Advertisment

Revealed: '123456' Most Common Password in Data Breaches, Says Red9 Study

A study by Red9 reveals '123456' to be the most common password in data breaches, highlighting the urgent need for enhanced password security practices.

author-image
Safak Costu
New Update
Revealed: '123456' Most Common Password in Data Breaches, Says Red9 Study

In a startling revelation, a study conducted by Red9, a leading player in database security, has exposed the most commonly leaked passwords in the public domain. Surprisingly, the most recurrent password found was '123456', which featured in data breaches an astounding 42,542,807 times. This simplistic numerical password, along with others like '123456789' and 'qwerty', has been under the scanner for their susceptibility to brute force attacks.

Advertisment

Prevalence of Simple Passwords

The analysis, conducted using data from HaveIBeenPwned.com, showed a worrying trend: these simple passwords are still rampant, despite multiple warnings from cybersecurity experts. The study found that '123456' accounted for more than one-fifth of all passwords found in data breaches. Other easily decipherable combinations such as '123456789' and 'qwerty' were also among the top offenders.

The Danger of Six-Character Passwords

Advertisment

Another alarming revelation from the study was the prevalence of six-character passwords. These passwords, despite being weak and easily crackable, constituted a significant portion of those found in breaches. With brute force calculators suggesting that such passwords can be cracked almost instantly, their widespread usage poses a significant risk to digital security.

Call for Enhanced Password Security

Mark Varnas, founder of Red9, underscored the pressing need for enhanced password security awareness in the wake of these revelations. He recommended adopting more robust password practices such as using a mix of uppercase and lowercase letters, numbers, and special characters. Varnas also advised users to regularly update their passwords and strongly cautioned against using the same password across multiple accounts, a practice that can increase vulnerability to unauthorized access and potential security threats.

Advertisment
Advertisment