From NordPass: 84% of the world’s most popular passwords can be cracked in less than a second

84% of the world’s most popular passwords can be cracked in less than a second


Cracking passwords is easier than you might think


According to NordPass research, 84.5% of the world’s most commonly used passwords can be cracked in less than a second.


Here are the top 10 passwords of 2021. All of these passwords can be cracked in less than one second. The full list can be found here:


  1. 123456
  2. 123456789
  3. 12345
  4. qwerty
  5. 12345678
  6. 111111
  7. 123123
  8. 1234567890
  9. 1234567


Overall, on the global list, 169 passwords out of the 200 can be cracked in less than a second. That’s 84.5%, whereas last year the passwords were a bit stronger — 73% of the passwords could be cracked in less than a second. Back in 2019, this number was 70%.


English speakers use weaker passwords


This year’s NordPass research looked not only at global trends but also at passwords in 50 different countries. Interestingly, we noticed that passwords in other languages take a bit longer to crack than English words. For example, in Italy, where many passwords were various Italian words and names, only 30.5% of passwords could be cracked in less than a second. However, in the US, the percentage is 75%, in the UK 66%, and in Canada 72%.


“The English language is used very commonly all over the world, so naturally, English words can be cracked easily. However, we don’t recommend using dictionary words, whether they’re Russian or Vietnamese, as hackers carry out what are known as dictionary attacks, during which they automatically check all dictionary words and see if your password is one of them,” says Chad Hammond, a security expert at NordPass.


How to create strong passwords


Hammond recommends remembering three simple rules for good password hygiene:


  1. Create lengthy, unique, and complex passwords. It’s also a good idea to use a password generator to create truly secure passwords.


  1. Store these passwords in a password manager. An average person has around 100 accounts, so it may be hard to remember all of these passwords.


  1. Set up multi-factor authentication (MFA). Whether that’s a physical security key, a code sent to your phone, or biometrics, it’s a good idea to add an additional security layer to your accounts.


How did NordPass calculate the time it takes to crack passwords?


The estimation of how long it takes to crack a password was performed by our Online Strength Checker. A password checker is a web tool that helps users evaluate their password strength.


However, the suggested time to crack a password should be treated more as a reference rather than a rule. The time the password is hacked depends on additional aspects, such as the computer technology used or the type of attack.




NordPass is a password manager for both business and consumer clients. It’s powered by the latest technology for the utmost security. Developed with affordability, simplicity, and ease-of-use in mind, NordPass allows users to access passwords securely on desktop, mobile, and browsers. All passwords are encrypted on the device, so only the user can access them. NordPass was created by the experts behind NordVPN — the advanced security and privacy app trusted by more than 14 million customers worldwide. For more information: