TechCentralTechCentral
    Facebook Twitter YouTube LinkedIn
    Facebook Twitter LinkedIn YouTube
    TechCentralTechCentral
    NEWSLETTER
    • News

      Fixing SA’s power crisis is not complex: it simply takes the will to do better

      12 August 2022

      Consortium makes unsolicited bid for state’s 40% stake in Telkom

      12 August 2022

      Actually, solar users should pay more to access the grid – here’s why

      12 August 2022

      Telkom says MTN talks remain on track

      12 August 2022

      Analysis | Rain muddies the waters with approach to Telkom

      11 August 2022
    • World

      Tencent woes mount, even after $560-billion selloff

      12 August 2022

      Huawei just booked its first sales rise since US blacklisting

      12 August 2022

      Apple remains upbeat about iPhone sales even as Android world suffers

      12 August 2022

      Ether at two-month high as upgrade to blockchain passes major test

      12 August 2022

      Gaming industry’s fortunes fade as pandemic ends

      11 August 2022
    • In-depth

      African unicorn Flutterwave battles fires on multiple fronts

      11 August 2022

      The length of Earth’s days has been increasing – and no one knows why

      7 August 2022

      As Facebook fades, the Mad Men of advertising stage a comeback

      2 August 2022

      Crypto breaks the rules. That’s the point

      27 July 2022

      E-mail scams are getting chillingly personal

      17 July 2022
    • Podcasts

      Qush on infosec: why prevention is always better than cure

      11 August 2022

      e4’s Adri Führi on encouraging more women into tech careers

      10 August 2022

      How South Africa can woo more women into tech

      4 August 2022

      Book and check-in via WhatsApp? FlySafair is on it

      28 July 2022

      Interview: Why Dell’s next-gen PowerEdge servers change the game

      28 July 2022
    • Opinion

      No reason South Africa should have a shortage of electricity: Ramaphosa

      11 July 2022

      Ntshavheni’s bias against the private sector

      8 July 2022

      South Africa can no longer rely on Eskom alone

      4 July 2022

      Has South Africa’s advertising industry lost its way?

      21 June 2022

      Rob Lith: What Icasa’s spectrum auction means for SA companies

      13 June 2022
    • Company Hubs
      • 1-grid
      • Altron Document Solutions
      • Amplitude
      • Atvance Intellect
      • Axiz
      • BOATech
      • CallMiner
      • Digital Generation
      • E4
      • ESET
      • Euphoria Telecom
      • IBM
      • Kyocera Document Solutions
      • Microsoft
      • Nutanix
      • One Trust
      • Pinnacle
      • Skybox Security
      • SkyWire
      • Tarsus on Demand
      • Videri Digital
      • Zendesk
    • Sections
      • Banking
      • Broadcasting and Media
      • Cloud computing
      • Consumer electronics
      • Cryptocurrencies
      • Education and skills
      • Energy
      • Fintech
      • Information security
      • Internet and connectivity
      • Internet of Things
      • Investment
      • IT services
      • Motoring and transport
      • Public sector
      • Science
      • Social media
      • Talent and leadership
      • Telecoms
    • Advertise
    TechCentralTechCentral
    Home»Sections»Information security»Most common passwords of 2021

    Most common passwords of 2021

    Information security By The Conversation19 November 2021
    Facebook Twitter LinkedIn WhatsApp Telegram Email

    If you use “123456”, “password” or “qwerty” as a password, you’re probably aware that you’re leaving yourself vulnerable to hackers. But you’re also not alone – these are three of the top 10 most common passwords around the world, according to a new report.

    In partnership with independent researchers, password management service NordPass compiled millions of passwords into a dataset to determine the 200 most commonly used passwords around the world in 2021.

    They analysed the data and presented results across 50 countries, looking at how popular various choices were in different parts of the world. They also looked at password trends by gender.

    The findings show password choices are often attached to cultural references

    The findings show password choices are often attached to cultural references. For example, people across several countries take inspiration from their favourite football team. In the UK, “liverpool” was the third most popular password, with 224 160 hits, while the name of Chilean football club “colocolo” was used by 15 748 people in Chile, making it the fifth most common choice.

