How Fast Can A Cybercriminal Crack Your Password?

Research from NordPass, a password management firm, found that 73 percent of the 200 most popular passwords in 2020 can be hacked in less than a second.

Unfortunately, millions of people still use weak passwords, which leaves them vulnerable to "brute-force" password attacks. This type of attack is an automated method of guessing your password by checking it against popular passwords and known personal information like your name, address, favorite sports/teams or pet names.

Cybercriminals have become proficient in translating Leetspeak, which replaces English letters with similar-looking numbers and symbols. They also can locate any of your accounts that have been breached in the past and use those passwords to access other accounts. For this reason, it is essential that users assign a different password for each of their accounts.

A strong password that is difficult to crack will be unique, lengthy, and contain letters, numbers, and special characters. Users can further strengthen account security by utilizing multi-factor authentication. "Report: Majority of passwords can be cracked in a second" (Jan. 22, 2021).


Along with creating unique passwords, it is important to make the passwords strong through complexity. Research shows that a 10-character password of all lower-case letters can be cracked in just over three months. A 10-character password that includes a mix of upper- and lower-case letters, numbers, and special characters will take over three millennia to crack.

Reusing the same password is a common mistake and key security risk.

Consider using password management software that will assign and store strong passwords.

Finally, your opinion is important to us. Please complete the opinion survey:


Credential Stuffing Attacks: What Types Of Organizations Are The Most Vulnerable?

A British institution falls victim to a credential stuffing system attack, shutting down its mobile access. Read about this cyber threat and how to protect your system. Read More

Microsoft Exchange Hack: Update Needed ASAP

Patches often fix vulnerabilities that cybercriminals are exploiting. Read why automatic updates are important, especially after the Exchange hack by a foreign agent. Read More

Malware Rarely Announces Itself But Waits In The Shadows

A newly identified malware on Mac computers that seems active, has yet to execute a payload. Security experts are baffled. Understanding current threats is a key defense. Read More