IT became official again this week: We are awful at passwords.

Year after year, studies show that many people still rely on passwords that are so weak that even a 5-year-old could crack them. According to a study released this week by SplashData, a developer of password management software, consumers continue making the riskiest choices with passwords by consistently using overly simple ones.

The highly unimaginative “123456” and “starwars,” for instance, were among the most commonly used passwords of 2015, SplashData said.

Now for a confession: I am no better than the rest of you. The password management app Dashlane recently ran a security audit of all my passwords — and what it found was ugly. It revealed that out of my 70 passwords, I had reused the same one 46 times. Twenty-five of the passwords were flagged as being particularly weak, or easy for a hacker to crack.

In my shame and embarrassment, I put together a guide of best practices for passwords and tested some tools that would help manage them. Here’s what it boils down to: To have the safest passwords protecting your digital life, each password should be unique and complex. But since memorizing 70 unique and complex passwords is nearly impossible, we also need password manager programs to keep track of them all.