Common Mistakes That Make Your Passwords Easy Targets

Discover strategies to strengthen your passwords and protect your accounts from cyber threats

By
Paul Gil
Paul Gil
Writer
    Paul Gil, a former Lifewire writer who is also known for his dynamic internet and database courses and has been active in technology fields for over two decades.
    lifewire's editorial guidelines
    Updated on June 16, 2025
    Reviewed by
    Jon Fisher
    Jon Fisher headshot
    Reviewed by Jon Fisher
    • Wichita Technical Institute
    Jonathan Fisher is a CompTIA-certified technologist with more than 10 years of experience writing for publications like TechNorms and Help Desk Geek.
    lifewire's editorial guidelines
    Laptop with strong password options onscreen with a kitty nearby

    Alex Dos Diaz / Lifewire

    The Download

    • Never use simple words or personal info in passwords, as they are easy for hackers to guess.
    • Mixing letters, numbers, and symbols strengthens passwords, making them harder for hacking tools to crack.
    • Using a password manager helps keep your passwords safe and makes them difficult to forget.

    This article explains the difference between a strong password and a weak one. It includes tips and examples for making a password stronger.

    Examples of Weak Passwords

    Hackers use automated software to make hundreds of password guesses per minute. These tools rely on lists of dictionary words for sequential guessing. Some tools even add common symbols, numbers, or signs to mimic attempts at more complex passwords.

    Never use "password" as your password, as it's a common mistake many people make.

    Dictionary hacking tools using English word lists can easily find passwords. If a simple word doesn't work, the tool modifies it and tries other versions. For example, a Dictionary hacking tool would attempt these iterations of the word Dog:

    • Dog
    • Dogs
    • Dogcatcher
    • Dogcatchers
    • Dogberry
    • Dogberries
    • Dogma
    • Dogmatic
    • Dogmatized
    • Dog1
    • Dog2
    • Dog3
    • Dog4

    Password-guessing tools try hundreds or thousands of words each minute. If a password is similar to a dictionary word, it's highly insecure. Passwords without regular word patterns are harder for these tools to guess.

    Passwords that include personal information, like birthdates or street addresses, are easy targets for hackers.

    How to Make Your Password More Secure

    To keep your accounts secure, make a strong password that's difficult to guess and store it in a password manager so you won't forget. A strong password is more resistant to guessing, so it's unlikely to be found in a brute force dictionary hack.

    The best way to create a secure password is to start with a simple password and turn it into a complex one.

    The table below shows examples of a simple password that is progressively made more complex. The first column lists simple words that are easy to remember and are found in the dictionary. The second column is a modification of the first column. The last column shows how the simple password is converted into one that is harder to figure out.

    Weak Password Better Password Strong Password
    kitty 1Kitty 1Ki77y
    susan Susan53 .Susan53
    jellyfish jelly22fish jelly22fi$h
    smellycat sm3llycat $m3llycat
    allblacks a11Blacks a11Black$
    usher !usher !ush3r
    ebay44 ebay.44 &ebay.44
    deltagamma deltagamm@ d3ltagamm@
    ilovemypiano !LoveMyPiano !Lov3MyPiano
    Sterling SterlingGmal2015 SterlingGmail20.15
    BankLogin BankLogin13 BankLogin!3

    Here are other examples of password variations that purposely avoid using complete English word patterns:

    • Dog.lov3r
    • dOG.lov3r
    • i7ovemydog!!
    • d0gsaremybestfr13nds
    • sn00pdoggyd0G
    • Karm@beatsDogm@
    • C@ts-and-Dogs-Living-together

    By injecting numbers and special characters instead of letters, these passwords take exponentially longer for a dictionary program to guess.

    FAQ

    • What is the best password manager?

      Some of the best password managers include Dashlane, KeePass, and Keeper. Good password managers work with multiple browsers, include encryption, and are easy to use.

    • Are password generators safe?

      Password generators can be one way to create strong passwords. It is important to use best practices, such as creating lengthy passwords, using a different password for every account, and changing passwords every 90 days, even when using a password generator.

    Was this page helpful?