One out of every 142 passwords is ’123456’ - comment from Yubico
It has been reported that one out of every 142 passwords is ’123456’. In one of the biggest password studies conducted, computer engineering student Ata Hakçıl analysed one billion leaked username and password combinations that appeared online after data breaches and spotted the ’123456’ password 7 million times.
Nic Sarginson, Sr. Solutions Engineer for UKI and RSA at Yubico, has made the following comments:
“Passwords come with a range of inherent weaknesses — they can be easy to guess, they get reused and, of course, they can be phished. Risky password and authentication practices are still rife in our professional and personal lives. In fact, recent research from Ponemon Institute found that UK IT professionals reuse their passwords across an average of ten personal accounts, while 39 percent of individuals and 58 percent of IT professionals have also done this across workplace accounts.
“These security gaps point to the urgent need for additional layers of authentication tools – but to be successful, they must also be convenient. Security keys are a great example of this. They deliver phishing-resistant two-factor authentication (2FA) and a higher level of security than memorable words or SMS one-time passwords (OTPs). Requiring employees to authenticate using a device – in addition to log-on credentials – will better protect networks, applications and data in the long run.
“Gartner predicts most enterprises will implement passwordless methods in over 50 percent of use cases by 2022. However, with the majority of people currently working remotely, there is a real possibility that COVID-19 could accelerate this passwordless adoption. If that’s the case, security must absolutely be at the forefront of this change.”