x’ is the most frequent password guess among hackers, followed by “Zz,” “[email protected],” “1,” and “[emailprotected]” Only three of the Top 10 passwords in Rapid7s list were even remotely complex. The company recorded 221,200 login attempts from IP addresses in 119 countries over 334 days over which Rapid7 collected credential-scanning data from its honeypot network. The key takeaway for enterprises is that it is very dangerous to have an Internet connected device offering a service protected by a weak password, says a data scientist.”]