After a year of major cyber security breaches and attacks, it would make sense that everyone would have had a think about their personal security and change their password. But this year’s password results show that we have a long way to go when it comes to protecting our private data with passwords.

The Awful Password List is an annual list put together by NordPass which highlights the worst (or most popular) passwords of the year. Some of these passwords have been used for years and the results may shock you.

While “Qwerty” and “abc123” are obvious winners on the list, there are other less obvious but equality bad passwords such as “iloveyou” and “baseball”.

So here is the top 20 worse passwords just to give you an idea how bad they really are.

1. 123456

2. 123456789

3. 12345

4. qwerty

5. password

6. 12345678

7. 111111

8. 123123

9. 1234567890

10. 1234567

11. qwerty123

12. 000000

13. 1q2w3e

14. aa12345678

15. abc123

16. password1

17. 1234

18. qwertyuiop

19. 123321

20. password123

Most of these passwords can be cracked in less than one second, according to NordPass, while the best—like “myspace1″ and “michelle”—can take up to 3 hours.

So if you are reading this, CHANGE YOUR PASSWORD RIGHT NOW.

To protect your personal security and the privacy of your data, it is worth investing in a strong password and multi-factor authentication to keep the hackers out. This is why we recommend a password manager so that you can stop writing them down on paper or in your phone notepad.