Pentagon Federal Credit Union
Log In Accounts
Search
  • Routing # 256078446
  • Partners
  • Member Discounts
  • Wealth
  • Foundation
  • ATMs & Branches
  • About
  • Search
  • Checking & Savings
    • Checking
      • Free Checking
      • Access America Checking
      • All Checking Accounts
    • Savings
      • Premium Online Savings
      • Regular Savings
      • All Savings Accounts
    • Certificates
      • Money Market Certificate
      • Coverdell Education Certificate
      • All Certificates
    • IRAs
      • IRA Certificate
      • IRA Savings Account
      • All IRAs
    • How Can We Help?
      • Contact Us
      • FAQs
      • Forms
    • Special
      • Access America Checking - Earn more and Get paid early.
  • Credit Cards
    • Our Cards
      • Credit Cards Overview
    • How Can We Help?
      • Contact Us
      • Disclosures
      • Resource Center
    • Special
      • Choose the perfect card - Open Now
  • Auto
    • Auto Loans
      • Purchase
      • Refinance
      • Car Buying Service
    • Protection
      • Vehicle Protection
      • GAP Coverage
      • Debt Protection
    • How Can We Help?
      • Contact Us
      • FAQs
      • Forms
    • Special
      • Unlock your next road trip - Explore Vehicles
  • Mortgage & Home Equity
    • Home
      • Mortgage Home
    • Purchase
      • Apply for a Mortgage
      • PenFed Homes
      • First Time Homebuyer
      • Mortgage Pre-approval
    • HELOC & Refi
      • HELOC
      • Mortgage Refi
    • Loan Types
      • Conventional Loan
      • FHA Loan
      • VA Loan
      • Jumbo Loan
      • VA Refi Loan
    • Tools & Resources
      • Knowledge Center
      • Mortgage Media
      • Mortgage Calculators
      • Contact
    • Special
      • Home affordability sale - View Rates
  • Loans
    • Personal Loans
      • Overview
      • Debt Consolidation
      • Credit Card Consolidation
      • Home Improvement
      • Additional Uses
    • Student Loans
      • Student Loans
    • How Can We Help?
      • Contact Us
      • FAQs
      • Forms
    • Special
      • Personal Loans made easy online
  • Learn
    • Learning Hub
      • Learning Center
      • Mortgage Knowledge Center
      • Financial Assistance Center
      • Natural Disaster Relief Assistance
    • About PenFed
      • About
      • New Members
      • Sponsors
      • FAQs
      • Forms
    • Security & Fraud
      • Security Center
    • How Can We Help?
      • Careers
      • Contact Us
    • Special
      • Learn how we protect your data
  • Join Now
  • Log In
  • Accounts
  • Resources

LEARNING CENTER

To get ahead you have to stay informed.
  1. Home
  2. Learning Center
  3. How to Create a Strong Password

SECURITY

How to Create a Strong Password

What you'll learn: Learn how to set a secure password, manage multiple passwords, and protect your data online.

EXPECTED READ TIME:5 MINUTES

Published: January 28, 2019

Updated: February 3, 2025

You’re creating a new account online, when you’re prompted to add a password. Do you enter the same password you use for every account? Maybe substitute a number for a letter somewhere? Jot down your pet’s name on a scrap of paper, possibly with the year you were born?

Any of these common methods of password management is setting you up for either getting locked out of your account or losing your account to hackers. There’s a better way and it’s actually pretty easy.

What We’ll Cover

  • Why Password Protection Matters
  • What Makes a Good Password?
  • Are Strong Passwords Enough to Protect My Data?
  • Enhance Your Passwords With Multifactor Authentication (MFA)
Infographic

Why Password Protection Matters

The average American shares a lot of personal information online. Besides the information shared on social media and networking sites,

  • Over three-quarters of the country's consumers have shopped for items on the web, sharing sensitive credit or checking account data to complete their transactions.
  • 3 in 5 Americans have used online medical records or patient portals to communicate with doctors or hospitals, sharing personal medical information.
  • 68.1% of U.S. companies use online recruiting platforms for most of their hiring, and 30% of U.S. adults rely on LinkedIn for professional networking, compelling Americans to share personal contact information and work history.

