Alarming Trends in Password Security: The Need for Stronger Passwords and Management Practices

Person using mobile banking app on smartphone.

Concerning trends in 2024 password security highlight the ongoing struggle between simple password habits and persistent cyber threats.

At a Glance

  • NordPass released its list of the 200 most common passwords.
  • Analysis shows little improvement in password security habits.
  • The most common password remains 123456.
  • Most simple passwords can be cracked in under a second.

The Worrisome State of Password Security

NordPass has once again highlighted the critical issues surrounding password security in its latest survey. The analysis, conducted in partnership with NordStellar, involved examining a 2.5TB database comprising passwords from publicly available sources, including those stolen by malware and data breaches. This comprehensive study revealed an alarming dependency on predictable passwords such as 123456 and password, providing minimal defense against increasingly sophisticated cybercriminals.

The fact that 123456 has repeatedly topped the list five times in the last six years is a testament to enduring poor password practices. Even corporate passwords echoed personal ones, with 123456 again being alarmingly common. Simple combinations such as qwerty123 and iloveyou remain prevalent, despite being easily crackable in less than a second. Public awareness efforts seem ineffective in establishing stronger password habits as the survey suggests negligence remains widespread.

Efforts to Improve Password Practices

Many efforts have been directed at encouraging users to adopt complex passwords and multi-factor authentication for better online security. However, these efforts have apparently made little difference. A poignant quote from NordPass sheds light on this disheartening situation: “After analyzing 6 years’ worth of data, we can say there hasn’t been much improvement in people’s password habits.” It is evident that simple passwords like chocolate, naruto, and monkey continue to be used widely, posing significant security risks.

Given that 78% of the world’s most common passwords can be compromised in under a second, the consultancy emphasizes a strategic shift toward more secure practices. NordPass advocates for the avoidance of common passwords and suggests passkeys as a potential solution. Major companies such as Google, Amazon, and Apple have already adopted passkeys, highlighting their increasing viability as a long-term substitute for conventional passwords.

The Role of Password Managers and Passkeys

In constructing a defense against cyber threats, password managers emerge as essential tools for storing complex passwords securely. They offer an effectual alternative to traditional methods, as they can generate and recall intricate passwords that are challenging to crack. As cyberspace grows increasingly perilous, users benefit from adapting to emerging security technologies. NordPass is vocal about the importance of moving towards passkeys, which utilize cryptographic keys rather than conventional passwords to secure online accounts moderately.

NordPass reports that “78% of the world’s most common passwords can be cracked in less than a second, which yet again reminds us to avoid popular words or keyword combinations in passwords.”

The persistent reliance on low-strength passwords remains a critical issue as these passwords serve as weak points that malicious actors can effortlessly exploit. Users must be equipped with knowledge and resources to continually update their credentials, such as using complex passwords, and multi-factor authentication. These preventive measures ensure not only personal security but the safeguarding of businesses and nations against the rampant rise of cybercrime.