Skip to main content
We're here with practical information for your business. Learn about business planning, running a business and more.

Search

  1. News
  2. Small business news

Start up business ideas

For a successful business, you need a viable business idea, the skills to make it work and the funding. Discover whether your idea has what it takes.

Set up a business

Forming your business correctly is essential to ensure you are protected and you comply with the rules. Learn how to set up your business.

Skills and wellbeing

Advice on protecting your wellbeing, self-confidence and mental health from the pressures of starting and running a business.

Business planning

Learn why business planning is an essential exercise if your business is to start and grow successfully, attract funding or target new markets.

Start up funding

It is likely you will need funding to start your business unless you have your own money. Discover some of the main sources of start up funding.

Tax and National Insurance

Businesses and individuals must account for and pay various taxes. Understand your tax obligations and how to file, account and pay any taxes you owe.

Business law

Businesses are required to comply with a wide range of business laws. We introduce the main rules and regulations you must comply with.

Sales and marketing

Marketing matters. It drives sales and helps promote your brand and products. Discover how to market your business and reach your target customers.

Business premises

Some businesses need a high street location whilst others can be run from home. Understand the key factors from cost to location, size to security.

Employees

Your employees can your biggest asset. They can also be your biggest challenge. We explain how to recruitment and manage staff successfully.

Business IT

It is likely your business could not function without some form of IT. Learn how to specify, buy, maintain and secure your business IT.

Grow your business

Few businesses manage the leap from start up to high-growth business. Learn what it takes to scale up and take your business to the next level.

Research shows weak passwords plague businesses of all sizes

3 September 2025
Submitted by Anonymous (not verified) on Wed, 09/03/2025 - 12:45

New study reveals poor password hygiene across small, medium, and large companies - putting sensitive data at risk.

When it comes to cybersecurity, size doesn’t always mean strength. NordPass, together with cybersecurity experts from NordStellar, has analysed thousands of credentials used across various industries and found one common thread in their newest research: weak passwords are everywhere, from local shops to global corporations.

"These are the organisations handling customer data, financial transactions, and sensitive intellectual property. Yet even at the enterprise level, we still see weak and reused credentials - and that’s an open invitation to attackers," says Karolis Arbaciauskas, head of product at NordPass.

The top 20 not-so-secret enterprise passwords

The research highlights how small businesses, mid-sized firms, and enterprises are using login details that would make any attacker’s job easy. Among the worst offenders are familiar classics like “123456”, “password”, and “11111111”, as well as company-related phrases and predictable number patterns.

Small businesses showed particularly casual habits, with passwords such as: 123456, ABCDEF, seila98, rally95fo, prestashop_demo, user@123, studlgu$$, Abcd1234, regalo111, and many more predictable passwords.

Enterprises, despite greater resources and higher stakes, were far from immune. Here are the top 20 not-so-secret passwords:

  1. 123456789
  2. 123456
  3. 12345678
  4. 11111111
  5. 123123
  6. 00000000
  7. password
  8. a123456
  9. 12345
  10. 1234567890
  11. a123456789
  12. 88888888
  13. qq123456
  14. 123321
  15. 000000
  16. 987654321
  17. woaini1314
  18. FQRG7CS493
  19. 123456789a
  20. P@ssw0rd

Why it matters

Weak or reused passwords remain a primary cause of breaches, phishing success, and credential-stuffing attacks. For small businesses, it could mean operational downtime or reputation loss; for enterprises, the stakes include regulatory fines, supply chain exposure, and significant financial damage.

The fix is simple, but often overlooked:

  • Ban default and predictable passwords. Companies need to enforce strong password policies, requiring complexity and regular updates to keep accounts secure.
  • Train staff regularly on cybersecurity basics. Employees remain the biggest entry point for attackers. Regular workshops and reminders about phishing, password hygiene, and safe sharing practices can drastically reduce risks.
  • Use a business-grade password manager. Password managers allow companies to securely store, share, and generate strong credentials. They also help avoid risky habits like writing down passwords or reusing them across multiple platforms.
  • Move toward passkeys and multi-factor authentication. MFA adds an extra layer of protection by requiring additional verification, while passkeys are an even stronger, passwordless option that’s gaining traction in enterprise security.

"Whether you’re a two-person start up or a multinational, your cybersecurity is only as strong as your weakest password," Arbaciauskas adds. "It’s time to treat credentials with the same care as your most valuable assets."

Story issued by Gabriele Gecaite, Nordpass Public Relations.

News type: 
Small business news

Stay up-to-date with business advice and news

Sign up to this lively and colourful newsletter for new and more established small businesses.