Change short, old passwords to a passphrase instead. Hackers can use programs that easily search through and try tens of thousands of dictionary words.
Instead, create a strong passphrase that you can easily remember. Something like “Sally Ann Smith was born on July 16th, 1933.” Then convert the passphrase into a series of upper and lower case letters, numerals, and non-alphabetic characters: SASwboJ16,33
Turn on multi-factor authentication (MFA) for important accounts.
Multi-factor authentication (MFA) is based on three or more factors that can authenticate who you are. Rather than just asking for a username and password, MFA requires one or more additional verification factors. A common example is a one-time passcode emailed or texted to the contact info on the account.
Use a different passphrase for every account, and don’t store them directly on your computer, phone, or in a notebook.
Instead, use a secure online password manager to store and manage your passwords. Many can also generate incredibly strong passwords and conveniently save them for you. You only need to remember a single passphrase to access all your accounts and passwords.
And don’t forget to log off all your programs when you’re done!