2019’s Worst Passwords & Tips For Better Ones

Coming up with a good password can leave a lot of us scratching our heads. A lot of specific requirements and random characters – it’s definitely a hassle we can all relate to.

While opting for a simple password might seem like the easy way around it, you’re doing yourself more harm than good. Quick and simple passwords are always easier to remember, but it also makes it quicker and easier for hackers to crack and gain access to your accounts.

If you’re concerned that your passwords aren’t strong enough, here’s a list of 2019’s worst passwords to give you an idea of what not to pick as your password, plus some pointers on maximizing your password’s strength

Recently, Tech company SplashData released a list of 2019’s worst passwords. The reigning champion for 2019 is “123456”, which also held the top spot in 2018. Some new additions to the list include “dragon” at 23, “lovely” at 18, and “qwertyuiop” at 15. If your password isn’t on the list, congrats! But don’t consider yourself out of the woods just yet.

Here are the worst passwords of 2019:

  1. 123456 (rank unchanged from 2018)
  2. 123456789 (up 1)
  3. qwerty (Up 6)
  4. password (Down 2)
  5. 1234567 (Up 2)
  6. 12345678 (Down 2)
  7. 12345 (Down 2)
  8. iloveyou (Up 2)
  9. 111111 (Down 3)
  10. 123123 (Up 7)
  11. abc123 (Up 4)
  12. qwerty123 (Up 13)
  13. 1q2w3e4r (New)
  14. admin (Down 2)
  15. qwertyuiop (New)
  16. 654321 (Up 3)
  17. 555555 (New)
  18. lovely (New)
  19. 7777777 (New)
  20. welcome (Down 7)
  21. 888888 (New)
  22. princess (Down 11)
  23. dragon (New)
  24. password1 (Unchanged)
  25. 123qwe (New)

5 Tips for Better Passwords

If you think these passwords are easy, imagine how easy a hacker would think they are! If you want to make sure you’re doing the most to secure your passwords, experts have a few tips to ensure you’re doing all you can do:

1. Diversify the characters in your password – using different combinations of letter, numbers, uppercase, and lowercase characters is a great way to boost your password strength.

2. A long password goes a long way – most experts agree that keeping your password at a 12 character minimum is best.

3. Make sure you’re not using the same password for all your accounts it’s like using one key for all your locks – once someone has one, they have access to everything. Get creative and brainstorm some different passwords.

4. Use Chrome Sync – Chrome Sync can save your bookmarks, history, passwords, and other settings securely to your Google Account and allow you to access them from Chrome on any device — including the StartMeStick!

5. Use a Password manager a password manager like its name suggests helps you manage your passwords digitally. They can also help you generate strong password for all your accounts.

What is Chrome Sync?

Google Chrome lets you sync your browsing activity across any device – bookmarks, history, passwords, and extensions – sync from your Google account, creating a seamless experience on any device.

You can choose what information you want Chrome to sync – be it everything, just passwords or somewhere in the middle.

This makes creating strong, unique passwords easy as they’re automatically synced across your devices.

Most of us has an average of 200 passwords to remember. This is a lot of opportunities to forget which password we used. Chrome Sync makes this easy.

I’m not tech savvy, will I be able to use Chrome Sync?

Our team uses Chrome Sync and we love it! We trust it for our friends and family and that’s why we are recommending it to you. Plus it works seamlessly with the StartMeStick.

Click the link here to learn how to turn on Google Sync so that it works on your StartMeStick.

What is the StartMeStick?

The StartMeStick is a private and secure computer on a stick – it turns any computer into a fast, secure, and private one. Simply plug it in when you need to temporarily turn any computer into a fast, secure, and private one. Everything you do online you can do with the StartMeStick!

Learn more about the StartMeStick here.

Have a question? Leave it in the comments below!


  1. Jim Lynch -

    Suggestion: Use numbers as phonetics in a password only you would recognise, and also add in symbol/s. For instance, “4magn82C!at6Roads” (for magnate to see! at six roads). Even a computer running through every possible combination of all characters, numbers and symbols would be years in process to come up with such a password.

  2. Anonymous -

    I have two books full of passwords, and even that after a number of years and changing them so often or getting mixed up to what account I used the PW for very confusing. Try to simplified this but not to successful, was hoping for a better idea.

    • Linda -

      Hi there, another option would be to use a password manager like Dashlane that can manage all your passwords for you.

  3. Anoymous -

    Another method to password management is to have a trigger file with clues that ONLY YOU and /or your family could figure: Example:
    Uncle Nathan’s favorite sport, year he was born, favorite subject in High School
    And yes I’d make sure this totaled 12 or more characters!

  4. Steve -

    Linda , you said Chrome Sync is free if you have a google account. Is it free forever or a period of time? If for a period of time, how much afterwards will it cost?

    • Linda -

      Hi Steve, Chrome Sync has always been free for everyone with a Google account. It will also likely be free in the future but there are no guarantees as the service is managed by Google and may change depending on Google’s policies.

