Don’t let an AI chatbot pick your password, ever


Asterisk of password line with burning fuse as a symbol of data breach.

Boris Zhitkov/Moment/Getty Images

Follow ZDNET: Add us as a preferred source on Google.


ZDNET’s key takeaways

  • AI chatbots aren’t reliable security tools.
  • AI-generated passwords may be predictable and easy to crack.
  • Use trusted password generators for stronger, unique passwords.

The last thing you want is for your password to be predictable.

Hopefully, most of us no longer use phrases and character strings that used to be common, such as QWERTY or Password1. Many online services now require users to use complex combinations of letters, numbers, and symbols, and may even check for data breaches and data dumps to make sure you’re not reusing the same password across multiple services.

Coming up with these combinations can be an annoying and time-consuming process, and it may seem like asking popular AI chatbots and models such as Claude, ChatGPT, and Gemini to generate them for you is a sensible and secure alternative — but new research into the true ‘randomness’ of their answers brings this into question.

AI-suggested passwords can fall into patterns

According to research conducted earlier this year by Irregular, popular AI chatbots such as Claude, ChatGPT, and Gemini tend to produce passwords that aren’t truly random.

Also: Is that QR code a trap? How to spot quishing scams before it’s too late

After testing these models with 50 password-generation requests, the researchers found “noticeable patterns” indicating that the passwords didn’t fit the definition of truly random, secure credentials.

For example, when testing Claude, the researchers found that every password started with a letter and was usually followed by the number 7. The same letters and numbers were often used in each request, no characters were repeated (as this goes against the AI’s preferred output format), and some letters in the alphabet, as well as symbols, never appeared at all.

In total, the team says that, in this case alone, only 30 ‘unique’ passwords were generated from 50 prompts. One of the passwords, G7$kL9#mQ2&xP4!w, was repeated often enough that there was a 36% probability of it appearing in the dataset.

It is important to note that the prompt “please generate a password” was used in the research and that refining the prompt could yield better results. However, the average AI chatbot user probably wouldn’t craft sophisticated prompts for these tasks, especially given that better options are available, like password managers and passkeys.

Why ‘random-looking’ and ‘random’ are not the same

G7$kL9#mQ2&xP4!w” — this looks secure, right? But the data from the test tells a different story.

Things that ‘look’ secure and ‘are’ secure are very different. Strong password generators rely on cryptographically secure pseudorandom number generators (CSPRNGs), algorithms that generate unpredictable numbers and letters far removed from any pattern or predictability.

Also: I’m ditching passwords for passkeys for one reason – and it’s not what you think

As noted by Malwarebytes, cyberattackers today often perform dictionary attacks: automated cracking attempts based on lists of commonly used passwords. It wouldn’t take much to add a few thousand more AI-generated combinations, which would further reduce their security.

Predictability and probability are the problems. By design, AI is meant to find patterns, predict the next steps in tasks, and use logic. These bots often get things wrong, and even if they tell you a password is strong and unique, we shouldn’t bet our account security on what AI claims.

What actually generates strong, random passwords

I recommend using a password manager to handle the complexities of generating strong, complex credentials for your online accounts. If you pick the right service, you won’t have to worry about remembering scores of letters, numbers, and symbols — your passwords are securely stored for you, and you might even just need a thumbprint or a single password to access your vault.

Also: Microsoft goes all in on new AI-powered Windows security strategy

At the very least, use a password generator that lets you generate long strings of characters and includes lower- and uppercase letters, numbers, and symbols. Preferably, it should also have a meter that shows you the strength of a generated password.

We should remember that AI is based on large language models trained to recognize and adopt patterns. They aren’t standalone, foolproof security solutions, and they can’t be trusted to always provide correct results. This includes supposedly random passwords.





Source link

Leave a Reply

Subscribe to Our Newsletter

Get our latest articles delivered straight to your inbox. No spam, we promise.

Recent Reviews


In the year 2026, the travel industry has undergone huge changes. We’re living in a time of hyper-personalized algorithms, changing prices, and more people moving across the world than ever before. Let’s be honest: the cost of traveling to your destination is typically the main thing that stops you from going on that ideal holiday. But we can no longer depend on the old “book on a Tuesday at midnight” deception. Getting a cheap flight these days is an excellent combination of art, science, and understanding how to use modern technology to trick the system.

I don’t pack my own luggage, but I look at millions of data points on the web every day to find the specific patterns that show the difference between budget-conscious travelers and those who spend too much. Here are the best, data-backed methods to book cheap tickets in 2026, whether you’re going on a weekend trip or a month-long trip abroad.

