About Elevity

Elevity is one of the largest and most capable technology management providers in the Midwest. Our team of technology experts can help you reach a truly elevated level of IT strategy, security, solutions and support.

A division of



Cedar Falls Open House

Learn more →



2675 Research Park Drive
Madison, WI 53711

A division of


Is Your Password on the Naughty List?

Peter Niebler
Facebook LinkedIn Twitter Email

We get it. You have lots of places you need to login to and trying to remember lots of hard passwords is really tough. So you just use an easy one. No one's going to notice, right?

Trusting a “bad” password will eventually burn you. You’re basically inviting hackers to walk in and take over.

Repeat Offenders

You may be surprised to know that the Worst Passwords List doesn’t change much from year-to-year. That’s because many of us don’t change our bad credentials even when we know they’re risky.

SplashData analyzes millions of leaked passwords every year to reveal the most popular (and worst) ones for its annual Worst Passwords List.

Those in bold below have been on SplashData’s Worst List at least three out of the last four years.


Celebrity names, terms from pop culture and sports, and simple keyboard patterns also make for insecure credentials since those are the first ones hackers will try.

See how many of those types of keywords are on the 2018 Worst Passwords List?

1. 123456

2. password

3. 123456789

4. 12345678

5. 12345

6. 111111

7. 1234567

8. sunshine

9. qwerty

10. iloveyou

11. princess

12. admin

13. welcome

14. 666666

15. abc123

16. football

17. 123123

18. monkey

19. 654321

20. !@#$%^*

21. charlie

22. aa123456

23. donald

24. password1

25. qwerty123

Using weak credentials for work accounts is an even bigger no-no. Hackers can easily crack them to gain access to your company's sensitive information. That's exactly how Citrix was breached and employee data stolen.

How to Do Passwords Better

Instead of using a bad credential, try these tips:

  • Use 10 or more characters
  • Use a different one for every single account
  • Incorporate a capital letter, a number, and a special character into each one
  • Use a trusted password manager to create and store complex credentials

More Information

Google: You’re Sticking with Passwords That Have Already Been HackedZDNet

It’s (Still) the Password, Stupid!Dark Reading

Seriously, Stop Using QwertyTech Republic

Subscribe by Email