Global cybersecurity company Kaspersky recently analyzed major password breaches that occurred between 2023 and 2025, and found that the majority of passwords violated security guidelines and were being reused without being changed for long periods of time.
According to the research, 54% of leaked passwords were previously involved in previous data breaches. This suggests that users are repeatedly using weak passwords for years. Specifically, the average password age was approximately 3.5 to 4 years.
Users tended to include predictable elements, such as numbers, dates, and personally identifiable information, when creating passwords. The most frequently used password combination was "12345." Passwords were also frequently composed of specific years, words like "love," and usernames, making them vulnerable to brute-force attacks.
To overcome these limitations of password-based authentication, Kaspersky introduced Passkey technology into its Kaspersky Password Manager. Passkey is a next-generation login method that combines encryption keys with biometric authentication, protecting accounts from phishing and data breach threats. This allows users to easily log in while maintaining secure synchronization across multiple devices.
Lee Hyo-eun, head of Kaspersky Korea, emphasized, “Even in Korea, where the digital environment is highly developed, there are still many cases where people rely on weak or reused passwords,” and “It is essential to transition to a secure authentication method such as passkey.”
🔗 See more related articles
1. News about the company
2. Related industry trends