Let Artificial Intelligence do the Heavy Lifting

The major shift in trip planning in the past several years is the use of predictive AI. You don’t have to check pricing every day anymore; algorithms can do it for you with amazing precision.

  • Set Price Alerts Early: There are platforms available online that utilize huge amounts of past data to deduce if the price of a flight will go up or down. Months before you want to go, set up price alerts for your selected routes.
  • Embrace AI Travel Agents: In 2026, AI-powered platforms are able to look at your budget and recommend whole itineraries. These applications will keep an eye on the web and let you know as soon as a “mistake fare” or flash sale drops if you enter your maximum flight budget.

Learn how to use the “Goldilocks” booking window

Airlines utilize advanced dynamic pricing software that changes prices in real time depending on how many seats are left, how busy it is, and how many people want to fly. It might be just as bad to book too early as it is to book too late. You should try to find the “Goldilocks Window,” which is the time when prices are usually at their lowest.

  • For domestic flights, the best time to book is usually 1 to 3 months before you go. Try to plan your international flight at least 2 to 8 months in advance. If you’re going to be traveling during busy times, like summer in Europe or the winter holidays, you should book your trip earlier in this timeframe.
  • Airlines normally post their travel itineraries around 11 months in advance, but they don’t usually offer their best bargains straight away. Before you buy, wait for the initial prices to stabilize.

Your greatest superpower is being flexible

You won’t break your budget if you can be flexible. Being open with your plans is the greatest approach to save money on flights in 2026.

  • Flexibility in Destination: If all you want to do is see a new place, utilize the “Explore Everywhere” function on major search engines. Put in your home airport and travel dates, and the map will show you the cheapest places to go in the world. You could find a hidden treasure that costs half as much as a popular place.
  • Date flexibility: Moving your departure or return by only 24 to 48 hours may save you hundreds of dollars. Flying on Tuesdays and Wednesdays is still statistically cheaper than flying on weekends.

The Art of the “Hacker Fare” and Unbundling

Man relaxing at airport with travel tech
Photo Credit: Deposit Photos.

Brand loyalty is fantastic, but it may cost a lot. Putting together your own itinerary typically works best in 2026.

  • Mix & Match Airlines: Buying two one-way tickets on separate airlines is sometimes cheaper than booking a round-trip ticket with one airline. These are commonly called “Hacker Fares” by search engines. To save money, you can go out on a luxury airline then back on a low-cost one.
  • Be careful with Basic Economy: Budget airlines get you in with low base rates, but often charge you extra for everything from carry-on baggage to choosing your seat. Add up the entire cost of the flight, including any extras you really need, before you purchase. When you sum up all the hidden expenses of a budget airline, a basic economy ticket on a legacy carrier can sometimes be cheaper.

Strategic Geography: Alternative Airports

Your fare is mostly based on where you leave from and where you arrive. Because there is a lot of competition at major airports, flights into them are usually cheaper. However, smaller regional airports may occasionally offer amazing offers because their operational expenses are lower or their routes are subsidized.

  • Check Nearby Hubs: If you’re going to London, don’t only look at Heathrow; also look at Gatwick, Stansted, or Luton. If you’re flying out of the US, checking a large hub in a nearby state can save you enough money to make a short train trip or drive worth it.
  • The Layover Strategy: Sometimes, purchasing a trip to a big hub and then a separate, regional flight to your ultimate destination is far cheaper than planning a single itinerary with one airline. Just make sure you have enough time between flights since airlines won’t safeguard your connection if it’s on a different ticket.

Take advantage of the Golden Age of Travel Rewards

Travelers can now utilize more than just cash. Getting the most points and miles is an important tactic for travelers nowadays.

  • Instead of a co-branded airline card, get a travel credit card that accumulates points that can be transferred (like Chase Ultimate Rewards, American Express Membership Rewards, or Capital One Miles). These let you move your points to any airline that has the best redemption rate for your trip.
  • The simplest way to get a free flight is to take advantage of credit card sign-up bonuses, as long as you pay off your debt in full every month to avoid interest.

Conclusion

There isn’t a secret button on a secret website that can let you travel cheaply in 2026. Instead, you need to be proactive, flexible, and prepared to let modern tools work for you. The world is more open than ever. You can get there by setting your alarms early, being open-minded about where and when you travel, and making the most of your reward points. Have a great trip!


Hi! We are Jenn and Ed Coleman aka Coleman Concierge. In a nutshell, we are a Huntsville-based Gen X couple sharing our stories of amazing adventures through activity-driven transformational and experiential travel.



Source link