There have been a lot of recent security breaches in cyber land, including LinkedIn, the FBI and more recently Yahoo. The Yahoo breach included over 400,000 usernames and passwords. While this is bad news for Yahoo, it does give us a chance to analysis the passwords from the 400,000 users and see what insights we can derive.
Below is an analysis of the Yahoo passwords. The top ten passwords are a list of the usual suspects with “qwerty,”123456” and good old “password” all appearing again.
It is good to see password lengths are getting to a sufficient level to make them difficult to crack with 87% of passwords between 8 and 10 chacters.
Total Passwords Leaked : 442,773
Percentage of Unique Passwords : 77%
Top Ten Passwords
123456 = 1666 (0.38%)
password = 780 (0.18%)
welcome = 436 (0.1%)
ninja = 333 (0.08%)
abc123 = 250 (0.06%)
123456789 = 222 (0.05%)
12345678 = 208 (0.05%)
sunshine = 205 (0.05%)
princess = 202 (0.05%)
qwerty = 172 (0.04%)
Top Ten Words Used in Password
password = 1373 (0.31%)
welcome = 534 (0.12%)
qwerty = 464 (0.1%)
monkey = 430 (0.1%)
jesus = 429 (0.1%)
love = 421 (0.1%)
money = 407 (0.09%)
freedom = 385 (0.09%)
ninja = 380 (0.09%)
writer = 367 (0.08%)
Password Length
87% of Passwords were between 6 and 10 characters in Length, with 8 character passwords the most common length.
| 1 Char= 117
| 2 Char= 70
| 3 Char= 302
| 4 Char= 2748
| 5 Char= 5323
| 6 Char= 79610
| 7 Char= 65598
| 8 Char= 119125
| 9 Char= 65955
| 10 Char= 54756
| 11 Char= 21219
| 12 Char= 21728
| 13 Char= 2657
| 14 Char= 1493
| 15 Char= 837
| 16 Char= 570
| 17 Char= 263
| 18 Char= 126
| 19 Char= 89
| 20 Char= 178
| 21 Char= 11
| 22 Char= 8
| 23 Char= 3
| 24 Char= 3
| 25 Char= 0
| 26 Char= 0
| 27 Char= 2
| 28 Char= 5
| 29 Char= 3
| 30 Char= 2 |
Last number
0 = 17549 (3.96%)
1 = 46689 (10.54%)
2 = 24621 (5.56%)
3 = 29230 (6.6%)
4 = 17689 (4.0%)
5 = 17401 (3.93%)
6 = 17882 (4.04%)
7 = 20402 (4.61%)
8 = 17845 (4.03%)
9 = 19916 (4.5%)
Last 2 digits (Top 10)
23 = 12364 (2.79%)
12 = 6414 (1.45%)
11 = 5475 (1.24%)
01 = 5097 (1.15%)
00 = 4098 (0.93%)
21 = 3669 (0.83%)
08 = 3627 (0.82%)
07 = 3598 (0.81%)
22 = 3587 (0.81%)
13 = 3547 (0.8%)
Last 3 digits (Top 10)
123 = 9446 (2.13%)
456 = 2442 (0.55%)
234 = 2160 (0.49%)
007 = 1477 (0.33%)
000 = 1268 (0.29%)
008 = 1150 (0.26%)
009 = 1086 (0.25%)
111 = 1056 (0.24%)
777 = 980 (0.22%)
101 = 895 (0.2%)
Single digit on the end = 47383 (10.7%)
Two digits on the end = 73635 (16.63%)
Three digits on the end = 31089 (7.02%)