Go to top of page

Top 25 most common passwords

5 October 2017

Perhaps one day we will have a secure online world without passwords, but until then we must be vigilant in protecting our information online. 

Weak passwords are next to useless, with hackers able to crack your account in seconds.

Predictable words, sequential numbers, and personal information create weak passwords.

Using over five million passwords sourced from data leaks across the world, SplashData has identified the top 25 most common passwords:

1. 123456

2. password

3. 12345

4. 12345678

5. football

6. qwerty

7. 1234567890

8. 1234567

9. princess

10. 1234

11. login

12. welcome

13. solo

14. abc123

15. admin

16. 121212

17. flower

18. passw0rd

19. dragon

20. sunshine

21. master

22. hottie

23. loveme

24. zaq1zaq1

25. password1

Staying safe

If you have used any password on this list or have similarly weak passwords, change them now!

Weak passwords are easy for a criminal to guess, as they use automated software that can guess thousands of passwords per second.

Remember that making minor tweaks to words or using simple patterns does not make your password complex. In fact many sites will not accept passwords with sequential numbers, predictable words or no character variation. Many will even give you a strength rating on your password.

Instead, try to think of a string of three or four words that you can remember, for example ‘horsestapleshop’. Two other things you can do to keep your passwords as safe as possible include:

  • Install a password manager that stores all your passwords offline and can generate strong passwords for you.
  • Use two-factor authentication wherever possible. Creating, remembering and storing unique strong passwords for your accounts can be difficult, but it is worth it for your online security.

More information

Stay Smart Online has more information about creating and remembering strong passwords.