Millions Still Rely On Weak Passwords Despite Rising Cyber Threats

Passwords are meant to protect your online accounts, but many users continue to rely on predictable choices. A 2025 survey found that common passwords like “123456,” “qwerty,” “admin,” “password,” and “India@123” remain widely used.

Researchers at Comparitech analysed data from over 2 billion accounts exposed in security breaches in 2025. They found that “123456” was used by more than 7.6 million people, while over 1.9 million accounts used “admin”. Even passwords like “India@123” ranked among the top 100 most common, highlighting how easily hackers could gain access.

Experts recommend using strong, unique passwords for every account. Microsoft advises passwords of at least 12 characters, combining uppercase and lowercase letters, numbers, and symbols. Avoid personal information such as names of family members, pets, or favourite characters.

The report comes shortly after the Louvre Museum revealed a security flaw in its primary system, which reportedly used the simple password “LOUVRE”. The vulnerability was uncovered by France’s national cybersecurity agency, ANSSI, following a high-profile theft in the Apollo Gallery on October 19.