Online Safety

How to Create a Strong Password (Without Forgetting It)

4 min read March 1, 2025

How to create strong passwords that are hard for hackers to guess but easy for you to remember.

Why Your Password Matters More Than You Think

Think of your online accounts — your email, your bank, your Medicare portal — as having a front door. Your password is the lock on that door. A weak password is like a lock you can open with a paperclip. A strong one makes it almost impossible for anyone to get in without your permission.

Criminals who want to break into online accounts don't sit there typing guesses one by one. They use software that can try thousands of common passwords per second. That means a password like "password123" or your dog's name can be cracked in seconds. A well-built password, though, would take that same software millions of years to crack.

The good news: you don't need to be a tech wizard to create a strong password. You just need to know the trick. ⚠️ Common Passwords to Avoid

Never use: your name, a family member's name, your birthday, your pet's name, "password," "123456," or the name of your town. These are the very first things criminals try.

What Makes a Password Weak vs. Strong

Weak passwords have a few things in common: they're short, they use real words, and they're based on personal information that someone might already know about you.

Strong passwords do the opposite. They are:

Long — at least 12 characters, ideally more
A mix of letters, numbers, and symbols
Not based on any real word or personal information
Different for every account you have

That last point is important. Many people use the same password for everything. It feels convenient — but if a criminal cracks one account, they immediately try the same password on your email, your bank, and everything else. Using a different password for each account keeps the damage contained if one ever gets compromised.

The Passphrase Method: Strong and Easy to Remember

Here's the trick most IT professionals use for passwords they actually need to remember: instead of a single complicated word, use a passphrase — a short sentence or string of random words that only makes sense to you.

Think of four or five words that have nothing to do with each other, then string them together with a number and a symbol. The result is a password that's both long and genuinely hard to crack — but surprisingly easy to remember because it paints a picture in your mind. Example Passphrase Password

Purple ! Teapot 7 Mailbox Fence

Written as a password: Purple!Teapot7MailboxFence — 25 characters, completely random, and easy to picture.

To make your passphrase, just picture a silly little scene in your mind — a purple teapot sitting on a mailbox next to a fence, for example. That image will stick with you far better than "xK9#mQ2!" ever would. 💡 Quick Tip

Use a phrase from a favourite song, book, or memory — but change it a little. Take the first letter of each word, add a number and a symbol, and you have a strong password that means something to you.

Step-by-Step: Creating Your Passphrase Password

Let's build one together right now.

1Pick four random words. They should have nothing to do with each other — and nothing to do with you personally. Try: a colour, an object, an animal, and a place. For example: Green, Umbrella, Penguin, Kitchen.
2Add a number you'll remember. It doesn't have to be meaningful — just something you won't forget, like your favourite number or a number from a childhood address. Avoid your birth year.
3Add a symbol somewhere in the middle. A !, ?, @, or # works well. Placing it between two words makes it harder to crack without making it harder to remember.
4Capitalise the first letter of each word. This adds more variety without making things complicated.
5Write it down somewhere safe at home — not on a sticky note on your monitor, but in a notebook you keep in a drawer. Having a physical backup is fine and far better than forgetting it or using something weak.Your Finished Password Might Look Like This

Green!Umbrella42PenguinKitchen

30 characters. Mix of capitals, lowercase, a symbol, and a number. Would take a computer billions of years to guess.

A Different Password for Every Account

We know — creating a unique password for every single account sounds like a lot. But you don't have to do them all at once. Start with the three most important ones: your email, your bank, and any account that stores your credit card information. Those are the ones where a break-in would hurt the most.

For less important accounts — a recipe website, a newsletter sign-up — a slightly simpler password is less of a concern. Prioritise the accounts that matter. 💡 Small Variation Trick

You can make your passphrase unique for each site by adding a short tag to the end. For example, add "Bank" for your banking password, "Mail" for email. Just make sure the core passphrase stays strong.

What About Password Managers?

A password manager is an app that remembers all your passwords for you. You create one strong master password to unlock it, and it stores everything else. Many IT professionals use them.

Good options include Bitwarden (free), 1Password, and the built-in password tools in iPhones and Android phones. If you're comfortable with technology, it's worth looking into — but it's also perfectly fine to use the passphrase method with a written notebook as a backup. Both approaches work. ⚠️ Never Do This

Never share your password with anyone who calls or emails you asking for it — including people claiming to be from your bank, Medicare, Apple, or Microsoft. Legitimate organisations will never ask for your password. Ever.

The Bottom Line

A strong password is long, random, and unique to each account. The passphrase method — four unrelated words, a number, and a symbol — gives you a password that's both genuinely secure and actually possible to remember. Start with your email and bank accounts today, keep a written copy somewhere safe at home, and never share it with anyone who asks.

Enjoying this article?

Subscribe to Savvy Silver Tech for full access to every guide, video, and our weekly newsletter — all for $2.99/month.Subscribe — $2.99/mo

Cancel anytime. No contracts.

Free

A New Scam Warning from Google: Fake Government Calls and QR-Code Phishing Are Getting More Convincing

Google's latest scam advisory warns about more sophisticated phishing, fake government messages, and high-pressure calls that try to steal money or login information. The safest response is still simple: pause, verify, and do not move money under pressure.

Free

Medicare Recipients: Watch for Fake Hospice Sign-Ups and "Free Home Service" Offers

The FBI is warning that some Medicare recipients are being signed up for hospice care they do not need, sometimes without fully understanding what they agreed to. Be cautious of anyone offering free home services in exchange for signing forms.

Free

When a Red Alert on Your Phone Tells You to Call: The Apple Gift Card Scam

A frightening red warning can make it look like your phone is disabled until you tap a button and call support. Here is how scammers use that trick, remote access apps, and gift cards to steal money.