Weak, reused passwords are still the leading cause of account breaches. Building strong, unique passwords for every account is the single most effective step you can take to protect yourself online.
What makes a password strong?
Length beats complexity: a long password is exponentially harder to crack. Aim for at least 16 characters, mixing uppercase and lowercase letters, numbers and symbols. Avoid dictionary words, names, birthdays and predictable substitutions like “P@ssw0rd”.
Never reuse passwords
If one site is breached and you have reused that password elsewhere, attackers can access your other accounts too. Every account deserves its own unique password, ideally stored in a reputable password manager.
Use a generator for true randomness
Humans are bad at being random — we fall into patterns. A password generator uses your browser's cryptographic randomness to produce unpredictable strings instantly. Choose your length and character types, generate, and copy the result straight into your password manager.