Cyber criminals can find your password online in a mere 3 minutes, according to a professional hacker. Is your password secure?

Cyber criminals can find your password online in a mere 3 minutes, according to a professional hacker. Is your password secure?

In the digital age, the threat of cybercriminals looms large, and a new report reveals just how vulnerable we are to password theft. A professional ethical hacker, Brandyn Murtagh, has shown how easy it is for cybercriminals to find someone's password online in less than three minutes, using publicly available data breaches.

The danger is particularly high for those who reuse passwords or use weak ones. In 2025, nearly half (46%) of enterprise passwords tested were vulnerable to cracking, demonstrating the prevalence of weak or compromised passwords. Moreover, over 2.8 billion passwords were posted on criminal forums in 2024, providing a vast database for attackers to exploit.

Credential theft is on the rise, with an 800% increase reported this year, fueled by the proliferation of inexpensive, widely available infostealer malware designed to harvest saved passwords and other sensitive data directly from infected devices.

Protecting Your Accounts

To safeguard against these threats, it is crucial to adopt vigilant password hygiene. Here are some key tips:

1. Use strong, unique passwords for every account: Avoid common or reused passwords by creating complex passwords combining letters, numbers, and special characters.
2. Enable two-factor authentication (2FA): This adds an additional verification layer, significantly reducing unauthorized access even if a password is compromised.
3. Use a reputable password manager: It helps generate and store strong unique passwords, but ensure your device is secure from malware, as infostealers can steal stored password data before encryption.
4. Regularly monitor account activity: Set up alerts for suspicious logins or actions and change passwords immediately if any unauthorized access is detected.
5. Be cautious with phishing attempts and remote access scams: Cybercriminals often use fake login pages or social engineering techniques to trick users into revealing passwords or access.
6. Keep your devices secure and updated: Use antivirus software and regularly update software to defend against malware that targets stored credentials.

The Importance of Strong Passwords

The importance of strong, unique passwords cannot be overstated. Virgin Media O2's spokesperson, Murray Mackenzie, emphasized the significance of using strong, unique passwords for email, phone, social media, and online banking. Brandyn Murtagh has been recruited by Virgin Media O2 to help get Brits password secure this summer.

Despite the risks, many people still cling to predictable password choices. 32% of Brits use children or pet names as passwords, with 14% including their own date of birth. The same number (7%) of Brits have also used 'password1' as a login. Changing passwords is seen as a worse task than untangling a drawer of charging cables (15%), sitting through a three-hour meeting (9%), or standing on a plug with bare feet (6%).

However, 25% of Brits use a password manager, while 22% write them down somewhere. Despite knowing they shouldn't, 45% of adults try to hang onto the same old combinations they've always used as passwords.

The Impact of Weak Passwords

The consequences of weak passwords can be severe. Brandyn Murtagh used publicly available data breaches to find volunteers' passwords, including ones being used today. After successfully revealing the passwords, he worked with volunteers to safeguard their accounts and offered tips such as never re-using the same password, using a minimum of 14 characters and random phrases, and always implementing two-factor authentication where possible.

Surprisingly, 11% of Brits believe there's no issue sticking to their predictable password choices. Boomers are more vigilant than Gen Z when it comes to keeping their accounts safe; 43% of Gen Zs have an easy-to-guess password, compared to 20% of the older generation.

Shockingly, 27% have never changed the password for an email account, and 35% haven't refreshed a combination for their bank account. More than one in 20 Brits have used the word 'password' as a password, according to a poll by Virgin Media O2.

Virgin Media O2 works to keep customers safe from cybercriminals by blocking millions of fraudulent texts, malware, spyware, and flagging harmful websites and suspicious calls. By following these tips and staying vigilant, you can significantly reduce the risk of becoming a victim of password theft.

1. In the digital age, where the threat of cybercriminals is significant, especially in areas like personal-finance and technology, it's essential to prioritize strong password hygiene to safeguard accounts, as weak or reused passwords leave them highly vulnerable to attack.
2. To protect accounts from credential theft, which has seen an 800% increase this year, it's crucial to not only use strong, unique passwords but also enable two-factor authentication, utilize a reputable password manager, regularly monitor account activity, and be cautious of phishing attempts and remote access scams, as storing passwords securely is vital to maintaining cybersecurity in the digital age.

Read also: