Passwords are already inherently unsecure versus other authentication methods, but things are only made worse with a terrible password. Here at XDA, you’ll see that we send a code to your email to log in, which can be considered more secure than using a password. The same goes for passkeys and 2FA, which can enhance or outright replace passwords with better protections against brute force attacks and data breaches. I’ve rounded up some truly awful passwords that are still used today.
Data for this World Password Day list was provided by NordPass.
10
1q2w3e4r5t
No, you’re not smart.
We’ll get to QWERTY as a password further down this list, but some thought it would be smart to add some numbers into the mix and slash the Y key. It improved password length, for sure, but it’s still cracked in less than a second, according to NordPass. Choosing a strong password is vital to ensuring your account isn’t compromised by someone who could steal data, load up malicious software, or carry out other undesired tasks.
9
Abc123
Great for kids
Teaching a child to count to 10 and the alphabet is a great way to prepare them for upcoming education, but it doesn’t translate well to account security. As well as protecting your kids when they’re online, you should also consider better preparing your accounts to handle any unforeseen attacks.
Related
How to set up a kid-friendly Windows computer
While a Windows computer can be a valuable resource for your child’s education, it is essential to set it up in a way that keeps them safe
8
Dragon
This password is anything but beastly
This isn’t a true dragon since it’s a weak password, even if combined with two-factor authentication (2FA). While it may be an excellent project for 3D printing, I do not recommend you use such a password to secure your accounts. Any memorable word that’s easy to crack or is frequently used in media should be avoided.
Related
Sometimes I run out of ideas; here are 7 ways I find new 3D printing projects
We all hit creative blocks sometimes, but there are plenty of places to look for inspiration for your next 3D printing project
7
Secret
Not anymore!
Aside from being an excellent song by Urban Cookie Collective, “secret” is not a great password. It’s not smart, you’re not going to win any awards for the most secure account, and it’ll take less than a second for your account to be cracked if targeted.
6
123456789
Who needs letters?
Instead of using something related to your tastes or experience, such as a city, country, or even a favorite sports team, why not pick some numbers? Better still, why not perform a glissando on your keyboard, starting at 1 and ending at 9? Job done! Any simple string of numbers should be avoided, no matter how many you use.
Related
5 reasons you should be using passkeys for security
If you want a secure and password-free sign in experience, consider using passkeys for security.
5
QWERTY
Better than POIUY, I guess?
QWERTY is not only the type of keyboard you’re likely using, but it’s also one of the most popular passwords used. I’ve personally never attempted to use such a password, but, interestingly, so many do, and I’d love to wager how many know it’s also a keyboard layout. Be mindful that these simple key strokes will be among the first ports of call for those trying to get into your account.
4
000000
Most definitely <1
The Ducky Zero 6108 is an excellent keyboard, but do you know what isn’t a great password? Zero. Specifically, any number of them. Six zeros is one of the more popular passwords still used today, and it’s as terrible as it sounds. Like our other simple numeric passwords, any form of these will see your account compromised in due course.
3
Iloveyou
(╯°□°)╯︵ ┻━┻
No matter how much you appreciate a service or website, you should never showcase your love through a weak password. Don’t use the service name as your password either. It may be easier to remember, “Facebook123” for Facebook, and “Google 456” for your Google account, but doing so will see access cracked in no time.
Related
I tried dozens of password managers and I keep coming back to this open-source tool
The open-source password manager that earned my loyalty
2
123456
I still don’t understand why
The same as the numeric password above, but slightly shorter for websites and services with less stringent password requirements. This is even easier for people to crack through, even without specific hardware and software. Just don’t do this.
1
Password
You know who you are
This one is the golden ticket. What better password to use than “password”? Nothing else needs to be said. If you use this password for anything, you should read our guide on securing accounts for World Password Day. Never use the word password in your password, even if it’s “password123” or “p4ssw0rd”. They’re all equally bad.
What to do if you use one of these passwords
Drop all of your unsecure passwords immediately. Grab your smartphone or PC and start using passkeys. These are encrypted keys with one on the account you’re logging into and the second on your chosen device. It’s considerably more difficult for people to gain access to accounts protected by a passkey, and you can sleep better at night knowing your banking isn’t secured with “password” or “abc123”.
