Last Updated:
According to the NordPass research, 30,18,050 users worldwide have chosen ‘123456’ as their password.
Nearly 40% of the most common passwords used by individuals and business representatives are identical.
In an era where almost every aspect of our lives is online – from banking and shopping to social media and work communication – safeguarding our digital information has never been more crucial. However, recent research reveals that millions of internet users around the world continue to rely on some of the most easily hackable passwords, putting themselves at risk of cyberattacks.
The Top 200 Most Common Passwords report from NordPass, now in its sixth edition, has once again uncovered alarming trends in how people secure their online accounts. The report, which analyses the most widely used passwords in 44 countries, paints a troubling picture of digital security. At the top of the list, unsurprisingly, is ‘123456’, the most commonly used password both globally and in India.
The Most Common Password: An Open Door to Hackers
According to the NordPass research, 30,18,050 users worldwide have chosen ‘123456’ as their password. Shockingly, 76,981 of those users are from India alone. This simple, numeric string is one of the easiest combinations to crack, often taking less than a second for a skilled hacker to guess. Yet, millions of people continue to use it, highlighting a concerning lack of awareness around the importance of strong passwords.
‘123456789’ takes the second spot globally and ranks fourth in India. These numeric combinations, while seemingly more complex, still offer very little protection, as they follow predictable patterns that are easily guessed by brute-force hacking tools. This trend also extends to other keyboard combinations that are easy to remember but equally insecure. Qwerty, a basic line of letters found across the top row of most keyboards, and ‘1q2w3e4er5t’ (a simple mix of numbers and letters) are also widely used across the globe.
Cultural Personalisation and Predictable Patterns
Interestingly, NordPass report also suggested a trend where users often mix simple password formats with cultural or personal tweaks. For instance, ‘Indya123’ replaces the more generic ‘India123’, showing a blend of simplicity and local flavour. Other popular choices include ‘admin’ and ‘abcd1234′, both of which have been staples of previous years’ password lists. These trends reflect a broader pattern in which users choose passwords that are easy to remember but not necessarily secure.
One of the most unsettling findings from the research is the continued popularity of the word ‘password’ itself. It might sound counterintuitive, but ‘password’ is still one of the most commonly used passwords worldwide. In India, it ranks as the second most popular choice, while it’s also the number one choice in countries like the UK and Australia. The fact that so many people continue to use this highly insecure password underscores the persistent misunderstanding of the importance of creating complex, unique passwords.
While personal accounts are at the forefront of password security concerns, corporate accounts are equally vulnerable. According to the study, nearly 40% of the most common passwords used by individuals and business representatives are identical, indicating that many businesses fail to implement stronger password policies. Default passwords like ‘newmember’, ‘newpass’, ‘newuser’, and ‘welcome’ are still commonly used in corporate environments, as are simple combinations like ‘admin’ and ‘temppass’. These weak passwords are often overlooked or left unchanged after an account is created, which is a significant security risk.
One major cause of intrusions is the widespread habit of using the same password for both personal and work-related accounts. If hackers are able to crack a personal account, they often gain easy access to an employee’s work account as well, creating a severe vulnerability for businesses.
78% of Common Passwords Can Be Cracked in Seconds
Perhaps the most concerning takeaway from the NordPass research is the growing prevalence of weak passwords that can be cracked in seconds. Nearly 78% of the most commonly used passwords globally can be cracked in under a second, a significant increase from last year’s figure of 70%. This surge in easily guessable passwords suggests that the situation regarding digital security is only worsening, despite growing awareness of the risks.
Cybersecurity experts have long warned against using simple and repetitive passwords, but crores of people continue to overlook these warnings, either out of convenience or lack of knowledge. The reality is that weak passwords are an open door for hackers, leaving personal and professional data exposed to cyberattacks.
How to Strengthen Your Digital Security
With these alarming statistics in mind, it’s clear that relying on basic passwords like ‘123456’ or ‘password’ is no longer an option for securing your online presence. So, what can you do to protect yourself?
- Use Strong, Unique Passwords: Experts recommend creating passphrases that are at least 20 characters long. These should be a mix of random combinations of numbers, letters (both uppercase and lowercase), and special characters. Strong passwords are significantly harder to crack than simple combinations like ‘123456789’ or ‘qwerty123’.
- Avoid Reusing Passwords: Don’t use the same password for different accounts. If one account is compromised, hackers can gain access to all your other accounts if they share the same password.
- Implement Multi-Factor Authentication (MFA): Whenever possible, enable multi-factor or two-factor authentication on your accounts. This adds an extra layer of security, making it much harder for hackers to access your information even if they manage to crack your password.
- Consider Using a Password Manager: If remembering complex passwords is challenging, a password manager can help. These tools store and generate strong passwords for your accounts, so you don’t have to keep track of them all yourself.
- Be Mindful of Corporate Accounts: Businesses should ensure that employees are following best practices for password security. Encourage the use of unique, strong passwords for work accounts, and make sure that default passwords are changed immediately after account creation.
The Growing Need for Digital Awareness
The findings from NordPass, as reported by Indian Express, should serve as a wake-up call for individuals and businesses alike. While managing passwords for the myriad of accounts we have may seem daunting, it’s crucial to take the necessary steps to secure our digital lives. Weak passwords are no longer just an inconvenience; they are an invitation for hackers to invade our privacy, steal sensitive data, and cause significant harm.
As the world becomes increasingly digital, it is more important than ever to take online security seriously. By adopting stronger password practices, enabling additional layers of authentication, and staying vigilant about potential threats, we can better protect our personal information and ensure that our online lives remain secure.