    In some countries, passwords relating to religion were popular. For example, “christ” was the 19th most common password used in Nigeria, used 7 169 times. Meanwhile, “bismillah”, an Arabic phrase meaning in the name of Allah, was used by 1 599 people in Saudi Arabia – the 30th most common choice.

    Top 10 most common passwords globally: NordPass

    Rank Password Count
    1 123456 103 170 552
    2 123456789 46 027 530
    3 12345 32 955 431
    4 qwerty 22 317 280
    5 password 20 958 297
    6 12345678 14 745 771
    7 111111 13 354 149
    8 123123 10 244 398
    9 1234567890 9 646 621
    10 1234567 9 396 813

    The report also reflected differences between genders. Women tend to use more positive and affectionate words and phrases such as “sunshine” or “iloveyou”, while men often use sports-related passwords. In some countries, men use more swear words than women.

    Justin Bieber and Slipknot

    While music-themed passwords were popular across both genders, choices like “onedirection” or “justinbieber” were more popular among women, whereas men favoured bands such as “metallica” and “slipknot”.

    Passwords remain the main authentication mechanism for computers and network-based products and services. But we know people continue to choose weak passwords and often don’t manage them securely, leaving themselves vulnerable to online security threats.

    Weak passwords are easy to guess and can be cracked with minimal difficulty by attackers using brute-force methods (trying all letter, number and symbol combinations to find a match). They are also easy targets for a dictionary attack, which is a systematic method attackers use to guess a password, trying many common words and variations of these.

    To overcome the security issues associated with password-based authentication systems, researchers and developers are now focused on creating authentication systems which don’t rely on passwords at all.

    In the meantime, two-factor authentication (2FA) or multifactor authentication (MFA) methods are a good way to secure your accounts. These methods combine a password with biometrics information (for example, a face scan or fingerprint) or something you have, like a token.

    You can create a password that’s both strong and memorable by combining three random words. Machine-generated passwords are also difficult to guess and less likely to appear in password dictionaries used by attackers.

    Of course, all of this is easier said than done. One of the challenges we face in today’s digital age is password overload

    But of course, all of this is easier said than done. One of the challenges we face in today’s digital age is password overload. And it can be difficult to remember complex passwords, particularly machine-generated ones.

    So it’s a good idea to use a reliable password manager for this purpose. Relying on your Web browser to remember your passwords is less secure – it’s possible attackers can exploit vulnerabilities in the browser to access stored passwords.

    NordPass’ findings, although not published in a peer-reviewed journal, align with what we know from similar lists published elsewhere – that the most popular passwords are weak.

    Hopefully, if you see one of your passwords on this list, it will be impetus to change it to something stronger. Ethical hackers – people who work to prevent computers and networks from being hacked – could also use these insights for good. On the other hand, we have to acknowledge the possibility that hackers could use this information to target password attacks. This should be all the more reason to strengthen your passwords.The Conversation

    • Written by Chaminda Hewage, reader in data security, and Elochukwu Ukwandu, lecturer in computer security, department of computer science, Cardiff Metropolitan University
    • This article is republished from The Conversation under a Creative Commons licence
    Share. Facebook Twitter LinkedIn WhatsApp Telegram Email
    Previous ArticleBitcoin’s rough week
    Next Article The Apple car is coming – and Tesla had better watch out

    Related Posts

    Fixing SA’s power crisis is not complex: it simply takes the will to do better

    12 August 2022

    Consortium makes unsolicited bid for state’s 40% stake in Telkom

    12 August 2022

    Actually, solar users should pay more to access the grid – here’s why

    12 August 2022
    Add A Comment

    Comments are closed.

    Promoted

    Get your brand in front of TechCentral’s amazing audience

    12 August 2022

    Pricing Beyond CMYK: printers answer the FAQs

    11 August 2022

    How secure is your cloud?

    10 August 2022
    Opinion

    No reason South Africa should have a shortage of electricity: Ramaphosa

    11 July 2022

    Ntshavheni’s bias against the private sector

    8 July 2022

    South Africa can no longer rely on Eskom alone

    4 July 2022

    Subscribe to Updates

    Get the best South African technology news and analysis delivered to your e-mail inbox every morning.

    © 2009 - 2022 NewsCentral Media

    Type above and press Enter to search. Press Esc to cancel.