top of page

The importance of strong and unique passwords

Passwords help lock the doors to our digital lives, but select a weak password and you’re leaving that door wide open for a cyber criminal to waltz right in. Let’s do a deep dive into password security...

In our increasingly digitised world, strong passwords are vital. Whether it's accessing your email, social media accounts, or online banking, passwords play a critical role in safeguarding our personal information and digital assets.

However, despite their importance, many people still underestimate the significance of using strong and unique passwords. Let's delve into why strong and unique passwords are essential for protecting your online identity and data.


The perils of weak passwords


Weak passwords are like leaving your front door unlocked in a high-crime neighbourhood. They invite trouble and make it incredibly easy for cybercriminals to gain unauthorised access to your accounts. Hackers employ various techniques such as brute-force attacks, dictionary attacks, and phishing scams to crack weak passwords and infiltrate accounts.


But what exactly constitutes a weak password? Typically, it's one that is short, simple, and easily guessable. Examples include common words, sequential characters (e.g., "123456" - as mentioned in our blog entitled '23m people used 123456 as a password'), and easily identifiable personal information like birthdates or pet names. Using such passwords is akin to handing over the keys to your digital kingdom to cybercriminals on a silver platter.

The power of strong and unique passwords


Strong and unique passwords act as formidable barriers against unauthorised access. A strong password is one that is lengthy, complex, and incorporates a mix of uppercase and lowercase letters, numbers, and special characters. Creating such passwords may seem daunting, but the extra effort pays off in bolstering your online security.


Equally important is ensuring each of your accounts has a unique password. Reusing passwords across multiple accounts is a dangerous practice. If a hacker manages to crack one of your passwords, they gain access to all accounts where that password is used. By diversifying your passwords, you contain the potential damage of a security breach to a single account.

Implementing secure password practices


Now that we understand the importance of strong and unique passwords, let's explore some practical tips for implementing secure password practices:


Use a Password Manager: Password managers are invaluable tools for generating, storing, and auto-filling complex passwords across your accounts. They offer a secure vault where you can store all your passwords behind a single master password.

Use three random words: experts at the National Cyber Security Centre (NCSC) state that a key reason for using three random words is that they create a password which is easy to remember and strong enough to keep online accounts secure from cyber criminals. Incorporating numbers and special characters amongst these three random words makes it even more secure.

Create passphrases: Similar to the three random words technique, consider creating passphrases - sentences or phrases that are easy for you to remember but difficult for others to guess. For example, "BlueElephantsDanceUnderTheMoon!" is both memorable and secure. The phrase could be personal to you only, making it difficult for strangers to crack. Avoid song lyrics or movie quotes, though. "YouLookGoodOnTheDancefloor" or "YouCantHandleTheTruth" passwords might seem like fun, but they aren't recommended as they are common in the public domain.

Enable Two-Factor Authentication (2FA): Two-factor authentication adds an extra layer of security by requiring a second form of verification, such as a code sent to your phone, in addition to your password. Always enable 2FA whenever possible for enhanced account protection.

Regularly Update Your Passwords: Make it a habit to change your passwords periodically, ideally every few months. This practice reduces the risk of unauthorised access, especially if a password has been compromised without your knowledge.



In today's digital landscape, the importance of using strong and unique passwords cannot be overstated.

By adopting secure password practices, you fortify your defenses against cyber threats and minimise the likelihood of falling victim to online attacks.

Remember, the security of your digital identity is in your hands - so choose your passwords wisely and safeguard your online world.



Report all Fraud and Cybercrime to Action Fraud by calling 0300 123 2040 or online. Forward suspicious emails to Report SMS scams by forwarding the original message to 7726 (spells SPAM on the keypad).



The contents of blog posts on this website are provided for general information only and are not intended to replace specific professional advice relevant to your situation. The intention of East Midlands Cyber Resilience Centre (EMCRC) is to encourage cyber resilience by raising issues and disseminating information on the experiences and initiatives of others. Articles on the website cannot by their nature be comprehensive and may not reflect most recent legislation, practice, or application to your circumstances. EMCRC provides affordable services and Trusted Partners if you need specific support. For specific questions please contact us by email.


EMCRC does not accept any responsibility for any loss which may arise from reliance on information or materials published on this blog. EMCRC is not responsible for the content of external internet sites that link to this site or which are linked from it.

bottom of page