Top 200
Most Common Passwords:
Generations change, password habits remain
Seven years since our first top 200 common passwords list, we’ve witnessed how credential trends have changed — and what has remained the same. Each year, we rediscover people’s tendency to opt for weak passwords that prioritize convenience over security.
However, this year, we decided to ask ourselves: How do different generations treat their password use? From the silent generation to the “zoomers,” we analyzed which passwords are the most common among different user groups. As it turns out, bad password habits are trendy no matter how old you are.
Research breakdown
Methodology
The Top 200 Most Common Passwords report is the result of a joint effort between NordPass and NordStellar, prepared in collaboration with independent researchers specializing in cybersecurity incidents. Recent public data breaches and dark web repositories were analyzed from September 2024 to September 2025 to identify statistically aggregated data. No personal data was acquired or purchased for this research.
Global insights
The data was carefully organized and categorized by the country of origin, allowing us to uncover specific regional password trends and vulnerabilities in 44 countries.
Generational analysis
This year’s research comes with a twist. We wanted to gain a better understanding of generational password habits, spanning from the silent generation to Generation Z. Passwords and their corresponding metadata, including dates of birth where applicable, were reviewed. This allowed us to assign passwords accurately to their respective age groups and provided us with relevant statistical data.
Cultural footprints: Common passwords by country
After years spent carefully examining exposed passwords, we have observed numerous variations made using a first name or a surname alongside some numbers — think “kristian123” or “Joan89.”
Although these cases rarely make it to the top global entries, we’ve noticed a clear pattern: In each country, the most common first names and surnames often appear in passwords, proving that geography and culture play a significant role in shaping common — yet vulnerable — security practices.
Findings
Make your passwords tough to break
Discover how NordPass can help you create strong and unique passwords on the spot to prevent unauthorized access to your personal accounts.
The myth of the “digital native”
We tend to assume that the younger generations online are digital natives — having grown up immersed in the online world, they possess an innate understanding of cybersecurity and its risks.
However, our research has debunked this misconception: In fact, the password habits of an 18-year-old are strikingly similar to those of an 80-year-old. Take a closer look at how common password vulnerabilities persist across five generations* of digital residents.
*Generations are classified as follows: Generation Z (1997-2007), millennials (1981-1996), Generation X (1965-1980), baby boomers (1946-1964), silent generation (born before 1946)
| Rank | Password |
|---|---|
| 1 | 12345 |
| 2 | 123456 |
| 3 | 12345678 |
| 4 | 123456789 |
| 5 | password |
| 6 | 1234567890 |
| 7 | skibidi |
| 8 | 1234567 |
| 9 | pakistan123 |
| 10 | assword |
Password trends in 2025: Key insights
“123456” holds its throne
It’s official: “123456” has once again claimed the controversial title of the world’s most common password — and one of the weakest. That marks six out of seven years this password has topped our chart, with “password” claiming the honor just once. The message is clear: Users favor simplicity, even at the cost of personal security.
Old habits for young generations
Much to our surprise, password quality is poor across all generations. Where we expected discerning differences, we actually faced a striking uniformity in vulnerabilities. “12345” and “123456” emerged as the top password choice in every age group, and other simple numeric sequences we saw in the global list, like “1234567” or “1234567890,” also ranked high.
Password hygiene awareness is still lacking
Despite significant efforts over the years to educate users about cybersecurity through awareness campaigns, our data shows little improvement in widespread password hygiene and security habits. With the number of breach cases growing each year, the problem remains as prevalent and dangerous as ever, suggesting that current approaches fail to drive meaningful change.
Numbers, countries, and hobbies: Password trends in 2025
From profanities and lucky numbers to replacing letters with special symbols: Take a closer look at the most common password trends among users worldwide.
Password safety tips
While we hope you didn’t spot your password on the list, we have some tips you can easily implement in your everyday digital life to keep your personal data secure from cyberattacks.
Use strong passwords and passphrases
Stay resilient against data breaches. A strong password should contain at least eight characters and use a mix of uppercase and lowercase letters, numbers, and special symbols. You can also use sequences of words known as passphrases.
Keep all your passwords unique
Leave the habit of reusing passwords behind and keep your accounts secure. Using unique passwords for all accounts ensures that even if one of them is breached, the rest will remain secure.
Review your credentials regularly
Keep an eye out for potential vulnerabilities by checking your passwords regularly. Identify any weak, old, or reused passwords, and upgrade them to new, stronger combinations to stay safe online.
Switch on multi-factor authentication
Add an extra layer of security to your accounts by switching on multi-factor authentication (MFA). Each time you log in, you’ll need to verify your identity, giving cybercriminals a hard time trying to access your accounts.
Make it easy with a password manager
Keeping your accounts secure with strong passwords is easier than it might seem. With a password manager, you can generate, store, and manage all your passwords and ensure they’re securely protected and always within your reach.
A different security approach with passkeys
Backed by the FIDO Alliance, passkeys are the modern solution to the password problem. At NordPass, we’re one of the early adopters of passkey technology, allowing our users to enjoy a secure and smooth passwordless online experience.
Get in touch
If you’d like more information about the most common password lists or would like to set up an interview, contact us at [email protected], and we will get back to you shortly.