Fiber optic cables feed into a switch inside a communications room at an office in London, U.K., on Monday, May 21, 2018. The Department of Culture, Media and Sport will work with the Home Office to publish a white paper later this year setting out legislation, according to a statement, which will also seek to force tech giants to reveal how they target abusive and illegal online material posted by users. Photographer: Jason Alden/Bloomberg via Getty Images
How to protect yourself from hackers
02:18 - Source: CNN Business
World News 16 videos
Fiber optic cables feed into a switch inside a communications room at an office in London, U.K., on Monday, May 21, 2018. The Department of Culture, Media and Sport will work with the Home Office to publish a white paper later this year setting out legislation, according to a statement, which will also seek to force tech giants to reveal how they target abusive and illegal online material posted by users. Photographer: Jason Alden/Bloomberg via Getty Images
How to protect yourself from hackers
02:18
Now playing
- Source: CNN Business
Ivan Watson India Train Crash
Video shows scene of deadly train crash
02:44
Now playing
- Source: CNN
SCREENGRAB US China Warships Taiwan Strait
Video shows near collision between warships in Taiwan Strait
01:09
Now playing
- Source: CNN
egypt sandstorm 01
See massive sandstorm engulf Egypt's Suez Canal
00:51
Now playing
- Source: CNN
Romelu Lukaku emotional CNN
CNN Exclusive: Soccer superstar gives tearful tribute to grandfather
03:09
Now playing
- Source: CNN
leighton taiwan analysis thumb 2 vpx
Maps shows why a China, Taiwan conflict would be so devastating for the world
01:52
Now playing
- Source: CNN
LONDON, ENGLAND - JUNE 03: Ilkay Gundogan of Manchester City lifys the trophy at the end of the Emirates FA Cup Final between Manchester City and Manchester United at Wembley Stadium on June 03, 2023 in London, England. (Photo by Mike Hewitt/Getty Images)
Elton John bumps into Manchester City at the airport and gets serenaded
01:07
Now playing
- Source: CNN
Kim Jong Un Daughter vpx
Kim Jong Un's young daughter takes on a more public role. Expert thinks this is why
02:50
Now playing
- Source: CNN
SCREENGRAB Kenya starvation doomsday cult Paul Mackenzie
Reporter talks to pastor accused of leading doomsday starvation cult
01:57
Now playing
- Source: CNN
People try to escape from toppled compartments, following the deadly collision of two trains, in Balasore, India June 2, 2023, in this screen grab obtained from a video.
Chaos and hundreds injured after deadly train collision in India
00:58
Now playing
- Source: CNN
mexico human body parts found
Human body parts found in 45 bags outside major city in Mexico
02:22
Now playing
- Source: CNN
coral reef red sea
Something is missing in this coral reef and it's threatening an entire ecosystem
04:53
Now playing
- Source: CNN
video thumbnail italy forgotten villages
Europe is investing 20 million euros in these 'forgotten villages.' See what they're like
03:51
Now playing
- Source: CNN
Everest Rescue 2
See 'almost impossible' rescue from Mt. Everest
01:04
Now playing
- Source: CNN
PANO - YEVGENY PRIGOZHIN
Meet the oligarch who's stealing the limelight from Putin in Ukraine
04:05
Now playing
- Source: CNN
screengrab yunnan mosque
See before-and-after photos of forced mosque alteration in China
03:00
Now playing
- Source: CNN
CNN Business  — 

If “123456” is your password, it may be time for a change.

That was the unsurprising conclusion of a survey revealing the internet’s most vulnerable passwords, which also warned that codes using names, sports teams and swear words are more popular than you might think.

The survey, by the UK’s National Cyber Security Centre (NCSC), analyzed passwords belonging to accounts worldwide that had been breached.

Several combinations of numbers made up the top 10, while “blink182” was the most popular musical artist and “superman” the most common fictional character.

digital tablet
Sean Gallup/Getty Images/File

A 3-year-old boy repeatedly entered the wrong password, locked up his dad's iPad until 2067

But “123456” was the runaway winner, with 23.2 million accounts using the easy-to-crack code. “123456789” was used by 7.7 million, while “qwerty” and “password” were each used by more than 3 million accounts.

Ashley and Michael were the most common names used, followed by Daniel, Jessica and Charlie.

Liverpool topped the table of Premier League football clubs used as passwords, with Chelsea, Arsenal and Manchester United (“manutd”) making up the rest of the top four. Manchester City (“mancity”), by contrast, would finish in 11th place in the Premier League password standings.

The Dallas Cowboys (“cowboys1”) was the most popular NFL team nickname, while Sunday was the most used day of the week and August the most common month.

The top 10 most common passwords were:

  1. 123456
  2. 123456789
  3. qwerty
  4. password
  5. 111111
  6. 12345678
  7. abc123
  8. 1234567
  9. password1
  10. 12345

“iloveyou” just missed out on the top 10, while “monkey” and “dragon” made surprise appearances in the top 20. Plenty of users also used passwords as an opportunity to employ a colorful array of swear words.

OnBoard-Entertainment-AA-Seatback-Entertainment-Passengers
Courtesy American Airlines

Can airplane seat cameras spy on passengers?

The NCSC recommended using three “random but memorable” terms in a password, to reduce the risk of having an account breached.

“Password re-use is a major risk that can be avoided – nobody should protect sensitive data with something that can be guessed, like their first name, local football team or favorite band,” Ian Levy, NCSC Technical Director, said in a statement.

“Using hard-to-guess passwords is a strong first step and we recommend combining three random but memorable words. Be creative and use words memorable to you, so people can’t guess your password,” he added.