123456, Responsible and password They are the passwords that users most often choose to protect access to their accounts in digital services, but due to the ease they offer for guessing, they do exactly the opposite: compromising account security.
Specialized portal Comparitech has collected hundreds of the most used passwords in 2025which is the table they obtained from the collected data More than 2 billion account credentials were leaked to criminal channelsafter checking which ones have been updated for the current year.
In his classification, 123456 Specifically, it appears as the most frequently used password in the 7,618,192 accounts analysed. They follow in order 12345678found on 3,676,487 accounts and 123456789in 2,866,100 accounts.
Next comes the password ResponsibleWhich protects 1,987,808 accounts; password (1,082,010 times), 111111 (326,154 times) and admin123 (306,343 times), examples of this Weak passwords are among the 20 most common. And finally, in position number one hundred, it is minecraft (69,464 times).
The classification reveals the use of weak passwords, which pose no challenge to cybercriminals because they can easily guess them. One category is that It only contains numbers representing a quarter of the thousands of most common passwordsAs described on the specialized portal.
It is also common to resort to common and easy-to-remember words, as is the case with Responsible, QWERTY -which follows the arrangement of a row of keyboard keys- and password. In terms of length, the most common passwords are eight characters (18%), while those with 15 characters account for only 7%.
Currently, passwords are not viewed as an effective security measure, and it is recommended to supplement them with a second factor – a one-time code or mobile consent – that prevents their theft from allowing access to the victim’s account.
As an alternative The use of access codes or passkeys is promoted, Which only requires the user to authenticate using their face, fingerprint, or PIN. It is based on the Fast Identity Online 2 (FIDO2) standard, which secures login using an encryption key.
This key is public on the website and private on the user account where it is stored (a Microsoft or Google account, for example), which means that if the website suffers a security breach, the account will remain secure.
However, Passwords are still very popular, and therefore it is worth remembering that they must be strongin order to be able to perform its function. To do this, you must Avoid ones that are too short or that can be easily guessed -such as those listed in the Comparitech classification-, as well as those containing personal information.
It is recommended that it be a minimum of eight characters in length – ideally longer – in upper and lower case letters with numbers and symbols appropriate, and unique for each account. If it’s hard to remember them, It is best to use a password managerWhich stores them and allows you to change them when necessary.
About The Author
