be a minimum of 8 characters long, and
have been used before
have been exposed in a past data breach
Data breaches occur frequently, and in many cases result in the exposure of users’ passwords
if the service provider does not adequately protect them. Once passwords have been exposed like this,
they are added to the “dictionaries” used by hackers to try and access accounts. This exposure makes
them unsuitable to be used anywhere.
be based on a single dictionary word
use personal information, such as yours or family members’ names or significant dates
use repeating characters or keyboard patterns (e.g. mmmm3333, qwerty, 123456)
be one you use anywhere else
ALWAYS keep your password a secret!
IT staff will
ask you for your password.
Immediately report anyone who asks you for your password.