weak passwords disguised as strong infographic
TRANSCRIPT
Avoiding common passwords that appear on "Worst Password" lists iseasy. But what about passwords that appear strong, yet conform topredictable patterns?
To help you make smart password choices, we unmask weak passwordsthat "appear" strong. The below passwords may meet the length and/orcharacter type requirements of a strong password, however theirappearance in password dictionaries makes them easy targets for hackers.
STRONG
Weak PasswordsDisguised as
family 3213415Password11193
01 Adding a string of numbers or charactersto common words such as "family" or"password" doesn't make them stronger.
A password crackercan easily append anumber, or several
hundred, to itsdictionary words or
brute-force approach.
Did you know?
s@yg00dbyes0cc3rRul3s
02 When used on common, and shortphrases, character substitutions andleetspeak doesn't throw off the bad guys.
A password dictionarycan run with common
substitutions andanything that is
leetspeak: "@" for "a"and "3" for "E"
Did you know?
boogieman167captainjacksparrow
03The same goes for fictional characters!
Passwords are ofteninspired by words ofpersonal significance
that come easily tomind.
Did you know?
IloveThisGameI want to hold you.
04 Not all passphrases* are created equal. Pro Tip
A strong passphrase israndom combination of
words that aremeaningless together. For
example: "Cr@ck thisbrown1e and I like my n@w
shiny pink lawn! "
WYH@19950329$wyhaXRhbGlhbiBoYWNrZXIgY3Jldwo=
05And sometimes, no matter how strongyour password may seem, it will notwithstand a dictionary attack.
For any system thatneeds high security, use
multi-factorauthentication!
Pro Tip
The examples used above appeared on a password list that sampled passwords that were released following a data breach. If any of yourpasswords appear on a password list, they must be immediately changed.With the right tools, your IT department can check passwords against anylist, automatically blocking the use of weak passwords.
Want to ditch your weak passwords for something stronger? Check outthe
*Passphrase: A passphrase is a longer password consisting of multiple words thatcreate a phrase. A strong passphrase is 20 to 30 characters long, and does notcontain common phrases found in literature, music, etc.
Specops Strong Password Guide!