Jakarta, domclub Indonesia
—
Latest research
Kaspersky
reveal the password combination ‘12345’ to be
password
the most common one that is still used by many people in the world.This password combination is vulnerable to being hacked by cybercriminals.
Kaspersky, in its latest research, also revealed that the majority of passwords that were cracked were not only weak in terms of security, but also did not change for a long time.
ADVERTISEMENT
SCROLL TO CONTINUE WITH CONTENT
“The most common password combination is ‘12345’, which drastically reduces cryptographic strength and shortens the time it takes for a brute-force attack to succeed,” Kaspersky said in a statement, Monday (8/12).
“Among other popular password components are the word ‘love’ and username, as well as country names which are also often included in passwords,” Kaspersky continued.
The research also found that users often use password patterns that are easy to guess, such as consecutive numbers, birth dates, or other popular words.
According to Kaspersky, around 10 percent of the passwords in the data set analyzed contained numbers resembling dates (between 1990-2025), and 0.5 percent of them ended in 2024 or the equivalent of one in every 200 leaked passwords.
Furthermore, Kaspersky also revealed that most of the leaked passwords remained unchanged for years.
Their research shows that by 2025, about 54 percent of leaked passwords will have been part of a previous data breach.This underscores the widespread reuse of outdated passwords.
“According to data analysis, the average age of passwords found in this leak is 3.5-4 years,” said Kaspersky.
These findings highlight critical vulnerabilities of password-based authentication when generation, management, and storage protocols are not strictly followed.Therefore, the industry is now starting to shift its focus towards solutions such as passkey that offer stronger protection against ever-evolving threats.
Passkey technology is based on cryptographic and biometric keys, and is not vulnerable to threats such as phishing or data leaks.Passkeys are generated for specific accounts on specific platforms and stored directly on the user’s device or in a password manager.
(dmi/dmi)
[Gambas:domclub Video]
