World Password Day: Your password could be cracked in seconds

Published on May 12, 2026

For years, cybersecurity experts have been nudging us to ditch simple passwords, yet as we celebrate World Password Day this May, the data shows that most of our passwords are still not strong enough. Such a password choice is a case of convenience vs. security, and unfortunately, convenience is winning at the expense of our digital safety.

Key takeaways

We keep using weak passwords because we manage many accounts every day, so creating and remembering complex passwords becomes hard. Recent data from NordPass reveals that the average person now manages 120 passwords. With that many accounts to track, most of us choose what’s easy to remember rather than what’s hard to hack.
In the US, “admin” remains the most common password, which automated tools can crack in seconds. In fact, Verizon’s 2025 Data Breach Investigations Report found that 88% of breaches involve weak or stolen credentials. That’s why you shouldn’t exchange security for convenience when creating passwords.
However, it’s not all on users — the platforms we trust often set the security bar too low. A NordPass study of the world’s top 1,000 websites found that 58% of them do not require special characters in passwords. When websites don’t enforce better standards, they’re encouraging bad habits. To keep your digital identity safe, create complex, unique passwords, combining lower- and upper-case letters, numbers, and special characters.

Sources for the infographic:

Go to the Research Lab

Past months in data

A bar chart of current month’s NordVPN Research Lab’s cybercrime statistics.

April 15, 2026

Tax season: A playground for identity thieves?

Tax filing season is often a time of stress and paperwork, but for cybercriminals, it’s one of the most profitable times of the year. Discover the latest statistics on tax-related fraud.

A picture of the current month’s NordVPN Research Lab’s cybercrime statistics.

Mar 6, 2026

The cost of heartbreak: Americans lost over a billion dollars to romance scams in 2025

As the world celebrates Valentine’s Day, love is in the air — and criminals are once again getting ready to tug at your heartstrings with romance scams.

February 15, 2026

Malicious shopping and delivery websites target consumers during the discount season

NordVPN’s Threat Protection Pro™ data shows a sharp rise in cyberattacks targeting holiday shoppers, with a 250% jump in fake shopping websites and an 86% increase in malicious postal service sites.

View All Articles