Stop Using ‘123456’: Specops Report Reveals Shocking Weakness in FTP Passwords

Weak passwords are the Achilles’ heel of FTP servers, with “admin,” “root,” and “123456” topping hackers’ hit lists. Specops’ report urges stronger password policies to outwit these simplistic attacks. Implementing a policy that requires diverse characters could thwart 99% of current brute-force attempts.

3P
Published: May 14, 2025 2:31 pmAdded: May 14, 2025 at 8:00 amAssembled by: The Editor
Pro Dashboard

Hot Take:

Who knew “123456” was still the hacker’s password darling? It’s like showing up to a bank heist with a “robbery for dummies” guide. Time to retire those digital skeleton keys and get with the password program, folks!

Key Points:

  • Weak passwords like “admin” and “123456” are still the go-to for cyber attackers.
  • 54% of attempted passwords were only numbers or lowercase letters.
  • Most passwords used were between 6 to 10 characters long.
  • Specops suggests using passphrases over 15 characters with complexity.
  • FTP servers are prime targets due to lack of encryption, unlike RDP.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?