Strong passwords play an important role in keeping your account secure. Following a few simple best practices can help prevent unauthorised access and protect your personal or business information.
Create strong passwords
When setting or updating a password, aim for one that is long, unique, and hard to guess.
Best practices include:
- Use at least 12 characters.
- Include a mix of uppercase letters, lowercase letters, numbers, and symbols.
- Consider using a passphrase made up of several unrelated words.
Avoid passwords that include personal information such as names, birthdays, or details that can easily be found online.
A longer password is generally more secure than a shorter, more complex one.
Use a unique password for each account
Each online account should have its own unique password. Reusing passwords increases risk, as a security breach on one platform could expose multiple accounts.
You should also:
- Change default passwords when setting up new accounts or devices.
- Never share your password with anyone, including colleagues or support staff.
Important: Legitimate companies will never ask you for your password.
Make passwords easier to manage
Using a password manager can help you generate and store strong passwords securely, without needing to remember each one.
Where available, enable two-factor authentication (2FA). This adds an extra layer of protection by requiring a second verification step when logging in.
Avoid common password mistakes
To keep your account secure:
- Do not write passwords down or store them in plain text files.
- Be cautious of emails or messages asking you to log in or reset your password.
- Change your password immediately if you suspect it may have been compromised.
If something doesn’t feel right, it’s always safer to update your password.
Key takeaway
Strong passwords are long, unique, and kept private. Taking a few minutes to set them up correctly can greatly reduce the risk of security issues later.