The Most Common Mistakes When Creating Passwords

  • Creating a strong password isn’t as simple as it may sound.
  • Many people fall into the same traps that hackers can capitalize on.
  • There are several ways to increase your security.

Creating a strong password is not as simple as you may think.

When that little bar that tracks your password progress turns green, it doesn’t necessarily mean you’ve created a strong barrier. Sometimes, we can leave ourselves vulnerable without even knowing it.

Here are some common mistakes when creating passwords and how to avoid them.

The Basics for Creating a Strong Password

You’ve probably already heard the basics for creating a strong password, but it doesn’t hurt to refresh your knowledge.

It Should  Be Long

If you’re creating a password for a less sensitive account, like a Reddit profile, you should make your password at least ten characters. It should contain various symbols and be difficult for someone else to guess but relatively easy for you to remember.

But if you’re creating a password for an account with highly sensitive information, such as a bank account, you should aim longer. 16-character passwords should be standard for these sensitive accounts. It sounds like a lot, but avoiding a complete life upheaval due to a security breach is well worth it.

Check out this chart of password-hacking time based on the number of characters:


Image by Statista, facts from

It Should Be Varied

Of course, you want to make sure you use a variety of characters when creating a password. Use multiple symbols. Use numbers. Use capitalized and uncapitalized letters. The more variance of characters you have, the more difficult your password will be to crack.

Common Mistakes When Creating Passwords

Using Personal Information

All too often, people compromise their security for ease of use. They will use personal information when creating their codes, but personal information is easy for others to find.

Using the Same Password

Let’s say you’ve created a long, varied password. All too often, people will use this strong password to secure multiple accounts. The obvious problem with this is that if someone hacks one of your accounts, they’ll also have access to the others. Always use separate passwords for separate accounts.

Using Predictable Patterns

You can have a long, even varied, password, but it doesn’t matter if it’s predictable. For example, “abc123efg456hij!” is fairly predictable and much easier to crack than a random password. Most password generators can supply you with a strong, random password to the length of your choosing like in Google Chrome or on Apple devices.

Check out this video explaining powerful passwords:

Further Helpful Steps

If you want to strengthen your account’s security, it’s wise to use a 2-factor authenticator. This usually involves a separate code that can be texted to you or generated on an app in addition to your password. Services like Apple, Google, Amazon, and Facebook all have an option for 2-factor authentication.

Once you start getting into 16-digit passwords, remembering them can become quite difficult. Many people are tempted to write them down on paper or in an email. Either way, they’re opening themselves up to risk. Find a trusted password manager, such as Keeper, 1Password, or Google Password Manager. These services provide a safe place to store your passwords.

If you fear your passwords being accessible on the dark web, search by following our guide here.

If your account has already been breached, do not hesitate to contact We can restore hacked accounts and help you secure yourself against further attempts. Contact us here immediately.

Featured image by REUTERS & Pawel Kopczynski.