Each year the company SplashData does a study of the worst passwords commonly used. These easily discerned passwords make their users particularly vulnerable to identity theft. These passwords become known through data breaches and can be found on the Dark Web, that part of the Internet where criminals buy and sell goods and services. For 2018, the most common poor password was, as it was last few years, “123456.” “Password,” again was the second most common poor password. Some other interesting, but poor passwords were “sunshine” at eight, “iloveyou” at ten, “football” at sixteen, “monkey” at eighteen, “charlie” at twenty-one and new this year, “donald” at twenty three. All of these are tremendously poor passwords that can result in your easily becoming a victim of identity theft.

We all have many devices and online accounts that require a password. While it is always a good idea to use dual factor authentication and other security enhancements when available, a good, strong password is still at the core of protecting yourself in the digital world. Unfortunately, too many people use common passwords that are too easy for an identity thief to guess and this can lead to identity theft. In addition, many people use the same password for each of their online accounts which puts them in jeopardy when a data breach at just one place provides the password to all of his or her accounts to a cybercriminal.

As we look ahead to a new year, we should all commit to taking the steps necessary to be more secure both in our online and offline dealings. Throughout the year I will be providing advice and tips about how you can protect yourself from scams and identity theft.


This list represents another warning that you should have a unique and distinct password for each of your online accounts.  This is not as difficult as it may appear.  You can start with a strong base password constructed from a phrase, such as IDon’tLikePasswords. Add a few symbols like !!! and then adapt it for each account you have so that you will have a secure and easy to remember password for each of your online accounts.   Thus, your Amazon password could be IDon’tLikePasswords!!!AMA.

Whenever possible use dual factor authentication for your accounts so that when you attempt to log in, a one-time code will be sent to your cell phone to insert in order to get access to your account.  For convenience sake you can set up dual factor authentication so that it is only required if you are logging in from a different computer or device than you normally use.

If you are not a subscriber to Scamicide.com and would like to receive daily emails with the Scam of the day, all you need to do is to go to the bottom of the initial page of http://www.scamicide.com and click on the tab that states “Sign up for this blog.”