Celebrate National Cyber Security Awareness Month with strong passwords. They protect your information from cybercriminals and keep you safer when you use the internet.
For guidance on protecting online systems and data, consider reviewing Internet Security Insurance for additional options that may apply to businesses and organizations.
1. Use a combination of letters, numbers and symbols.
The best passwords are difficult to guess, so use a mix of lowercase and uppercase letters, numbers, and symbols.
2. Use at least eight characters.
Longer passwords are harder to crack, so aim for at least eight characters or more for each password.
3. Avoid common words.
Many people still use simple patterns like "qwerty" or "12345." Choosing less common words and patterns reduces your risk.
4. Opt for unique phrases.
Single-word passwords are easy for attackers to crack with dictionary tools. Use memorable phrases like "I like ham sandwiches" or "the dog ate my homework" and consider intentional misspellings or substitutions, for example ilIkeh@msandw!ches or tHed@g8myhomew*rk.
Avoid using personal information
- Name, including nickname or maiden name
- Birth date
- Social Security number
- Street address
- Family members' names or birthdates
- Pets' names
- Current or former addresses
6. Don't reuse passwords.
When you change a password, choose one that you have never used on any other site.
7. Give every site a different password.
Using the same password across sites lets an attacker access multiple accounts if one is compromised. A password manager can help you remember unique passwords.
Organizations that process online payments or customer data may also want to look into e-Commerce Security Insurance for coverage considerations related to online transactions.
8. Use two-factor authentication.
Two-factor authentication (2FA) adds a second verification step—such as a code, PIN, or biometric—alongside your password to increase login security.
9. Don't save your passwords in the browser.
Browsers often prompt to save passwords; avoid accepting this on shared or untrusted devices to reduce exposure if the device is lost or stolen.
10. Log out of websites and devices.
After using a website or device, sign out to reduce the chance someone else can access your accounts from that device.
11. Change your passwords regularly.
Update passwords periodically and more often for sensitive accounts like banking or social media; use a calendar reminder if needed.
Celebrate Cyber Security Awareness Month by securing all your passwords. When you make passwords harder to guess, you reduce the chance cybercriminals can steal personal information. If you need personalized assistance, talk to your agent about steps you can take today.
Frequently Asked Questions
How long should a strong password be?
A strong password should be at least eight characters long, and longer when possible; passphrases of three or more unrelated words are often easier to remember and harder to crack.
What is two-factor authentication and why use it?
Two-factor authentication adds a second step—like a code or biometric—after your password, making it much harder for attackers to access your account even if they know your password.
Are password managers safe to use?
Password managers help generate and store unique passwords securely, reducing reuse and the need to remember many passwords; choose a reputable provider and protect the manager with a strong master password and 2FA.
What should I do if I think my password was exposed?
Change the affected password immediately, enable 2FA where available, and review account activity for unauthorized access.