Despite years of warnings and awareness campaigns, people continue to use alarmingly weak passwords, putting their online accounts and personal information at risk. A new report from NordPass, a password management company, has once again highlighted this concerning trend, revealing the top 200 most commonly used passwords of 2024.
The report, compiled in collaboration with threat management company NordStellar, analyzed a massive database of leaked passwords from around the world, including those found on the dark web. The results are discouraging, to say the least.
For the sixth consecutive year, “123456” takes the crown as the most popular password, appearing in over 3 million instances. Other weak passwords like “123456789,” “password,” and “qwerty123” also rank high on the list. These passwords are incredibly easy to crack, taking cybercriminals mere seconds to gain access to your accounts.
The problem extends beyond personal accounts. NordPass found that many people use similarly weak passwords for their work accounts, putting sensitive corporate data at risk. This highlights a widespread lack of awareness and a concerning disregard for basic password security practices.
The consequences of weak passwords can be severe, leading to account compromise, identity theft, financial loss, and even reputational damage. It’s crucial to take password security seriously and adopt stronger practices to protect yourself online.
Here are some key takeaways from the NordPass report:
- Password reuse is rampant: Many people use the same password across multiple accounts, making them highly vulnerable to compromise.
- Weak passwords are still the norm: Simple, easily guessable passwords continue to be the most popular choice.
- Awareness is not translating into action: Despite increased awareness of password security risks, many people fail to implement stronger practices.
How to Improve Your Password Security
NordPass offers several recommendations for creating stronger passwords and improving your online security:
- Opt for longer passwords: Aim for at least 20 characters with a mix of uppercase and lowercase letters, numbers, and symbols.
- Never reuse passwords: Use a unique password for every online account.
- Regularly review your passwords: Update old or weak passwords and avoid using easily guessable information like birthdays or names.
- Use a password manager: Password managers can generate and store strong, unique passwords for all your accounts.
- Consider passkeys: Passkeys are a more secure alternative to traditional passwords, using biometric authentication or physical security keys to protect your accounts.
By taking these steps, you can significantly reduce your risk of falling victim to cyberattacks and protect your valuable online information.
Read the full report here.
