All internet users are being placed on red alert today as millions make a worrying error with their online security. It is time to check your passwords and ensure they are not too easy to crack.
Anyone heading online today might want to check that their accounts are fully secure. With endless accounts to manage, it is easy to fall into bad habits. World Password Day, observed on Thursday, May 7, serves as a timely reminder that many still leave their online accounts vulnerable to cyber threats.
Whether logging onto home Wi-Fi or accessing online services, millions continue to rely on passwords that can be cracked within seconds. Even more concerning, the same passwords are often reused across multiple accounts, making it far easier for cybercriminals to gain access to personal information.
Recent research from Hybrid Cloud Services found that one in eight people use a single password for all of their accounts, which is one of the worst practices for online security. The situation is not much better for many others, as around 36% of users employ between one and three passwords across everything they access online.
Only 19% of users use a different password for every account, which is considered one of the safest approaches to online security.
Despite years of warnings from cybersecurity experts, simple passwords such as 'admin', '123456', and 'password' remain among the most commonly used in the UK. According to NordPass, the following passwords are still widely used and should be changed immediately if you recognise any of them:
- admin
- 123456
- password
- 12345678
- 123456789
- Password1
- Password
- 12345
- Fornite21
- qwerty123
- abc123
Even users who believe their accounts are secure could still improve their protection. Experts recommend enabling two-factor authentication wherever possible, adding an extra layer of security that requires a second device or verification step before access is granted.
Creating longer, more complex passwords and using a password manager are also strongly advised to help manage credentials safely and reduce the temptation to reuse passwords.
Matt Cooke, EMEA Cybersecurity Strategist at Proofpoint, said: 'Passwords remain one of the first lines of defence, but reusing the same credentials across multiple accounts is where security starts to break down. Cybercriminals rely on this, particularly when combined with convincing phishing attacks.
'If there is ever a good time to improve your security habits, it is now. Avoid obvious or personal information in passwords, enable multi-factor authentication wherever possible, and use a password manager to handle the complexity. As a general rule, personal passwords should be updated twice a year, while business passwords should be refreshed every three months.'
Here are three simple ways to improve password security:
Use Passphrases Instead of Simple Passwords
Combine several unrelated words into a long passphrase, such as 'purple-umbrella-dragon-forest'. These are harder to crack while remaining easier to remember.
Generate Unique Passwords for Every Account
Use tools or password managers to create strong, random passwords so each account has its own secure login.
Use a Password Manager
Password managers securely store credentials, autofill login details, and make it easier to maintain strong, unique passwords across all accounts.
