“Starwars does not a good password make.” — Yoda, probably.
We get it, okay? You were excited about Star Wars: The Force Awakens. If you’ve spent any time on this site at all, you know we were too. Still, according to data security firm SplashData, all that geeking out might’ve done more harm than good. While you were spending all of your time speculating with friends about who Rey’s parents might be or shipping Finn and Poe Dameron, hackers might’ve been using your enthusiasm to crack your password.
According to SplashData, “starwars” was the 25th most-used password in 2015. “Solo”—as in Han, the smuggler—was number 23. Other common passwords included “football” and “baseball,” proving that jocks are just as bad at Internet security as nerds, “dragon” (we’ll credit that to Game of Thrones with absolutely no data to back up our claim), and “monkey,” which, uh, okay. Didn’t see that one coming.
Star Wars’ presence on the list is actually new; common pop-culture passwords in 2014 included “superman” and “batman,” but nothing from a galaxy far, far away. Does this mean that the upcoming Batman v. Superman feature film is doomed at the box office? We can only speculate.
If I seem a little cynical, by the way, it’s with good reason: “iloveyou” disappeared from the common-password list in 2014 and hasn’t appeared since.
SplashData didn’t hack any of these passwords itself, of course, but rather compiled the list from over 3.3 million passwords leaked onto the dark corners of the Internet. Like birthdays or the names of your family members, your favorite things probably don’t make good passwords. They’re easy to guess, and other people are using them, too.
Still, it could be worse. You could be using a string of sequential numbers—”123456″ has been the number one most common password for three years running now, while “12345,” “12345678,” “123456789,” and “1234” all cracked the top ten. Honestly, people, did Spaceballs teach you nothing?
For reference, here’s the full list: