How to Create Strong Passwords

At Cobalt Housing, safeguarding sensitive information is a top priority. Weak passwords are one of the most common ways attackers gain unauthorised access to systems and accounts. By creating strong passwords, you can help protect both your personal data and the organisation's confidential information from cyber threats. This guide explains how to create strong passwords that align with Cobalt Housing's security requirements.

1. Make Your Password Long

A strong password should be at least 12 characters long, though using more characters is even better. The longer the password, the more difficult it is for cybercriminals to crack. Many accounts allow passwords up to 16 or 20 characters, so it's best to take advantage of this to enhance your security.

Example: Instead of using Liverpool2023, try something like BlueSkiesOnFriday2023! (21 characters long).

2. Use a Mix of Characters

To create a strong password, ensure it contains a combination of different character types:

Uppercase letters (A-Z)
Lowercase letters (a-z)
Numbers (0-9)
Special characters like !, @, #, £, %, etc.

By using a mix of these characters, you make it much harder for attackers to guess your password.

Example: G@rdenWall27!Fl0wer$ (uses a variety of character types).

3. Avoid Common Words and Patterns

Hackers often use tools that quickly guess passwords based on common words or predictable patterns, such as "password123" or "Cobalt2024". Avoid:

Common words like "password", "admin", or "welcome".
Easy-to-guess sequences like "123456", "abcdef", or "qwerty".
Personal information, such as your name, birthday, or favourite football team.

Instead, consider using a passphrase—combining random but memorable words to create a secure password. This method creates strong, hard-to-guess passwords that are easier to remember.

Example: HikingInTheRain%42

4. Use a Password Manager

While creating complex passwords is essential, remembering them can be challenging—especially when you have several different accounts. A password manager securely stores all your passwords in one place, so you don’t need to memorise each one.

Password managers can also generate strong, random passwords for you, ensuring that each of your accounts at Cobalt Housing remains secure.

5. Don’t Reuse Passwords

Using the same password for multiple accounts is a major security risk. If one account is compromised, attackers could use that password to access other systems or accounts. Always use a unique password for each account, especially for critical services like your work systems at Cobalt Housing, email, or banking.

Example: Your work email should have a completely different password from your social media accounts.

6. Update Your Passwords Regularly

Regularly changing your passwords adds an extra layer of protection. If a password has been compromised, updating it helps reduce the risk. At Cobalt Housing, we recommend updating your passwords at least every six months to ensure maximum security.

7. Enable Multi-Factor Authentication (MFA)

In addition to using strong passwords, enable Multi-Factor Authentication (MFA) wherever possible. MFA adds another layer of protection by requiring a second form of verification, such as a code sent to your phone or an authenticator app. This makes it significantly harder for anyone to access your account, even if they know your password.

8. Check the Strength of Your Passwords

If Cobalt Housing provides a password strength checker, use it to ensure your passwords are strong. These tools help you identify whether your password is secure enough and offer recommendations for improvement.

Example of a Strong Password

Here’s an example of a strong password following all of the above guidelines:

ClimbingM0unt@in%High35

This password:

Is 21 characters long.
Contains a combination of upper and lowercase letters, numbers, and special characters.
Avoids using common words or predictable patterns.
Is unique and memorable as a passphrase.

Summary of Best Practices for Cobalt Housing Staff:

Use at least 12 characters in your passwords (longer is better).
Include a mix of upper and lowercase letters, numbers, and symbols.
Avoid using common words, patterns, or personal information.
Never reuse passwords across multiple accounts.
Update your passwords regularly to stay ahead of potential threats.
Enable Multi-Factor Authentication (MFA) whenever possible.
Consider using a password manager to securely store and generate passwords.

By following these guidelines, Cobalt Housing staff can help protect both personal and organisational data from potential cyber-attacks. Strong passwords are a critical part of maintaining a secure work environment and protecting sensitive information.