SplashData compiles over 5 million passwords, that have leaked online, from 2018. From that data, they are able to build a list of the top 25 most used passwords of 2018. The sad part? The top two passwords have been the same top two passwords for five years now. No one should ever use "123456" or "password" and yet millions of people do.

We will note that several of the top 25 passwords are repeats from previous years, though their use has varied from year to year. One upside to all this data? There are a few new passwords on the list.

Sorry, Mr. President, but this is not fake news – using your name or any common name as a password is a dangerous decision. Hackers have great success using celebrity names, terms from pop culture and sports, and simple keyboard patterns to break into accounts online because they know so many people are using those easy-to-remember combinations. Our hope by publishing this list each year is to convince people to take steps to protect themselves online,” Slain said. “It’s a real head-scratcher that with all the risks known, and with so many highly publicized hacks such as Marriott and the National Republican Congressional Committee, that people continue putting themselves at such risk year-after-year.

- Morgan Slain, CEO of SplashData

This list is to help raise awareness for internet users on adapting better security measure, like stronger passwords. Strong passwords do not guarantee better online safety, but they do increase it. If you use a password that is on this list, you are just asking to be hacked.

2018's 25 Worst Passwords

 1. 123456    - Unchanged
 2. password  - Unchanged
 3. 123456789 - Up 3 from 2017
 4. 12345678  - Down 1 from 2017
 5. 12345     - Unchanged
 6. 111111    - New for 2018
 7. 1234567   - Up 1 from 2017
 8. sunshine  - New for 2018
 9. qwerty    - Down 5 from 2017
10. iloveyou  - Unchanged
11. princess  - New for 2018
12. admin     - Down 1 from 2017
13. welcome   - Down 1 from 2017
14. 666666    - New for 2018
15. abc123    - Unchanged
16. football  - Down 7 from 2017
17. 123123    - Unchanged
18. monkey    - Down 5 from 2017
19. 654321    - New for 2018
20. !@#$%^&*  - New for 2018
21. charlie   - New for 2018
22. aa123456  - New for 2018
23. donald    - New for 2018
24. password1 - New for 2018
25. qwerty123 - New for 2018

1passwordHeader

Password managers are great for everyone. They can help generate stronger passwords and keep track of them for you. But, many password managers do more than that. 1Password is our prefered password manager, but Lastpass work great too! Both of these programs can also double as a digital safe box too.

Why You Should Use One?

First off, you should already be using one. If not, then you need to get one. You should be storing all of your usernames and passwords for all of your online accounts in a password manager.  No two passwords should be the same. Additionally, you should be storing all of your "truthful" security question answers as well.

Your online passwords and answers are not the only thing you can and need to keep secure. You can store Wi-Fi passwords in your password manager too. Here some additional items, not a complete list, you can store in your password manager:

  • Animal Vaccination Records
  • Driver's License Information
  • Passport Information
  • Credit Card Information
  • Insurance Policy Documents

Information to Store In Your Password Manager

  • Employment/Work Information - Keep your username and password stored securely, no question there, but other work documents can be securely stored as well. Keep your company's 401(k) account information and health insurance information securely stored in your password manager as well.
  • Medical Records  - Having your medical records on hand is a huge deal, you never know when you will need them. The problem is you want to keep that information secure. You can scan documents, medical cards, prescriptions, and any other information that is relevant to your health. Store those items under a personal information folder in your password manager.
  • Children’s Online Accounts - Kids will not be able to remember passwords for their online accounts or school. You can store these in your password manager as well. Many password managers will even let you tag entries, so you can label the ones for your kids.
  • Proof of Purchases - Keeping receipts for purchases come in handy when disaster strikes. Other times, you will need proof come tax day when writing off an expanse. If you have a physical copy of a receipt, take a picture or scan it. From there upload the file to you password manager. You can also store emailed receipts by saving them as a PDF and uploading them to your password manager too.
  • Wi-Fi Information - Every now and then you probably have had to restart or reset your home router. Sometimes this can set the router back to the default settings, including the account to access the device to make changes. Store this info in your password manager. Bonus points if you store a backup configuration file of your router's setup for easy resets. With a backup file you can just import all of your carefully crafted settings.

This list is not all encompassing. But, they can give you an idea of all the ways you can use your password manager to store important information.

Sharing Password Manger Information

Undoubtedly, some of the passwords for you accounts will be for accounts others in your household will need to use. Router credentials, the account for utilities, maybe even Netflix login information. Sharing this information is important, especially when you use long complex passwords. Here are the basics of sharing information in Lasspass and 1Password:

  • Lastpass - Anyone you share Lastpass information with needs to have a free Lastpass account. After that all you need to do is navigate to the Sharing Center. Follow the steps one by one and you will have data shared in no time. You can choose to share the actual password or not as well. No real options out side of that. Users can view the info and that's it.
  • 1Password - Sharing in 1Password is a little more robust than Lastpass. In 1Password you have vaults and you can create as many as you like. You can also share vaults and this is where the benefits come into play. You can make a vault that is nothing but username and password information of account you will always share. Anything you do not want to share, put that information in a different, private, vault. Share vaults can have different access rights, from view only to full control. Full control can allow other users to add additional accounts the vault or update account information.

door green closed lock
When signing up for online bank accounts, new email addresses, or health insurance accounts, they all ask you or force you into using security questions to add an extra layer of protection to your account. The problem is that most these security questions are not very secure. The most common question is "Your mother's maiden name" and one that is easy to guess or research. In fact, if someone gains the correct access to your personal information, it can affect you credit score.

With that, we urge everyone to take matters into your own hands and make security questions more secure. How do you do that? Well, security questions often ask you questions about your life. This is information anyone can potentially figure out from your social media accounts or data breaches, like the Equifax hack. With all of that data online, figuring out the first car you bought, street you lived on when you were a kid, or favorite hobby can be easy. Basically, answering truthfully is a bad idea. Below is the best suggestion to make security questions more secure for you.

Lie

Seriously, just flat our lie on the answers. First car? List your favorite plane, boat, or motorcycle. First grade teacher? Use the name of your favorite pet or the most disagreeable phrase to describe your first grade teacher, like garbage dump. The point is, as long as the data is not common knowledge, something not searchable online or via your social media, it's a good answer. Incorrect answers are inherently more secure than truthful answers.

Keeping Track of the Lies

Here's the problem with using incorrect answers, it can be hard to keep track of all of those answers. We use 1Password to store all our passwords and security answers here in our daily lives. A password manager is an essential tool in today's world, assisting you in storing all of you passwords securely and helping you to create more secure passwords. Honestly, if you have a password manager, have it generate your "incorrect" security question answers. #$Adke@A is a much harder answer to guess than Jennifer, even though neither are the actual name of your high school prom date.

But what about security questions that have canned answers? Well, you still lie! Just note those answers in your password manager. If they give you an option to create a custom answer in addition to canned answers, then choose that option and create your random answer.

Stay safe out there!

Read our latest article: How to Choose a Good VPN

© 2021 TechJunkie, LLC