The list of most used passwords published by PC Gamer once again revealed weak points in cyber security. At the top of the list, predictably, is “123456”. According to research conducted by NordPass, this password was recorded as the most frequently preferred password in 2020, 2022 and 2024. So much so that this password can be cracked by any hacker or artificial intelligence system in less than a second.
Making such simple choices when choosing a password shows that users continue to risk their security. Cyber security experts state that such weak passwords pose a major threat to both personal and corporate accounts.
How to create strong passwords?
The UK’s National Cyber Security Center (NCSC) recommends an effective method for creating passwords: combining three random words. For example, combining three different words that are unrelated to each other is considered one of the simplest ways to create a strong password. However, it is emphasized that these words should be chosen truly randomly; otherwise it can become predictable.
However, it is of great importance to avoid common mistakes when creating a password. For example:
- Starting the password with a capital letter or adding the number “1” at the end is a very predictable method.
- Passwords created based on personal information (name, date of birth, etc.) become easy targets for attackers.
- Consecutive sequences of letters or numbers on the keyboard (for example, “qwerty” or “12345”) are not reliable.
At this point, an interesting example stands out: a seemingly random string of letters like “ADGJMPTW” is actually created by pressing the numbers 2 through 9 sequentially on a smartphone keypad. Therefore, even a seemingly complex password can actually be cracked quite easily.
Additional measures to increase password security
Another common mistake users make is using the same password on all accounts. This method may put all other accounts at risk if the password of one account is compromised. On the other hand, writing down passwords or leaving password clues in application notes can also lead to serious security vulnerabilities.
Cybersecurity experts recommend users adopt these methods:
- Two-Factor Authentication (2FA): This method increases security by adding another layer of verification in addition to the password.
- Regular Password Update: Using the same password for a long time should be avoided.
- Using Different Passwords: Different and unique passwords should be preferred for all accounts.
Password security is critical to protecting individual and corporate accounts. Avoiding simple and common passwords can be considered the first line of defense against cyber attacks. It is possible for users to protect both their personal information and digital assets by creating strong passwords and taking cyber security recommendations into consideration.