  5. LARRY H -

    REMEMBERING MANY different passwords is very difficult for Senior citizens AND these ‘password vaults (I have 2 of them) are NOT all that reliable. What is one to do?

    • Linda -

      Hi there, fingerprints are secure but unfortunately not all devices currently come with built-in fingerprint readers.

  6. WILLIAM -

    Thanks for the article. What is your opinion of LASTPASS pw keeper? I have used it successfully but so many are now available what are pitfalls to watch for in pw organizers?

    • Linda -

      Hi William, good question. At our FixMeStick office, our preferred password manager is Dashlane. However, LastPass offers similar features so you are welcome to continue using it if you are a LastPass customer. With password managers, you have to make sure the company managing your passwords are securing them properly. That’s why it is important to do your research before you choose a password manager to make sure there are enough security measures in place to prevent leaks and hacks.

  7. Iceman47 -

    To all my Christian brothers and sisters, I have found that the strongest passwords without a doubt, are Bible verse references. We all have our favorite Bible verses aside from the most popular (i.e. John3:16). A personal favorite verse is individually easy to remember and difficult for others to perceive or guess.
    I have not been able to find any evidence where using Bible verses is in any way blasphemous or derogatory in any way. The fact of the matter is that in order to have a favorite verse, you first have to read it in the Bible. Who knows, if more people did this, who knows what may happen.

  8. Johnette Freeman -

    What is your opinion of “SplashID” Key Safe as a password manager? I have it but have not used it. Thanks for any info.

    • Linda -

      Hi Johnette, we have not tried the SplashID key safe at our FixMeStick office. Instead, our preferred password manager is Dashlane. Generally, With password managers, you have to make sure the company managing your passwords are securing them properly and more specifically for Splash ID, to make sure there are back-up systems in place in case you lose your physical key. And remember to always do your research before you decide to trust a company with your sensitive information.

    • Linda -

      Hi Deb, NordVPN is not a program that protects everything on your computer. Instead, it works to redirect your internet traffic through a private and encrypted tunnel to protect your data that’s passing through. To learn more about NordVPN, check out this blog.

  9. JIm -

    Maybe my concerns are groundless, but ever since I became aware that Google is working to assist China with AI and hence the Chinese military, I don’t use Google.

  10. Anonymous -

    I always have to laugh when someone talks about fingerprint security. FYI, it doesn’t work on me. At work we use several POS centers. Not one of them accepts the use of my finger. I could only use my fingernail. Our time clock worked on fingerprint. I couldn’t clock in nor clock out. Biggest problem was when I cut my finger. The cut mark denied me all access to all fingerprint systems. My IPhone and IPad both use a double security… fingerprint and password. When I continuously fail the fingerprint, fortunately the IPhone and IPad revert to using the password. My point here? Unless I’m being looked at forensically for a crime, my fingerprint doesn’t do a thing for me… except deny my entrance into anything I’m trying to secure/protect from internet thieves.

    • Linda -

      Thanks for sharing your experience using fingerprint security systems!

  11. Alison LeGere -

    some passwords do accept blank space. would this be safe if two wonky words were used with a blank in between them

    • Linda -

      Hi Alison, using blank spaces are a great way to beef up the complexity of your passwords!

    • Linda -

      Hi Diana, generally, we think password managers are highly useful when combined with 2-factor authentication! We do not use Password Safe at FixMeStick, but our preferred password manager is Dashlane.

  12. Anonymous -

    I use dashlane and it works fine. Of course you have to visit every site and save the URL, log in name and password. If you happen to use a different URL it won’t recognize. Life in the tech age can be a hassle but with a little work security can be achieved. PS: Xpress VPN and IP Vanish work well.

  13. Solange pippey -

    Linda Hi, StartMeStick is new, using it on desk top or lap top,but what happen to other devices like.I phone and tablet those not have UBS
    That is my question about these sticks.
    Thank you

    • Linda -

      Hi Solange, good question. You can definitely use StartMeStick on a desktop or a laptop computer. But unfortunately, it will not work on smartphones and tablets so you will have to find other forms of security for them in the meantime. Check out this blog for some ideas on how you can secure them.

  14. Rhonda Kinnaman -

    Hi Linda. What’s the difference between the StartMeStick and the FixMeStick?

    • Linda -

      Hi Rhonda, we designed the FixMeStick to clean an infected computer of malware, while the StartMeStick should be used when you want to turn any computer (whether it’s infected or not) into a fast, private, and secure one for browsing the Internet. To learn more, check out a FAQ page here.

  15. Anonymous -

    I agree with Jim about his Google concerns and therefore, won’t be getting this. No one gives away something for nothing, including Google.

  16. Mary -

    I purchased two fix me sticks several years ago. I would like to know if I can use them now.

    • Linda -

      Hi Mary, after checking your FixMeStick account, we’ve sent you a follow-up email about this. Please check your email, thanks!

Comments are closed.