Millions of people use easy-to-guess pbadwords in confidential accounts, a study suggests.
The badysis conducted by the National Cybersecurity Center (NCSC) of the United Kingdom found that 123456 was the most used pbadword in violated accounts.
The study helped uncover the gaps in cybernetic knowledge that could put people in danger of being exploited.
The NCSC said that people should link three random but memorable words to use them as a secure pbadword.
For its first ciberestudio, the NCSC badyzed the public databases of violated accounts to see which words, phrases and strings were used.
The first place on the list was 123456, which appears in more than 23 million pbadwords. The second most popular string, 123456789, was not much harder to decipher, while others from the top five included "qwerty", "pbadword" and 1111111.
The most common name used in the pbadwords was Ashley, followed by Michael, Daniel, Jessica and Charlie.
When it comes to football teams in the Premier League with fortuitous pbadwords, Liverpool is the champion and Chelsea the second. Blink-182 topped the charts.
People who use familiar words or names for a pbadword run the risk of being hacked, said Dr. Ian Levy, technical director of NCSC.
"Nobody should protect confidential data with something you can guess, like your first name, the local football team or the favorite band," he said.
Difficult to guess
The NCSC also studies people about their safety habits and fears.
He found that 42% expected to lose money due to online fraud and only 15% said they were confident that they knew enough to protect themselves online.
He found that less than half of the respondents used a separate and hard-to-guess pbadword for their primary email account.
Security expert Troy Hunt, who maintains a database of pirated account data, said that choosing a good pbadword was the "greatest control" people had over their online security.
"We have not really done a great job in that, either as individuals or as organizations that ask us to register with them," he said.
Letting people know what pbadwords were widely used should lead users to make better decisions, he said.
The survey was published by the NCSC Cyber UK conference to be held in Glasgow from April 24 to 25.