Top 20 Most-Used UK Passwords Revealed: Avoid ‘Admin’ as Scams Skyrocket!

It’s the ideal scenario for a hacker. Despite ongoing admonitions to secure online profiles, recent research highlights that the password “admin” is the most frequently used in the UK.

Following closely in popularity is “123456”, which is similarly ineffective against cyber intrusions.

A yearly analysis by NordPass, a tech company, reviews the top 200 passwords and the findings are troubling for security specialists, law enforcement, and organizations combating fraud.

Cybersecurity experts consistently emphasize that simple passwords are easily cracked, yet many continue to ignore these cautions.

In the UK, the most common passwords include basic words, numerical sequences, and typical keyboard patterns. Among the top 20, various forms of the word “password” occupy five slots, with simple numbers sequences like “12345678” and “123456789” also appearing prominently. These choices are notoriously easy for hackers to breach.

This issue isn’t confined to the UK – users in Australia, the United States, and Germany also predominantly opt for “admin” when securing their digital access points. Globally, “123456” ranks as the top choice.

“Despite significant strides in cybersecurity education and awareness over the years, the data shows only slight improvements in password practices,” remarks Karolis Arbaciauskas from NordPass, a service designed to safeguard password security.

He adds, “Approximately 80% of data breaches result from compromised, weak, or reused passwords. Criminals will continue to escalate their efforts until they encounter a significant barrier.”

Understanding the Threat

As we juggle numerous passwords, many opt for the path of least resistance. Cybercriminals exploit these predictable choices to systematically breach individual accounts.

“The issue with easy-to-remember passwords is that they can be deciphered or guessed in moments through a ‘dictionary attack’, where a variety of common words and their simple variations are tested,” explains Arbaciauskas.

He further notes that frequent reuse of these passwords compounds the problem. Many users, overwhelmed by the number of accounts they hold, tend to recycle passwords, thereby jeopardizing their digital security and personal identity.

Recent data from Virgin Media O2 indicates that four out of five individuals use identical or nearly identical passwords across different online platforms, essentially giving hackers easy access to their accounts.

An attack might be recognized by unexpected notifications, such as attempts to change your email address or other account details.

Recommended Actions

Create long and complex passwords by combining three unrelated words (e.g., applepenbiro) or by mixing letters, numbers, and special symbols.

Avoid using the same password across multiple sites. Each account should have a distinct password to prevent a single breach from compromising all personal data.

Change any passwords now that are merely variations of the same theme, starting with those for critical accounts such as banking, email, work, and mobile.

Consider using password managers, which are often built into internet browsers like Apple’s iCloud Keychain and Google’s Password Manager on Android devices. These tools can generate and store complex passwords for you.

Enable two-factor authentication (2FA) on all vital services. This adds a layer of security by requiring a physical token or a text message code that only you can access.