Security experts have warned users to change AI-generated passwords immediately after new research revealed predictable patterns in chatbot-created credentials.
AI cybersecurity firm Irregular analysed passwords produced by leading large language models, including ChatGPT, Claude and Gemini. Although these tools often suggest complex combinations of letters, numbers and symbols, researchers found that they generate outputs based on learned patterns rather than true randomness. As a result, attackers could potentially crack them faster than expected.
Why AI-Generated Passwords May Be Vulnerable
AI-generated passwords may look secure at first glance. However, large language models rely on statistical probability rather than cryptographic randomness. Consequently, the passwords they produce often follow structural similarities.
Dan Lahav, co-founder of Irregular, urged users to act quickly. He said individuals who have relied on AI tools for password creation should update those credentials without delay. Furthermore, he stressed that many users may not realise the risk because they delegated password generation to automated systems.
According to Lahav, even older computers could break these passwords in a relatively short time if attackers understand the underlying patterns. Therefore, the issue sits in what experts describe as the “avoidable but high-impact” category.
Simple Steps to Strengthen Password Security
Although the warning may sound alarming, experts say the solution remains straightforward. For example, the National Cyber Security Centre (NCSC) advises users to create passwords using three random words and avoid reusing credentials across services. In addition, security professionals advise using reputable password managers that rely on cryptographically secure generators.
Graeme Stewart, Head of Public Sector at Check Point, explained that while the threat does not signal an immediate cyber crisis, weak password practices still create significant exposure when exploited. Therefore, updating vulnerable passwords now reduces future risk.
Importantly, users should also change default passwords on smart devices and avoid reusing credentials across multiple platforms. By taking these steps, individuals can significantly improve account security.
Growing Reliance on AI in Cybersecurity
As AI tools become embedded in daily workflows, organisations must strengthen cyber resilience across their operations. In fact, regional firms are already expanding their security capabilities, as seen in our coverage of CyberQ Group Global Growth Tour Expands Reach. Consequently, cybersecurity investment continues to grow both locally and internationally.
Overall, the warning highlights a broader lesson: while AI can enhance productivity, users must apply it carefully in security-sensitive contexts.
