After 12+ years of collecting passwords, I have found a few interesting facts:
- Although my list contains about 6 million username/password combos, the list only contains about 1,300,000 unique passwords.
- Of those, approximately 300,000 of those passwords are used by more than one person; about 1,000,000 only appear once and a good portion of those are obviously generated by a computer.
- The list of the top 20 passwords rarely changes and 1 out of every 50 people uses one of these passwords
I've mentioned previous why it's a bad idea to re use passwords. And it's come to bite me long after getting rid of the habit.