How to create secure passwords
The number of online accounts that everyone in the meantime has in tow is steadily increasing. These include social media accounts, e-mail accounts, and countless access to online shops. Many, however, always use one and the same password for the various accesses, which makes it easy for hackers – once the password has been breached – to make some nonsense with their access data in no time at all.
According to Statista data, only very few Germans use a sufficient number of different passwords.
This may be due to the fact that many are not aware of the importance of password security, and on the other hand, of course, because it seems almost impossible to remember so many different passwords that should ideally be as complex as possible.
How to create secure passwords
The number of online accounts that everyone in the meantime has in tow is steadily increasing. These include social media accounts, e-mail accounts, and countless access to online shops. Many, however, always use one and the same password for the various accesses, which makes it easy for hackers – once the password has been breached – to make some nonsense with their access data in no time at all.
According to Statista data, only very few Germans use a sufficient number of different passwords.
This may be due to the fact that many are not aware of the importance of password security, and on the other hand, of course, because it seems almost impossible to remember so many different passwords that should ideally be as complex as possible.
The length of the password is important
When assigning a password, you are often asked to use at least one uppercase letter and a special character like % or /. However, what is not sufficiently checked is that the password is long enough. Although there is a minimum number of characters required, this is often too short, according to the National Institute of Standards and Technology (NIST).
Because a password should be at least 8 characters. And this is really only the absolute minimum! Better are 12 or 16 characters. It would also be desirable to allow the providers spaces in passwords, which would increase the possibilities of complexity, and thus the security again.
A short password with, for example, only 8 characters, even if you spam them with special characters, can be detected in a relatively short time by computers that do nothing but try out passwords. And already the culprits have gotten a hit again to drive Schindluder with your data. If the same password applies to other accounts then the damage can be considerable.
For if you buy at your expense on the Internet, and the goods are delivered to any packing stations you may not notice this at first, or very late. Then it will be difficult if not impossible to find the perpetrators who often sit abroad, while you stay at high cost. Because it was not hacked the portal where your access data were tapped, but you yourself were the victim of a hacker attack, which you have apparently made possible by insufficient security arrangements.
The length of the password is important
When assigning a password, you are often asked to use at least one uppercase letter and a special character like % or /. However, what is not sufficiently checked is that the password is long enough. Although there is a minimum number of characters required, this is often too short, according to the National Institute of Standards and Technology (NIST).
Because a password should be at least 8 characters. And this is really only the absolute minimum! Better are 12 or 16 characters. It would also be desirable to allow the providers spaces in passwords, which would increase the possibilities of complexity, and thus the security again.
A short password with, for example, only 8 characters, even if you spam them with special characters, can be detected in a relatively short time by computers that do nothing but try out passwords. And already the culprits have gotten a hit again to drive Schindluder with your data. If the same password applies to other accounts then the damage can be considerable.
For if you buy at your expense on the Internet, and the goods are delivered to any packing stations you may not notice this at first, or very late. Then it will be difficult if not impossible to find the perpetrators who often sit abroad, while you stay at high cost. Because it was not hacked the portal where your access data were tapped, but you yourself were the victim of a hacker attack, which you have apparently made possible by insufficient security arrangements.
How do I remember long passwords?
As we said before, with strong passwords, the creativity and convenience of many users are failing to come up with a sensible password. Many then resort to password generators, which are however not particularly recommendable, because here the passwords created at some point are the same, and can easily be spied out.
Another option is to use a password manager for all your passwords. Here then a single master password is sufficient to get to all other data. But the BSI has come to the conclusion that this alternative is risky. Because if only a single password is needed to then get sorted by a variety of passwords with the associated portals that may not be the right solution.
Your passwords should be as individual as possible, and preferably consist of a whole sentence, in which you then exchange certain letters for numbers (for example, an E against a 3, or a B against an 8, etc.). The sentence should also be really individual and not something like “youcannot getinhere”.
It is best to form sentences that have emerged from personal life events that really only you and maybe a handful of people from your personal environment can know, and convert them by exchanging letters for numbers and / or special characters, and uppercase and lowercase letters ,
So take the time to invest in your online security, because the damage caused by inadequate security measures can bring you much more trouble.
How do I remember long passwords?
As we said before, with strong passwords, the creativity and convenience of many users are failing to come up with a sensible password. Many then resort to password generators, which are however not particularly recommendable, because here the passwords created at some point are the same, and can easily be spied out.
