For the second consecutive year, “123456” has emerged as the most common password in India, as reported by NordPass. Despite attempts by users to enhance security with added symbols, many continue to employ easily guessable combinations. Experts caution that weak and reused passwords account for 80% of data breaches, emphasizing the need for stronger, unique credentials.
Published Date – 19 November 2025, 02:41 PM
New Delhi: The report released on Wednesday indicates that ‘123456’ continues to reign as India’s most common password, maintaining its position for another year. NordPass’s data, which scrutinizes passwords used globally across 44 countries, highlights the generational differences in password preferences.
The findings reveal that Indian users persist in employing weak and easily predictable passwords. Following ‘123456,’ popular choices include ‘Pass@123’ and ‘admin,’ along with basic numeric strings such as ‘12345678’ and ‘12345.’ Combinations featuring symbols, like ‘Admin@123’ and ‘Password@123,’ remain relatively simple to decipher.
This research underscores that while many individuals attempt to complicate their passwords with symbols or mixed characters, the fundamental patterns are predictable and vulnerable to hacking attempts. Personal identifiers also frequently manifest in password selections, with names and national references appearing in forms such as ‘Kumar@123’ and ‘India@123.’ Experts warn that although these combinations may seem more unique, they still follow recognizable formats, making them susceptible to automated attacks.
On a global scale, the situation is equally concerning. “123456” maintains its status as the world’s predominant password choice, followed closely by ‘admin’ and ‘12345678.’ Simple numeric sequences dominate password lists across various countries, with trends reflecting a concerning consistency in user behavior.
Researchers noted a noteworthy increase in the incorporation of special characters; this year, 32 passwords featured symbols, a stark rise from just six the previous year. However, many of these continue to be predictable variations based on commonly used words or sequences.
Karolis Arbaciauskas, head of product at NordPass, asserted that improvements in password hygiene have been sluggish despite several awareness initiatives over the years. He emphasized that until passwordless authentication alternatives like passkeys gain traction, the necessity for robust and distinctive passwords remains critical. Arbaciauskas cited that approximately 80% of data breaches arise from weak, reused, or compromised passwords.
The report further indicates minimal generational differences in password usage, revealing that popular choices among 18-year-olds are notably similar to those favored by octogenarians. Numeric sequences, such as ‘12345’ and ‘123456,’ dominate usage across all age groups.
