Best practices for creating and storing strong, unique passwords

In today’s increasingly digital world, passwords are the keys to our most sensitive information. Whether it’s logging into online banking, accessing emails, or shopping online, having strong and unique passwords is critical to keeping your personal information safe.

For Australians over 55 who may not have grown up with digital technology, understanding password security can sometimes feel overwhelming. However, with the right strategies, it’s easy to create and manage secure passwords that protect your online accounts from cyber threats.

Why Strong Passwords Matter

Cybercriminals are constantly finding ways to exploit weak passwords. In Australia, scams and hacking attempts are on the rise, with many targeting older adults who may be less familiar with online security practices.

A weak password can lead to identity theft, financial loss, or personal data breaches. This makes it vital to adopt strong password practices.

A strong password helps protect against:

• Brute force attacks – automated tools that attempt to guess passwords by trying millions of combinations
• Phishing schemes – scams designed to trick you into revealing login credentials
• Credential stuffing – using stolen username-password combinations from one site to access others

We have lots of other articles about staying safe online.

• How can I tell if an email is spam?
• Are your passwords putting you at risk?
• Read more …

Characteristics of a Strong Password

1. Length – at least 12-16 characters
2. Complexity – a mix of uppercase and lowercase letters, numbers, and special characters (e.g., !, @, #, $)
3. Unpredictability – avoid using common words, sequences (e.g., “12345” or “password”) or easily guessed personal details like your name, date of birth, or pet’s name
4. Uniqueness – never reuse passwords across multiple accounts. Even the slightest differences will make it harder for attackers

Practical Tips for Creating Secure Passwords

1. Use a passphrase – combine random words into a long, memorable phrase. For example, “PurpleKoala!Sunset97&”. The length and randomness make it hard to crack, but it’s easier to recall
2. Incorporate variations – add numbers, special characters, and uppercase letters to the passphrase, such as “B3autiful*Day!2023”
3. Avoid predictable patterns – don’t use common substitutions like “P@ssw0rd” or “1234abcd”, as hackers know these tricks
4. Personalise without being obvious – use a unique, meaningful phrase or memory that’s hard for others to guess but easy for you to remember—for instance, “Grandma’s_Best!Pie1978”
5. Regularly update passwords – change passwords every 3-6 months, especially for critical accounts like banking and email. Password managers simplify this process

Tools for Managing Passwords

One of the biggest challenges of strong passwords is remembering them. Writing passwords down on paper or reusing simple ones for convenience can compromise security. Instead, consider these tools:

1. Password managers – password managers are secure apps that generate, store, and autofill strong passwords for you. Popular options include LastPass, Dashlane, and 1Password. Many of these tools are user-friendly and work across multiple devices, making them ideal for busy people or those of us who prefer convenience. When choosing a password manager, opt for one with strong security features and Australian data compliance standards. Some benefits of password managers include:
   • Secure storage – all your passwords are stored in an encrypted vault
   • Automatic generation – the tool can create strong, unique passwords for each account
   • Ease of access – you only need to remember one master password to unlock the vault
2. Two-Factor Authentication (2FA) – adding an extra layer of security, 2FA requires a second step to log in, such as a code sent to your mobile phone or generated by an app like Google Authenticator. Even if someone steals your password, they’ll need this second factor to access your account
3. Browser-based password saving – most modern web browsers, like Google Chrome and Safari, offer built-in password management. While convenient, these tools may not be as secure as dedicated password managers. If you use this feature, ensure your device is protected with a strong PIN or biometric login (e.g., fingerprint, face recognition)

An example of a strong password might look like this: J7$kT&1p@Xq!4Fm. While this may seem hard to remember, there are tools and strategies to make managing strong passwords easier.

Tips for Storing Passwords Safely

1. Avoid writing passwords down – while it might be tempting to jot passwords on paper or in a notebook, this can expose you to risks if the information falls into the wrong hands
2. Use encrypted digital notes – if you must store passwords outside a manager, use encrypted note apps such as Evernote or Apple Notes with password protection enabled. This approach also leverages built-in biometric device security
3. Do not share passwords – avoid sharing passwords via email, text, or over the phone. If you need to share access with a trusted family member, use the sharing features in password managers

Recognising and Avoiding Common Password Pitfalls

• Reusing passwords across sites – if one account is compromised, others become vulnerable
• Using default or easy passwords – many Australians unknowingly leave default passwords on devices like Wi-Fi routers or smart home systems. Always change these immediately
• Ignoring breach alerts – use services like Have I Been Pwned (https://haveibeenpwned.com/) to check if your email or passwords have been part of a data breach. Update compromised passwords promptly
• Falling for phishing scams – be cautious of emails or messages requesting your password. Legitimate companies never ask for this information

Adapting Password Practices for Australians Over 55

1. Take your time – learning new technologies and practices is a gradual process. Start with one or two key changes, like using a password manager
2. Seek trusted advice – you are already doing this by reading this article. We are here to help you with articles like these. You can also reach out to family members, friends, or local community groups offering technology workshops. Many libraries and local councils provide free classes
3. Stay informed – follow updates from government resources like Scamwatch (https://www.scamwatch.gov.au/) or the Australian Cyber Security Centre (https://www.cyber.gov.au/)

Strong and unique passwords are your first line of defence against cyber threats. For Australians over 55, adopting secure password practices can seem daunting at first, but with a little effort and the right tools, it becomes manageable. Using password managers, enabling two-factor authentication, and following best practices can significantly reduce the risk of online fraud and data breaches. Remember, protecting your online identity is an investment in your peace of mind and security.