Visit How Secure Is My Password to test the strength of your passwords
Never recycle or reuse passwords
Do not use the same password across multiple sites - Create a new or different password for every site you sign up to
Do not let your browser save your passwords
Think passphrase instead of password
Use upper or lower case letters, numbers, symbols - See Strong Password Generator. Password Managers usually have a built-in password generator to create complex passwords
Password Management software stores encrypted versions of your passwords so you can use a unique, secure password for every service without having to remember every password. There are plenty of free Password Managers to select from, for example, KeePass (see how to setup and use it, LastPass and Padlock.
There have been debates about how often we should be changing our passwords. It is also recommended that we change your passwords every 3 – 9 months. We recommend that you change your passwords as often as you need in order to feel secure.
Two-Factor Authentication (2FA) makes it harder for anyone attempting to hack your accounts. Instead of signing into your accounts using one step (your password), you enter a second piece of data, a short code sent to you in an email, or text, or generated by an app on your phone. See which sites allow you to enable two-factor authentication here.