A third of web users have admitted to using the same password for a number of different websites, says Sophos.
According to the security firm, just 19 percent never use the same password twice. Sophos added that three years ago, 41 percent of web users said they used the same password, indicating that just 8 percent of web users have realised the importance of strong, unique passwords.
"It's worrying that in three years very few computer users seem to have woken up to the risks of using weak passwords and the same ones for every site they visit," said Graham Cluley, senior technology consultant at Sophos.
"With social networking and other internet accounts now even more popular, there's plenty on offer for hackers and by using the same password to access Facebook, Amazon and your online bank account, you're making it much easier for them. Once one password has been compromised, it's only a matter of time before the fraudsters will be able to gain access to your other accounts and steal information for financial gain."
"It's easy to understand why computer users pick dictionary words as they're much easier to remember. A good trick is to pick a sentence and just use the first letter of every word to make up your password. To make it even stronger, you can replace words like 'for' for the number 4, and this should give you peace of mind that your password won't be guessed," advised Cluley.