It appears that consumer password choices have changed very little from 1990 to the present day.
The article is well worth reading in it's entirety:Imperva Releases Detailed Analysis of 32 Million Breached Consumer Passwords
Data Security Firm's Report Highlights Consumer Susceptibility to Cyber Attack
Redwood Shores, CA – January 21, 2010 – Imperva, the leader in Data Security, announced today the release of study analyzing 32 million passwords recently exposed in the Rockyou.com breach. Imperva's Application Defense Center (ADC) analyzed the strength of the passwords in a report, Consumer Password Worst Practices, that analyzes 32 million passwords to help consumers and website administrators identify the most commonly used passwords they should avoid when using social networking or e-commerce sites.
The report can be downloaded at: http://www.imperva.com/ld/password_report.asp
The report identifies the most commonly used passwords:
1. 123456
2. 12345
3. 123456789
4. Password
5. iloveyou
6. princess
7. rockyou
8. 1234567
9. 12345678
10. abc123
http://www.imperva.com/news/press/2010/ ... words.html