These are the worst passwords of 2021, so stop using them ASAP

Picking a strong password is more important than ever, but it’s also becoming increasingly difficult. Cybercriminals are constantly picking up new tricks, and it is nearly impossible to stay ahead of them. To make matters worse, some of us aren’t even trying. For the past several years, the team behind the password manager NordPass has been putting together lists of the most common passwords around the world. Year after year, the same terrible passwords appear atop the list. And this year is sadly no different. So without further ado, let’s check out the worst passwords of 2021.

As NordPass explains on its site, the company partnered with independent cybersecurity researchers to evaluate a 4TB database of passwords. Disappointingly, the same password that topped the list last year was once again the most popular password in 2021. You can visit the NordPass website to see all of the entries from 2021, but here are the top 20 most common passwords:

  1. 123456
  2. 123456789
  3. 12345
  4. qwerty
  5. password
  6. 12345678
  7. 111111
  8. 123123
  9. 1234567890
  10. 1234567
  11. qwerty123
  12. 000000
  13. 1q2w3e
  14. aa12345678
  15. abc123
  16. password1
  17. 1234
  18. qwertyuiop
  19. 123321
  20. password123

A pretty good rule of thumb is that if you can simply slide a finger across your keyboard to enter your password, it’s probably not strong enough. The number of passwords that are just consecutive strings of numbers is rather disheartening. None of these passwords take more than two seconds to crack. If you are using any passwords on this list, or anything similar, consider changing them.

Jonas Karklys, CEO of NordPass, shared his thoughts on the matter in a statement this week:

Unfortunately, passwords keep getting weaker, and people still don’t maintain proper password hygiene. It’s important to understand that passwords are the gateway to our digital lives, and with us spending more and more time online, it’s becoming enormously important to take better care of our cybersecurity.

Also Read: Ransomware gang’s script shows exactly the files they’re after

How do people pick their passwords?

In a press release, NordPass shared a few interesting notes about password choices.

People often use local cultural references in their passwords. Football (American and European) team names often pop up in passwords, such as “steelers” in the US or “liverpool” in the UK. NordPass also found that women tended to use more positive words than men. Women would often use words and phrases like “sunshine” and “iloveyou,” while men frequently used swear words.

NordPass shared its list of the worst passwords of 2021
NordPass ranks the countries at the highest risk of having passwords stolen. Image source: NordPass

The researchers also devised a risk index based on the number of passwords leaked in each country. Every country is sorted into one of three risk tiers: low, average, and high. Russia came in first with an astounding 19.9 passwords leaked per capita. The US wasn’t far behind at 5.2, putting it in fifth place. Other high-risk countries include France, Italy, Canada, Australia, and Poland.

How to choose a strong password

NordPass also shared a few helpful tips for making a strong password that can’t be easily hacked:

  • Use complex passwords: A complex password is one that contains at least 12 characters and a varied combination of upper and lowercase letters, numbers, and symbols. Using a password generator is the easiest and quickest way to create complex passwords.
  • Never reuse passwords: A single password for multiple accounts is a hacker’s delight. If only one of the accounts is compromised, consider all your other accounts jeopardized.
  • Regularly update passwords: Security experts recommend changing passwords every 90 days to keep your accounts secure and bad actors at bay.
  • Check password strength: Regularly assess your password health. Identify weak, reused, or old passwords and fortify your online security with new, complex ones.
  • Use a password manager: Using a password manager to securely store and access your passwords is the simplest and most efficient way to boost your overall online security.

If you follow these tips, and apply some common sense, you should be able to keep yourself safe online.


Leave a Reply

Your email address will not be published. Required fields are marked *


Cyber Training Group International (CTGI) is a Cyber Security Training Institute That Empowers Clients. Your one-stop online platform for all your cyber security awareness and training.

Most Recent Posts

Join Our Webinar

We schedule regular webinars across different geographies and time zones.

Copyright © 2024 Cyber Training Group International | All Rights Reserved