Even in an era where digital wallets, AI-powered apps and biometric scans are becoming the norm, one thing hasn’t changed: people are still using dangerously simple passwords.
The 2025 NordPass “Top 200 Most Common Passwords” report confirms this. For yet another year, the world’s favourite password is “123456”, a choice shared by over 21.6 million users worldwide.
The study reviewed password data from more than 40 countries between September 2024 and September 2025, drawing insights from leaked databases and dark-web dumps. Despite constant warnings from cybersecurity experts, most users continue choosing convenience over protection.
Why Weak Passwords Persist
Across continents and cultures, people still prioritise easy-to-recall passwords. Unfortunately, this predictability gives cybercriminals the perfect advantage.
NordPass found that:
- Many users still rely on first names, surnames, or simple combinations such as “Joan89” or “promise123”
- Password trends follow cultural and geographic patterns
- Hackers know these patterns extremely well
As the report notes:
“The prevalence of common names in passwords across different regions shows how culture deeply influences insecure login practices.”
Top 10 Passwords by Generation (2025)
| Rank | Gen Z | Millennials | Gen X | Baby Boomers | Silent Gen |
|---|
| 1 | 12345 | 123456 | 123456 | 123456 | 12345 |
| 2 | 123456 | 1234qwer | 123456789 | 123456789 | 123456 |
| 3 | 12345678 | 123456789 | 12345 | 12345 | susana |
| 4 | 123456789 | 12345678 | veronica | maria | marta |
| 5 | passsword | 12345 | lorena | Contrasena | margarita |
| 6 | 1234567890 | 1234567890 | 12345678 | susana | Contrasena |
| 7 | skibidi | password | 1234567 | silvia | 123456789 |
| 8 | 1234567 | 1234567 | valentina | graciela | 12345678 |
| 9 | pakistan123 | Contrasena | teckiss | monica | virginia |
| 10 | assword | mustufaj | follar | claudia | rodolfo |
From playful Gen Z picks like “skibidi” to familiar names used by older generations, the underlying issue is the same: simple passwords dominate.
The Cybersecurity Impact
Weak passwords remain one of the leading entry points for cybercriminals. A single compromised password can expose:
- Email accounts
- Banking information
- Social media profiles
- Workplace systems
- Personal digital identities
Because password habits hardly differ by age, hackers don’t need advanced tools, just awareness of these global patterns.
A Safer Future Starts With Better Digital Habits
Cybersecurity experts recommend three key practices to reduce these risks:
- Adopt password managers to generate and store strong passwords
- Enable two-factor authentication whenever possible
- Stop reusing passwords across accounts
Until better habits take hold, millions of users will continue relying on digital keys that are far too easy to copy.