Another option is to use a password manager for all your passwords. Here then a single master password is sufficient to get to all other data. But the BSI has come to the conclusion that this alternative is risky. Because if only a single password is needed to then get sorted by a variety of passwords with the associated portals that may not be the right solution.
Your passwords should be as individual as possible, and preferably consist of a whole sentence, in which you then exchange certain letters for numbers (for example, an E against a 3, or a B against an 8, etc.). The sentence should also be really individual and not something like “youcannot getinhere”.
It is best to form sentences that have emerged from personal life events that really only you and maybe a handful of people from your personal environment can know, and convert them by exchanging letters for numbers and / or special characters, and uppercase and lowercase letters ,
So take the time to invest in your online security, because the damage caused by inadequate security measures can bring you much more trouble.
Popular Posts:
Dynamic ranges in Excel: OFFSET function
The OFFSET function in Excel creates a flexible reference. Instead of fixing =SUM(B5:B7), the function finds the range itself, e.g., for the "last 3 months". Ideal for dynamic charts or dashboards that grow automatically.
Mastering the INDIRECT function in Excel
The INDIRECT function in Excel converts text into a real reference. Instead of manually typing =January!E10, use =INDIRECT(A2 & "!E10"), where A2 contains 'January'. This allows you to easily create dynamic summaries for multiple worksheets.
From assistant to agent: Microsoft’s Copilot
Copilot is growing up: Microsoft's AI is no longer an assistant, but a proactive agent. With "Vision," it sees your Windows desktop; in M365, it analyzes data as a "Researcher"; and in GitHub, it autonomously corrects code. The biggest update yet.
Windows 12: Where is it? The current status in October 2025
Everyone was waiting for Windows 12 in October 2025, but it didn't arrive. Instead, Microsoft is focusing on Windows 11 25H2 and "Copilot+ PC" features. We'll explain: Is Windows 12 canceled, postponed, or is it already available as an AI update for Windows 11?
Blocking websites on Windows using the hosts file
Want to block unwanted websites in Windows? You can do it without extra software using the hosts file. We'll show you how to edit the file as an administrator and redirect domains like example.de to 127.0.0.1. This will block them immediately in all browsers.
The “Zero Inbox” method with Outlook: How to permanently get your mailbox under control.
Caught red-handed? Your Outlook inbox has 1000+ emails? That's pure stress. Stop the email deluge with the "Zero Inbox" method. We'll show you how to clean up your inbox and regain control using Quick Steps and rules.
Offers 2024: Word & Excel Templates
Popular Posts:
Dynamic ranges in Excel: OFFSET function
The OFFSET function in Excel creates a flexible reference. Instead of fixing =SUM(B5:B7), the function finds the range itself, e.g., for the "last 3 months". Ideal for dynamic charts or dashboards that grow automatically.
Mastering the INDIRECT function in Excel
The INDIRECT function in Excel converts text into a real reference. Instead of manually typing =January!E10, use =INDIRECT(A2 & "!E10"), where A2 contains 'January'. This allows you to easily create dynamic summaries for multiple worksheets.
From assistant to agent: Microsoft’s Copilot
Copilot is growing up: Microsoft's AI is no longer an assistant, but a proactive agent. With "Vision," it sees your Windows desktop; in M365, it analyzes data as a "Researcher"; and in GitHub, it autonomously corrects code. The biggest update yet.
Windows 12: Where is it? The current status in October 2025
Everyone was waiting for Windows 12 in October 2025, but it didn't arrive. Instead, Microsoft is focusing on Windows 11 25H2 and "Copilot+ PC" features. We'll explain: Is Windows 12 canceled, postponed, or is it already available as an AI update for Windows 11?
Blocking websites on Windows using the hosts file
Want to block unwanted websites in Windows? You can do it without extra software using the hosts file. We'll show you how to edit the file as an administrator and redirect domains like example.de to 127.0.0.1. This will block them immediately in all browsers.
The “Zero Inbox” method with Outlook: How to permanently get your mailbox under control.
Caught red-handed? Your Outlook inbox has 1000+ emails? That's pure stress. Stop the email deluge with the "Zero Inbox" method. We'll show you how to clean up your inbox and regain control using Quick Steps and rules.
Offers 2024: Word & Excel Templates
