Dashlane ranks and publishes whether "dangerous password" or password criteria of EC site is safe or not


ByHugovk

Many companies have EC sites for selling their products, ranging from Amazon and Rakuten-like online shopping site (EC site) giants to companies developing home appliances and software products such as Apple and Microsoft I will. Users enter personal information every time they use these sites and lock them with their own passwords, but it's free to use from PCs and smartphonesPassword manager applicationDashlane that provides the top 10 passwords used there, and the criteria of passwords that can be used at each company's site (such as "you must mix numbers and letters" or "you must mix capital letters") And we are disclosing top 10 and bottom 10.

(PDF file notice) The_Illusion_of_Personal_Data_Security_in_E - Commerce_ (Press Release) .pdf
https://www.dashlane.com/download/securityroundup_2014_q1/The_Illusion_of_Personal_Data_Security_in_E-Commerce_%28Press%20Release%29.pdf

According to Dashlane's survey, the top ten of the most frequently used passwords are as follows. The percentage next to the password is the percentage of EC sites that can be used as a password even if you enter them.

First place:Password (58%)
Second place:123456 (55%)
3rd place:12345678 (57%)
4th:Abc 123 (70%)
5th place:Qwerty (58%)
6th place:Monkey (59%)
7th place:Letmein (59%)
8th place:Dragon (59%)
9th place:111111 (55%)
10th place:Baseball (62%)

Even a character string which is too simple to play a role as a password can be used by the user if the EC site allows it. So, Dashlane examined how well 100 popular EC sites in the United States meet the 24 password standards that are important for online security, and place points of minus 100 to 100 on each site I ranked it.

So, the EC site with the highest password standard and the lowest EC site, the points recorded by those sites are as follows.

◆ Top 10
First place:Apple (100)
Second place:Newegg (65)
3rd place:Microsoft (65)
4th:Chegg (65)
5th place:Target (60)
6th place:Williams-Sonoma (55)
7th place:CDW (50)
8th place:Amway (45)
9th place:Musician's Friend (45)
10th place:Nike (45)

◆ Bottom 10
First place:MLB (-75)
Second place:Karmaloop (-70)
3rd place:Dick's Sporting Goods (-65)
4th:Toys R Us (-60)
5th place:Aeropostale (-60)
6th place:J. Crew (-55)
7th place:Vitacost (-50)
8th place:Nutrisystem (-50)
9th place:American Girl (-50)
10th place:1-800 - Flowers.com (-46)

According to this survey, Apple is a company that runs the best site that outnumbered the only full 100 sites, followed by three, Newegg, Microsoft, Chegg, meets high password standards. The site that scored 45 points or more in this survey was rated as a site with excellent password standards, and it seems that only 10% of this site exists overall.

ByAdrian

Conversely, sites below -35 points are rated as sites with bad password criteria, among which Amazon, Walmart, Victoria's Secret and others are included.

Also, with a 51% EC site including Amazon · Dell · Best Buy etc., you can still log in even if you input the wrong password ten times. Since these sites can change the password many times and try logging in, it means that from a hacker it is easy to hack the user's account.

ByZen Sutherland

In addition, 61% of sites do not display advice for creating a strong password, and 93% of sites do not show an indicator to evaluate password strength. And 62% of the surveyed sites have only letters or passwords made with only numbers. It is also possible to use a password of 6 characters or less on 73% of sites.

ByTotumweb

Since the site with the highest password standard is only 10% of the whole, in order to protect personal information by yourselfCreate a password that is unlikely to be illegally accessed, It seems necessary to manage firmly.

in Note, Posted by logu_ii