Is there such a thing as a bad password? Yep, and below is a list of the 25 worst passwords that were chosen by internet users worldwide.

The list is complied by SplashData, a leading provider of password management applications for over 15 years. In SplashData’s fifth annual report, compiled from more than 2 million leaked passwords during the year, some new and longer passwords made their debut – perhaps showing an effort by both websites and web users to be more secure. However, the longer passwords are so simple as to make their extra length virtually worthless as a security measure.

Presenting SplashData’s “Worst Passwords of 2015”:

  1. 123456 (unchanged from 2014)
  2. password (unchanged)
  3. 12345678 (Up 1)
  4. qwerty (Up 1)
  5. 12345 (Down 2)
  6. 123456789 (Unchanged)
  7. football (Up 3)
  8. 1234 (Down 1)
  9. 1234567 (Up 2)
  10. baseball (Down 2)
  11. welcome (New)
  12. 1234567890 (New)
  13. abc123 (Up 1)
  14. 111111 (Up 1)
  15. 1qaz2wsx (New)
  16. dragon (Down 7)
  17. master (Up 2)
  18. monkey (Down 6)
  19. letmein (Down 6)
  20. login (New)
  21. princess (New)
  22. qwertyuiop (New)
  23. solo (New)
  24. passw0rd (New)
  25. starwars (New)

So how do you choose a good password?

  • Use passwords or passphrases of twelve characters or more with mixed types of characters
  • Avoid using the same password over and over again on different websites
  • Using a password manager installed on your computer, smartphone or tablet device. Apple has a great feature in it mobile and desktop OS, which stores and encrypts randomly generated passwords across all your devices.