Top domains and passwords compromised by Yahoo breach
A more complete list of the domains hit and commonly used passwords as compiled by CNET's Declan McCullagh.

But in reality, roughly 450,000 login credentials were compromised -- a small number relative to the total users on the Internet. Yahoo said less than 5 percent of the accounts had valid passwords.
The following is a list of the top 20 e-mail domains and frequently used passwords that were hit, as compiled by CNET's Declan McCullagh:
Domains
1. Yahoo.com (137,559)
2. Gmail.com (106,873)
3. Hotmail.com (55,148)
4. Aol.com (25,521)
5. Comcast.net (8,536)
6. Msn.com (6,395)
7. Sbcglobal.net (5,193)
8. Live.com (4,313)
9. Verizon.net (3,029)
10. Bellsouth.net (2,847)
11. Cox.net (2,260)
12. Yahoo.co.in (2,133)
13. Ymail.com (2,077)
14. Hotmail.co.uk (2,028)
15. Earthlink.net (1,943)
16. Yahoo.co.uk (1,828)
17. Aim.com (1,611)
18. Charter.net (1,436)
19. Att.net (1,372)
20. Mac.com (1,146)
Passwords
1. 123456 (1,667)
2. password (780)
3. welcome (437)
4. ninja (333)
5. abc123 (250)
6. 123456789 (222)
7. 12345678 (208)
8. sunshine (205)
9. princess (202)
10. qwerty (172)
11. writer (164)
12. monkey (162)
13. freedom (161)
14. michael (160)
15. 111111 (160)
16. iloveyou (140)
17. password1 (139)
18. shadow (134)
19. baseball (133)
20. tigger (132)