many cringeworthy passwords cited by security services firm, Trustwave in its recently released Global Security Report for 2012.

Based on nearly two million network vulnerability scans and 300 recent security breach investigations, the firm found that variations of the word “password” made up about five percent of passwords and 1.3 percent used “welcome” in some form.

Security experts say the number one way hackers gain access to protected systems isn’t through sophisticated coding and fancy technical equipment. It’s by guessing the password. And that’s not hard to do when your password is, well, ‘password.’

Easily guessable or even completely blank passwords were the most common vulnerability found in Trustwave’s security testing. The firm used widely-available password-cracking tools on 2.5 million passwords and successfully broke more than 2.1 million of them.

Other common keywords included using baby names, seasons, names of US states and months of the year.

So, if your password is something guessable, what’s the best way to make it more secure? Make it longer. Security experts say it’s time to stop looking at passwords as words and more as phrases. Something like ‘ThisIsMyPasswordNoReallyItIs’ is far more difficult to guess than ‘Password1’ or ‘Spring12.’

Security issue: Don't make your passwords too easy to guess

You must be Registered or to post comment or to vote.

Published March 07, 2012 at 10:59 am (Updated March 07, 2012 at 10:59 am)

If you’re using ‘Password1” change it. Now.

What you
Need to
1. For a smooth experience with our commenting system we recommend that you use Internet Explorer 10 or higher, Firefox or Chrome Browsers. Additionally please clear both your browser's cache and cookies - How do I clear my cache and cookies?
2. Please respect the use of this community forum and its users.
3. Any poster that insults, threatens or verbally abuses another member, uses defamatory language, or deliberately disrupts discussions will be banned.
4. Users who violate the Terms of Service or any commenting rules will be banned.
5. Please stay on topic. "Trolling" to incite emotional responses and disrupt conversations will be deleted.
6. To understand further what is and isn't allowed and the actions we may take, please read our Terms of Service
7. To report breaches of the Terms of Service use the flag icon