Millions of people use easy-to-guess passwords in confidential accounts, a study suggests.
The analysis conducted by the National Cybersecurity Center (NCSC) of the United Kingdom found that 123456 was the most used password in violated accounts.
The study helped uncover the gaps in cybernetic knowledge that could put people in danger of being exploited.
The NCSC said that people should link three random but memorable words to use them as a secure password.
For its first ciberestudio, the NCSC analyzed the public databases of violated accounts to see which words, phrases and strings were used.
The first place on the list was 123456, which appears in more than 23 million passwords. The second most popular string, 123456789, was not much harder to decipher, while others from the top five included "qwerty", "password" and 1111111.
The most common name used in the passwords was Ashley, followed by Michael, Daniel, Jessica and Charlie.
When it comes to football teams in the Premier League with fortuitous passwords, Liverpool is the champion and Chelsea the second. Blink-182 topped the charts.
People who use familiar words or names for a password run the risk of being hacked, said Dr. Ian Levy, technical director of NCSC.
"Nobody should protect confidential data with something you can guess, like your first name, the local football team or the favorite band," he said.
Difficult to guess
The NCSC also studies people about their safety habits and fears.
He found that 42% expected to lose money due to online fraud and only 15% said they were confident that they knew enough to protect themselves online.
He found that less than half of the respondents used a separate and hard-to-guess password for their primary email account.
Security expert Troy Hunt, who maintains a database of pirated account data, said that choosing a good password was the "greatest control" people had over their online security.
"We have not really done a great job in that, either as individuals or as organizations that ask us to register with them," he said.
Letting people know what passwords were widely used should lead users to make better decisions, he said.
The survey was published by the NCSC Cyber UK conference to be held in Glasgow from April 24 to 25.