Inari Media

Home » Tech & Web » Why Your Password Should be Almost Impossible to Remember

Why Your Password Should be Almost Impossible to Remember

Enter your email address to subscribe to this blog



By now, I’m sure you’ve all heard about the Twitter hack that compromised the feeds of several high-profile accounts, including Barack Obama and Britney Spears. What makes it especially difficult to spare Twitter’s blushes is that the hack originated in a brute-force attack on the account of an administrator.

GMZ, the teenage hacker claiming responsibility for the attack, guessed the name of one of Twitter’s administrators and then simply ran a program that guessed the password using words from a dictionary until the correct password from found: it was “happiness.” Not so happy now, I’d wager.

According to the folk at What’s my Pass, the top ten most common passwords are:

  1. 123456
  2. password
  3. 12345678
  4. 1234
  5. pussy
  6. 12345
  7. dragon
  8. qwerty
  9. 696969
  10. mustang

I mean, really, people! Back in 1993 I was having it drummed into me not to choose any obvious words or names of family members as a password, and some of you are still doing this? If I were a less generous person, I’d say that setting a password with something that simple is virtually asking to be compromised. Hackers have moved on; doing a brute force attack is old-school. They expect better of us these days.

Your password should be a mixture of numbers, letters, and – if possible – symbols. The longer it is, the better: aim for 13 characters, in a jumble that makes no sense whatsoever. Yes, it will be a pain to memorise, but it’s less likely to fall prey to a brute-force hack. You’ll be even less thrilled when I tell you that you should change it frequently: fortnightly for critical websites, monthly for sites you’re not worried about. It may seem overly paranoid, but you have to ask yourself: what price would you put on your personal data?

[Image by Simon Lieschke]



  1. coffee says:

    did the Twitter Admin change his password to “sadness” after he was hacked? haha

  2. Stephanie says:

    I think a more appropriate password would be “3mb@r@55m3nt” or maybe “1nc0mp3t3nc3,” bless ’em.

    There are probably some stronger words that other Twitter users might want to suggest…

    I think the Admin was female, btw.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: