upgrade now

how to pick a password

how to pick a password

Tip 1: The longer the better.

Short passwords are easier to crack; software designed to process letter combinations can find yours in a matter of seconds. But just add a few more characters, and it takes significantly longer to figure out. Make sure your passwords are at least 8 characters long.

Tip 2: Use strange word choices, misspellings, numbers and symbols.

When it comes to passwords, spelling and grammar need not apply. In fact, using a proper dictionary word reduces password security, as automatic password finders can process known words with ease. Feel free to misspell, use numbers and punctuation marks, and even combinations of multiple words.

If you must write your password down, don't keep it near your computer.

Tip 3: Avoid low-effort passwords.

Among the most common are "qwerty", "abc123", "asdfasdf", "123456" and "password" - low-effort passwords that don't take much time to create or type, hence the most obvious for a thief to try. Choose a password that requires both hands to type and letters from separate sections of the keyboard.

Tip 4: Use different passwords for different sites.

Alternatively, if you use too many sites for this to be practical, pick a handful of passwords to distribute over your online activities. So if security is compromised on one site, any potential damage is limited only to the accounts that share the same password.

Just as a house or car key should be difficult to copy, pick a password that's difficult to guess.

how to keep your passwords safe

Keep your password safe online.

It's always better ot rememeber your password instead of writing it down, but if you must write it, keep it in a safe place, away form your computer. A secure password is no different to an insecure password if it can easily be found.

Never give your password to strangers.

The only time you should ever have to reveal your password is when you're logging into your account, or updating your account details online. In other instances, most reputable websites provide other ways of verifying your identity.

Choose a password that requires both hands to type and letters from separate sections of the keyboard.

Watch for wandering eyes when you log in.

Would-be thieves won't need technology when they can watch over your shoulder while you type. Only enter your password when you know it's safe, and if possible, type your password or PIN quickly, making it difficult for sneakier 'shoulder surfers' to follow your movements.

Run regular anti-virus & anti-spyware scans.

Keep your protective software up to date, and run regular scans to ensure no rogue applications are secretly transmitting your details. Avoid banking or shopping online from shared computers unless you know you're sharing with trusted friends, and the computer is free from malware.

Protect your secrets.

Many sites offer a "secret question" feature for when you need to recover your password, asking for private details - like your birthplace or mother's maiden name. Usually, you get to decide what the secret question should be when you sign up. Try to pick a question with an obscure answer, difficult for strangers to guess or discover.

Keep your email password the safest of all

An email mailbox is even more sensitive than a real life mailbox. Once your email account is compromised, the intruder has access to all your electronic correspondence - including password recovery, identity verification and account updates. To help prevent this, make your email password the most distinct and secure of all.

further reading

Check out our Internet Safety Series in the Discoveryzone for more articles, guides and common sense tips for staying safe online.