A study from this year found that 90% of Internet users fear that their passwords will be hacked, however, 51% of people say they use the same passwords for their personal and work accounts. This tendency of users to supposedly protect their accounts is a mistake.
There are people who have the same password on the supermarket page to make purchases on the Internet, at the bank, on the game page, on social networks... and that is what is worrying. It is not only a problem that someone guesses that password on a Facebook account, but the cybercriminal is going to try the same password on other social networks and, therefore, is going to get the credentials from other sites. It is enough for the cybercriminal to associate that password with you and try it on all sites.
On the other hand, if a user uses different passwords for his different accounts. The attack is limited to the place where it was stolen. In this way, if the cybercriminal obtains someone's Facebook credentials, he will not be able to access other social networks or web pages in which the victim is subscribed.
Although this measure is considered the "most urgent" for users to take into account, it is also advisable to change it from time to time so that if someone steals it, they no longer have access to an account.
In addition, there are 23 million account holders who continue to use '123456' as their password. These passwords are not secure and, as many social networks currently recommend, passwords that contain uppercase, lowercase, numbers and symbols should be used.
There are password management applications for both mobile phones and computers that cost between 2 and 3 euros per year, but they are safe. These apps "invent passwords and then remember them in browsers."