These are the worst passwords you can use

With cyberattacks resulting in hundreds of millions of leaked records and over $1 billion stolen in 2015, you might think people are starting to get wise about online security.And you would be wrong.Password management application company SplashData released its fifth annual report of the "worst passwords" that people can use, based on data it analyzed among 2 million passwords leaked by hackers in 2015.The number one worst password — and the same one from 2014 — was "123456." In the number two spot was "password," which was also in the same spot on the list as last year.Some other new passwords showed up, such as "login," "welcome," and "passw0rd."

There were quite a few Star Wars fans out there as well, since new entries also included "starwars," "solo," and "princess."But it's important to note that these choices are incredibly easy for a hacker to guess. Many of the most common passwords are loaded into software designed to crack accounts that run through a text file dictionary, trying each one, or combining words together.So if your password is on the list, you should change it immediately."We hope that with more publicity about how risky it is to use weak passwords, more people will take steps to strengthen their passwords and, most importantly, use different passwords for different websites," said Morgan Slain, CEO of SplashData, in a statement.

Here's the 25 worst passwords of 2015:

1. 123456 (unchanged from 2014)
2. password (unchanged)
3. 12345678 (Up 1)
4. qwerty (Up 1)
5. 12345 (Down 2)
6. 123456789 (Unchanged)
7. football (Up 3)
8. 1234 (Down 1)
9. 1234567 (Up 2)
10. baseball (Down 2)
11. welcome (New)
12. 1234567890 (New)
13. abc123 (Up 1)
14. 111111 (Up 1)
15. 1qaz2wsx (New)
16. dragon (Down 7)
17. master (Up 2)
18. monkey (Down 6)
19. letmein (Down 6)
20. login (New)
21. princess (New)
22. qwertyuiop (New)
23. solo (New)
24. passw0rd (New)
25. starwars (New)