With the release of SpiderLabs/Trustwave report on a recent Pony Botnet Controller Attack on some major sites (Google, Yahoo, Facebook, Twitter, LinkedIn, etc), we are able to see the most commonly used passwords, including “123456″, “1234″, and my favorite password “1″.
This doesn’t make sense to me. We are warned daily that these types of things make it extremely easy to compromise your account. Is the value of what you are storing online so insignificant that it’s not even worth the effort to create a decent password? Evidently the way the message of secure passwords is being presented isn’t working.
Let’s give the message another try. Here’s a short video from Nick Berry at TED-Seattle that adds a bit of humor to the message, possibly getting people to think more about the problem.