Here are the top 10 most-used passwords in the world in 2025

The Challenge of Secure Passwords

People tend to opt for passwords they can easily remember, thereby prioritizing convenience over the security of their personal data. This, therefore, gives hackers the ability to monitor password trends and breach their data.

A recent report by NordPass, a password manager platform, titled “Top 200 Most Common Passwords,” revealed that “123456” is the most used password globally, generating usage by 21.6 million people. The report covered over 40 countries, spanning the period between September 2024 and September 2025.

In addition, the findings in the report showed that people often use first names or a surname alongside some numbers, such as “promise123” or “Joan89.” It noted that passwords like this are easily exposed, as hackers are aware of this common trend among internet users.

“In each country, the most common first names and surnames often appear in passwords, proving that geography and culture play a significant role in shaping common — yet vulnerable — security practices,” it added.

In its methodology, the report analyzed recent public data breaches and dark web repositories from September 2024 to September 2025.

Top 10 Most-Used Passwords Worldwide

The table below shows the top 10 most-used passwords in the world:

Inter-generational Breakdown of Password Habits

While the world continues to evolve with generational shifts from “Generation X” to “Millennials” and then “Generation Z,” the use of simple passwords remains the same.

The report explained that while “Generation Z” are more exposed and perceived to be cybersecurity aware, this is a misconception. The report claims they have a similar habit of using simple passwords as older generations.

“The password habits of an 18-year-old are strikingly similar to those of an 80-year-old. Where we expected discerning differences, we actually faced a striking uniformity in vulnerabilities. ‘12345’ and ‘123456’ emerged as the top password choices in every age group,” it said.

Generations are classified as follows:

• •
  Generation Z (1997-2007)
• •
  Millennials (1981-1996)
• •
  Generation X (1965-1980)
• •
  Baby boomers (1946-1964)
• •
  Silent generation (born before 1946)

The table below shows the top 10 most used passwords in each generation:

Password Safety Tips for Enhanced Security

Despite efforts to educate users about cybersecurity through awareness campaigns, the report shows little improvement in widespread password management and security consciousness.

While breach cases continue to rise, the following tips, as outlined in the report, can be used to protect personal data against cyberattacks.

1. Use strong passwords and passphrases: A strong password should contain at least eight characters with a mix of uppercase and lowercase letters, numbers, and special symbols. The use of sequences of words known as passphrases is also encouraged. Passphrases are hard for hackers to guess but easy for users to remember. For instance, “Il0v3Nig3ria!”
2. Keep all passwords unique: Using unique passwords for all accounts ensures that even if one of them is breached, the rest will remain secure.

1. The use of a password manager: This helps to generate, store, and manage all passwords, ensuring that they’re securely protected and always within a user’s reach. Commonly used password manager apps are Bitwarden, Dashlane, Keeper, and NordPass.
2. Enable multi-factor authentication: Switching on multi-factor authentication (MFA) adds an extra layer of security to an account. Each time a user logs in, they will need to verify their identity, making it difficult for cybercriminals to access accounts. Notably, the use of Passkey has been considered another reliable way for users to keep their accounts protected. It utilizes a device’s built-in features, such as a fingerprint, face scan, PIN, or pattern, to authenticate users without needing to remember passwords.