For passwords, people tend to use common words that can be found in the dictionary.
Dictionary attacks are a type of brute force attack that make guesses based on common dictionary words, such as “password.” There are available lists that contain the most commonly used passwords. Malicious actors can use this list to try to compromise an account.