Top domains and passwords compromised by Yahoo breach

A more complete list of the domains hit and commonly used passwords as compiled by CNET's Declan McCullagh.

The breach of one of Yahoo's sites reignited concerns over the vulnerability of the favorite Web sites that we visit.

But in reality, roughly 450,000 login credentials were compromised -- a small number relative to the total users on the Internet. Yahoo said less than 5 percent of the accounts had valid passwords.

The following is a list of the top 20 e-mail domains and frequently used passwords that were hit, as compiled by CNET's Declan McCullagh:

Domains
1. Yahoo.com (137,559)
2. Gmail.com (106,873)
3. Hotmail.com (55,148)
4. Aol.com (25,521)
5. Comcast.net (8,536)
6. Msn.com (6,395)
7. Sbcglobal.net (5,193)
8. Live.com (4,313)
9. Verizon.net (3,029)
10. Bellsouth.net (2,847)
11. Cox.net (2,260)
12. Yahoo.co.in (2,133)
13. Ymail.com (2,077)
14. Hotmail.co.uk (2,028)
15. Earthlink.net (1,943)
16. Yahoo.co.uk (1,828)
17. Aim.com (1,611)
18. Charter.net (1,436)
19. Att.net (1,372)
20. Mac.com (1,146)

Passwords
1. 123456 (1,667)
2. password (780)
3. welcome (437)
4. ninja (333)
5. abc123 (250)
6. 123456789 (222)
7. 12345678 (208)
8. sunshine (205)
9. princess (202)
10. qwerty (172)
11. writer (164)
12. monkey (162)
13. freedom (161)
14. michael (160)
15. 111111 (160)
16. iloveyou (140)
17. password1 (139)
18. shadow (134)
19. baseball (133)
20. tigger (132)

Securi Labs also offers a handy tool to help you find out whether your Yahoo email was compromised.
 

Join the discussion

Conversation powered by Livefyre

Show Comments Hide Comments