Internet security software firm SplashData has released its annual list of passwords of the worst and most common passwords that you absolutely must not use. If you use any of the ones we list below, you must change them immediately.

They might be easier for you to remember, but they are also equally as easy for hackers to guess. Indeed, many of them are probably preset by malicious software algorithms looking to get into your accounts.

So if you have any wish to keep your money in your bank, your Twitter or Facebook accounts your own, or don't want a spouse to find out about your extramarital affair, the list contains the passwords you need to avoid.

Microsoft has some good tips on how to choose safe, alternative passwords. It says that a good password should be eight or more characters long, not be your user name, real name or company name, and, in fact, not contain a complete word at all.

It should be significantly different to passwords used elsewhere and contain at least one each of the following: an upper-case letter, a lower-case letter, a number and a symbol (such as £ or $).

Anyway, while you mull over what you'll choose in future, here are the 25 worst internet passwords for 2016 in order of popularity. You have been warned.

  1. 123456
  2. password
  3. 12345678
  4. qwerty
  5. 12345
  6. 123456789
  7. football
  8. 1234
  9. 1234567
  10. baseball
  11. welcome
  12. 1234567890
  13. abc123
  14. 111111
  15. 1qaz2wsx
  16. dragon
  17. master
  18. monkey
  19. letmein
  20. login
  21. princess
  22. qwertyuiop
  23. solo
  24. passw0rd
  25. starwars