Data breaches are more common now than ever before. A data breach is an intentional or unintentional leak of sensitive information. At least one of your current or old passwords has likely been exposed by a data breach.

If your passwords are exposed, cybercriminals can buy them and gain unlimited access to your accounts and sensitive information. Additionally, if you’ve used a password for multiple online accounts, cybercriminals will be able to access any accounts that use the password. So, if you use the same password for multiple accounts, it’s time to change your password to a new, strong password!

Follow the tips below to create strong passwords:

• Make your passwords complex. Your passwords should contain at least eight characters and use a combination of uppercase and lowercase letters, numbers, and special characters.
• Use passphrases. Instead of just containing a single word, passphrases contain a phrase or sentence. If you use a passphrase, choose a unique phrase that you can remember, such as Pa$$wordSafety1sC0ol. Don’t choose a phrase that cybercriminals may be able to guess, such as a quote from your favorite movie.
• Use a password generator. Password generators such as LastPass and 1Password can automatically create strong passwords for you.
• Don’t use variations of your old passwords. Cybercriminals can use tools to figure out password variations. For example, if your password is “Fish,” don’t change your password to “Fish1.”

Even if your password has not been exposed in a data breach, it’s important to make sure that all of your passwords are unique. If you need help keeping track of all your unique passwords, ask your IT team or supervisor for a recommended password manager that you can use.

Information provided by The KnowBe4 Security Team.