Not that it’s a surprise, but the list of the 200 most common filtered passwords in 2020 published by Nordpass is headed by some very bad passwords. One more year. The first ten, in order of popularity, are
- senha [password in Portuguese]
All of them, except picture1 and senha, would last one second to be found by an attacker; senha would last 10 seconds; and picture1 is not a big deal either, although it goes away until three hours.
And then there is the matter of using your name, your partner’s name, your children’s name, your pet’s name, or their birthday, the name of your favorite sport or team, etc. These are just a little harder to guess than the ones on the list with a little research. And that’s because we leave a lot of information about us around the net ahead. Which is not necessarily bad. But we need to be aware of what we are telling and who we are telling and who is going to be able to see it.
You have heard about those “innocent” tweets that ask about your favorite animal, or your favorite car brand and things like that. Or that they ask you on the street depending on what things about your passwords and you answer cheerfully.
If you’re in doubt as to whether any of your passwords might have been compromised in a data leak, no matter how secure it was and how careful you were, Have I been Pwned? is a great place to check.