Weak Passwords Remain Common, NordPass Report Finds
/ 3 min read
Quick take - A report by NordPass reveals that weak passwords remain a prevalent issue on the Internet, with many users continuing to use easily compromised passwords, and it recommends the use of password managers to enhance security while noting the slow adoption of passkeys as a potential future alternative.
Fast Facts
- Weak passwords remain a significant issue, with many users still choosing easily guessable options like “123456” and “password.”
- NordPass’s sixth annual password report analyzed a large database, revealing that common passwords can be cracked in under one second.
- The report highlights a lack of complexity in passwords, with few containing symbols or uppercase letters, and recommends users switch to stronger alternatives.
- NordPass suggests using password managers like KeePass and BitWarden to generate and store secure passwords, facilitating the transition from weak to strong passwords.
- The report mentions the emergence of passkeys as a potential replacement for passwords, but widespread adoption is not expected soon due to complexity and limited support.
Weak Passwords Remain a Major Concern
Weak passwords continue to pose a significant issue on the Internet, with many users opting for passwords that have been deemed weak for decades. Factors contributing to this trend include convenience and a lack of awareness regarding password security.
NordPass Annual Password Report
In its sixth annual password report, NordPass analyzed a 2.5 terabyte database compiled from various publicly available sources. It is noted that NordPass may not have accessed the entirety of the password list. The report highlights that users are strongly advised to change any passwords found on common password lists to more secure alternatives.
The top ten most common passwords globally include:
- “123456”
- “123456789”
- “12345678”
- “password”
- “qwerty123”
- “qwerty1”
- “111111”
- “12345”
- “secret”
- “123123”
Alarmingly, all non-corporate passwords in this list can be cracked in less than one second. The remaining 190 passwords analyzed follow similar patterns, typically also being compromised in under a second. The common passwords listed reveal a pattern dominated by numbers and single words, with some slightly more complex variations.
Additional examples of prevalent passwords include:
- “tag12wsx,” found over 90,000 times
- “111222tianya,” found over 44,000 times
- “chesse,” appearing over 23,000 times
The analysis further indicates that the majority of passwords lack symbols, with very few containing special characters. Uppercase letters are notably rare, with the first uppercase letter appearing in “Password” at the 26th position. NordPass identifies “123456” as the weakest password globally. The analysis shows little improvement in overall password strength compared to six years ago.
Recommendations for Improved Security
In light of these findings, NordPass recommends utilizing a password manager to enhance password security. Password managers can generate and store strong, unique passwords. KeePass and BitWarden are suggested as effective options. Users can quickly start using a password manager, as many support imports from browsers and other applications. While transitioning from weak to secure passwords may require time, password managers are designed to facilitate this process.
The report also discusses the emergence of passkeys, a new standard intended to eventually replace passwords. However, widespread adoption of passkeys is not anticipated in the near future. Although their adoption is increasing, many services still do not support this standard. Some users may find the passkey system complex in the coming years.
Original Source: Read the Full Article Here
