How to create a strong password
The main thing is that your password should be at least 16 characters long. Create your password by choosing four unrelated words that are memorable to you, e.g. CorrectHorseBatteryStaple. That's it. Despite the fact that many websites insist you use a mix of character types (e.g. upper case, lower case, numbers or symbols) to make your password secure, length is the easiest way to make passwords practically unbreakable.
Some systems may still require you to create a password that includes a mix of characters and has a limited character length. To meet such requirements you can adapt your four random words passwords by changing some letters or inserting some digits or symbols, e.g. Corr3ct-Hors3-B@tt3ry-St@pl3. Be aware that this will affect the memorability of your password, so we encourage you to make use of password managers, such as LastPass where possible.
How to keep your passwords out of the wrong hands
There's little point having a cast-iron password that takes trillions of years for a computer to crack if you let criminals pinch it from under your nose. The three main ways passwords find their way into the wrong hands are through phishing, malware and companies who don't do enough to keep your information safe. Creating different strong passwords for every account will limit the damage if your personal details get leaked.
How to create a different password for every account
It is difficult to manage a large number of strong unique passwords for each account, so we strongly recommend using a good password management application. There is a wide variety of free and commercial password managers available, such as KeePass, Apple Keychain, or 1Password. Many have handy extra features, such as the ability to generate truly random and almost unbreakable passwords at the click of a button.