Forward or backwards, your choice. Caps or no caps.. A few $$ or && signs.. Easy to remember but a bit difficult to crack.. I then make a photo of the pw and put it on two thumb drives... No cloud no internet access to the thumb drives.. OR you could put it on the legacy Mark1 piece of paper, papyrus, goat skin stashed away safe...
YMMV.. VMMY
M

First of all, there's no way anything can be cracked "instantly" if, from the context of the rest of the chart meaning "less than one second." Even if your password is five numbers, it's going to take quite a few tries to get it right, even if you used something obvious like a sequence in order, unless it was '12345'.

And that's my main gripe here: it's based solely on number and type of characters, when it's the content that's important. Frankly, if you do something like combine your two kid's names, if the person trying to hack you knows them, it's going to be a lot easier to crack 'JohnMary' than it would be nonsense text like 'bKPhwTcD'. The date you got married (say, 'June17,1987') is probably going to be quite easy for a hacker who can find out that much about you, even if, according to the chart, it should take 400 years. The big problem is that, no matter how many characters of which type you use, it's a trade-off between coming up with something the proverbial hacker wouldn't think of, while still being something you remember and so don't have to write down (which creates its own security issues). Probably the best solution for coming up with hard-to-guess but easy-to-use passwords is to use a password manager app, but that assumes you can find one that will stay in business without getting hacked itself, and that you can still can create a "master password" for the app that you can easily remember but no one else will be able to guess...which puts you right back at square one.

They're even machine programs.

Kids names? Friends? Life dates? Password manager app? Okay.

While I get your general meaning, and no chart is complete, it's still a handy warning.

I thought it might help remind people to tighten up. But hey, you can take it or leave it.

This infantilzing of hackers is bad.

When hackers are caught. They almost always have a high-tech job in a trusted company.

Most over used password this past 4 years.

I use an ascending level of password security. For sites that are unimportant in the overall scheme of things such a shopping site or a hobby forum, I will visit only once the password is pretty mild. Heading towards sites that are more important they become more complex.

caps, numbers and stuff like that.

Great!

... and auto-remember them for me as well (as long as I'm logged-in on my home computer and as long as I'm using Firefox or Chrome.)

Your chart is accurate, but that is NOT how most hacks happen.

Most hacks happen because of a weakness in the code which lets the password database be stolen.

Since most people reuse passwords, you get one obscure password database, you suddenly have their GMAIL and bank account info too.

Trackers can pick up enough browsing clues. Then there's planted malware in ads.

There's a site that tells you if you've been compromised, but it's probably a hack itself.

Most people need to smarten up.


The best security starts with smart password creation, and no matter how long and clever, never twice. Never keep passwords anywhere digitally.

I've refused to bank or pay bills electronically, but just keep a paper trail. So far, so good.

to my most secure password it will take years to figure it out. Woohoo!

Thanks for the OP, ancianita!