Users urged to change passwords linked to common breaches

New Study Reveals Top 10 Most Commonly Leaked Passwords

IN a recent study, database experts at Red9 have unearthed alarming revelations regarding the widespread usage of easily exploitable passwords

Facebook
LinkedIn
X

IN a recent study, database experts at Red9 have unearthed alarming revelations regarding the widespread usage of easily exploitable passwords online. These vulnerabilities could potentially lead to identity theft, social media account takeovers, and even financial losses.

The research, conducted by analysing data from the widely-used website www.HaveIBeenPwned.com, identified the ten most frequently leaked passwords. Topping the list is the alarmingly simple “123456,” which appeared a staggering 42,542,897 times in data breaches. In total, the top ten passwords accounted for a shocking 196,540,378 breaches.

Surprisingly, among the predictable numerical sequences, the study found unexpected entries like “1q2w3e,” a seemingly random combination that actually reflects the first six adjacent keys on a standard computer keyboard.

Notably, the study revealed that six-character passwords were the most common, comprising 91,644,362 of all breached passwords. Passwords with eight characters followed closely behind, appearing 35,083,201 times in breaches.

Mark Varnas, founder of Red9, emphasised the urgent need for improved password security practices. He stressed the importance of using a combination of uppercase and lowercase letters, numbers, and special characters, while avoiding easily guessable information such as names and birthdays. Varnas also recommended regularly updating passwords and refraining from using identical ones across multiple accounts to strengthen defences against potential security threats.

The top 10 most leaked passwords, along with the number of times they appeared in data breaches, are as follows:

  1. 123456 (42,542,807)
  2. 123456789 (18,313,580)
  3. qwerty (10,713,794)
  4. password (10,382,543)
  5. 12345678 (6,901,438)
  6. 111111 (5,070,941)
  7. qwerty123 (4,880,569)
  8. 1q2w3e (4,486,025)
  9. 1234567 (4,351,342)
  10. 1234567890 (4,130,502)

Related Stories from Silicon Scotland

Cyber security business launches to help organisations combat rising threat
Cybercrime study with senior IT directors predicts cybercrime costs will exceed $15 trillion by 2030
Dramatic rise in phishing fraud losses in 2024
UK’s cybersecurity laws demand urgent modernisation amid growing digital threats
Scotland’s cybercrime crisis: new study calls for police action to support victims
Aberdeen cyber security firm strengthens market position amid rising threats to critical infrastructure

Other Stories from Silicon Scotland