Only 5% of leaked password login attempts result in access being denied. 90% of these denied requests are bot-driven. The remaining 19% of login attempts fall under other outcomes, such as timeouts or users who changed their passwords
Only 5% of leaked password login attempts result in access being denied. 90% of these denied requests are bot-driven. The remaining 19% of login attempts fall under other outcomes, such as timeouts or users who changed their passwords — This cybersecurity statistic was published by Cloudflare in March 2025. It covers topics including Passwords, Credentials, Login attempt, Bot, Leaked password. The original data appears in Password reuse is rampant: nearly half of observed user logins are compromised . For the full methodology and detailed findings, refer to the original report.
Share or Copy this stat
Frequently Asked Questions
What does this statistic say?
Only 5% of leaked password login attempts result in access being denied. 90% of these denied requests are bot-driven. The remaining 19% of login attempts fall under other outcomes, such as timeouts or users who changed their passwords This data was published by Cloudflare and covers Passwords, Credentials, Login attempt, Bot, Leaked password.
Where does this data come from?
This statistic comes from Password reuse is rampant: nearly half of observed user logins are compromised , published by Cloudflare on March 17, 2025. You can view the original report at https://blog.cloudflare.com/password-reuse-rampant-half-user-logins-compromised/.
What cybersecurity topics does this cover?
This statistic relates to Passwords, Credentials, Login attempt, Bot, Leaked password. Browse more statistics on Passwords or from Cloudflare.