One of the largest studies examining it reuse of codes, showed that 1 in 142 passwords is the well-known "123456".
The companies technology usually collect this information. For example, h GoogleThe Microsoft and Apple, collect exposed passwords to create systems that warn users, when using a "weak" or "common" password.
Last month, o Ata Hakçıl, A Turkish student studying at a university in Cyprus also came down analyzed more than one billion usernames and passwords.
The basic finding is that the 1.000.000.000+ credentials included only 168.919.919 unique passwords. The code "123456" was found 7 million times.
This means that in every 142 codes access, one was "123456". This is him most commonly reused code in the last five years.
In addition, Hakçıl discovered that The average length of passwords is 9,48 characters, which is not good, as most security experts recommend users to use large passwords (about 16 to 24 characters).
Another problem identified by the Turkish researcher was complexity of codes. Only 12% had a special character.
In most cases, users chose simplified codes, only in letters (29%) or numbers (13%). This means that about 42% of the 1 billion codes were vulnerable to dictionary attacks, allowing attackers to gain access to accounts without any effort or technical difficulty.
The full results of the study are available at GitHub.