NordPass Releases List Of Easiest To Crack Passwords

Tyler Cross
Tyler Cross Senior Writer
Tyler Cross Tyler Cross Senior Writer

NordPass, the parent company of NordVPN, and a group of independent researchers have released a list of the most commonly used passwords.

While it can be tedious to try and come up with unique passwords for every website, the convenience of falling back on commonly used passwords could cost you. Criminals are constantly attempting to crack accounts and a commonly used password can take just seconds to crack in many cases.

This gets significantly worse when you choose a lazy password — the kind you’d see as a joke on a TV show. The study conducted by NordPass showed that these lazy passwords were the most commonly used (and cracked) passwords.

Here is the list of the most commonly used passwords, plus how long it takes hackers to crack them (on average).

Rank Password Amount used Time to crack
1 123456 4,524,867 < 1 Second
2 admin 4,008,850 < 1 Second
3 12345678 1,371,152 < 1 Second
4 123456789 1,213,047 < 1 Second
5 1234 969,811 < 1 Second
6 12345 728,414 < 1 Second
7 password 710,321 < 1 Second
8 123 528,086 < 1 Second
9 Aa123456 319,725 < 1 Second
10 134567890 302,709 < 1 Second
11 UNKNOWN 240,377 17 Minutes
12 1234567 234,187 < 1 Second
13 123123 224,261 < 1 Second
14 111111 191,392 < 1 Second
15 Password 177,725 < 1 Second
16 12345678910 172,502 < 1 Second
17 0000000 168,653 < 1 Second
18 admin123 159,354 11 Seconds
19 ******** 152,497 < 1 Second
20 user 146,233

A few notes from the study include:

  • 123456 has ranked as the most common password for five years.
  • 123456 and UNKNOWN are the two most common passwords for financial accounts, smartphones, and social media accounts.
  • “Isabella” is the second most used passwords in Austria.
  • Chinese users are the most likely to use a string of numbers, such as 123456, as many Chinese users don’t include letters in their passwords.
  • American users included slang words as their passwords more than any other country.
  • “Admin” has not appeared in the top 200 list in the past five years, however, this year it’s nearly topped the charts at #2.

If you’re using any of these passwords, you should immediately change your passwords and consider using a password manager and checking for any possible data breaches on your accounts.

You should also take advantage of biometric logins, like fingerprint sensors and face-scans, on any app that allows it.

About the Author
Tyler Cross
Tyler Cross
Senior Writer

About the Author

Tyler is a writer at SafetyDetectives with a passion for researching all things tech and cybersecurity. Prior to joining the SafetyDetectives team, he worked with cybersecurity products hands-on for more than five years, including password managers, antiviruses, and VPNs and learned everything about their use cases and function. When he isn't working as a "SafetyDetective", he enjoys studying history, researching investment opportunities, writing novels, and playing Dungeons and Dragons with friends."