On the eve of the CYBERUK 2019 conference, which will be held in Glasgow this week, experts from the British National Cyber Security Center (NCSC) have teamed up with Troy Hunt, creator of the Have I Been Pwned leak aggregator, and decided to once again attract public attention to the problem of weak passwords. To do this, they studied 100,000 of the worst and most commonly used passwords, collected from various sources by Have I Been Pwned.
As the analysis showed, unfortunately, users still very often use the classic combinations "123456" and "qwerty" as passwords, as well as the names of their favorite sports teams, musical groups, and so on. As a result, the researchers compiled the following top worst passwords:
“No one should protect sensitive information using easily guessed passwords, such as their own name, the name of a local football team or their favorite group,” wrote NCSC CTO Ian Levy.
Experts remind that you should not neglect the use of two-factor authentication and password managers, and also talk about the fact that a strong password does not have to be difficult to remember. So, on the NCSC website, recommendations were published on creating strong passwords, where experts, for example, advise using combinations of three random words.