Even if you’re security-conscious and try to avoid putting your personal information online, odds are good that some of your info is out there. Passwords are the first line of security guarding that information, so it’s important to choose passwords carefully and safeguard them effectively.

Credit Card icon

Learn to reognize signs of credit card fraud and keep your finances secure.

Learn More

What Makes a Good Password?

Creating a strong password isn’t as hard as you think it will be. One way to create strong passwords that you’ll remember is to come up with a unique method for creating passwords based on the information here, and then using that each time you need to make one. Strong passwords should be:

  1. Long
  2. Non-personal and random
  3. Unique
  4. Updated regularly

Long

Most passwords are required to be at least 8 characters, 10 characters, or 12 characters. The most secure password includes a mix of 12 or more characters. The more characters in a password, the more combinations required to brute force it. Using different types of characters helps increase the security of your password. Your password should always include:

  1. Uppercase letters
  2. Lowercase letters
  3. Numbers
  4. Special characters (the ones above the numbers on your keyboard)
Passwords are the first line of security guarding, so it’s important to choose passwords carefully and safeguard them effectively.

Non-personal and Random

Yes, you’ll easily remember Fluffy’s name and your birthday — but those are also pieces of information data thieves can easily find about you online. So are the names of family members, parts of your address or past addresses, and facts often posted on social media profiles such as your hometown, where you went to high school, or your favorite band.

Your password will be much stronger if it doesn’t contain personal information about you, especially information that you commonly make public.

Unique

The average adult potentially must remember hundreds of passwords, so it’s understandably tempting to reuse them. Unfortunately, that makes you incredibly vulnerable.

Some people like to follow a pattern when creating passwords that helps them remember each one with a little variation. While this seems like a good way to keep track of passwords, it makes it easy for data thieves to crack all of your accounts once they get their hands on a single password.

The average adult potentially must remember hundreds of passwords.

Updated Regularly

You should change the passwords on your most important accounts every few months. While changing passwords is a pain, it ensures that your account stays secure even if your login credentials have been compromised. This is a good idea for accounts related to:

  • Medical information
  • Financial or retirement information
  • Health insurance or government benefits

 

employee-ID-badge

Identity theft can happen to anyone. Use these tips to safeguard your identity.

Learn More

Tips for Managing Passwords

Remembering all your passwords can be a challenge, but that doesn’t mean you have to resort to writing them under a crumpled sticky note and hiding them under your keyboard. Here are some better ways to manage your passwords.

Password Managers

A password manager is a tool that helps you create, save, and enter secure passwords across different platforms. These tools can save hundreds of passwords, even enabling you to share some passwords with family (such as login credentials for shared subscriptions or streaming services) while keeping others (like your checking account information) private.

The best password managers will actually generate new, unique passwords when you create new online accounts. You can tweak these passwords to suit your needs by lengthening them, adding symbols, or selecting to use both lowercase and capital letters. They may also alert you if your existing passwords are weak or compromised.

The best password managers will actually generate new, unique passwords when you create new online accounts.

One downside to password managers is that they do come with a subscription cost. However, many people find they’re worth the price because of the convenience and peace of mind they offer.

If you decide to invest in a password manager, choose one that works on your computer and smartphone. Be sure to opt into multi-factor authentication, and use our tips for strong passwords when you set your master password.

A good passphrase could represent a line from your favorite song, a quote from a movie or book, or a funny saying in your family.

Passwords vs. Passphrases

The most secure password isn’t a word at all — it’s a passphrase. Any word from a dictionary is searchable and crackable by hackers using computers to brute force passwords. In contrast, a passphrase makes your password appear random while it’s actually easy to remember.

A good passphrase could represent a line from your favorite song, a quote from a movie or book, or a funny saying in your family. Take the first letter from each word, substitute a few numbers and special characters for letters, and you have a new strong password that’s difficult to guess but easy to recall.

Passphrase example: Jack and Jill went up the hill to fetch a pail of water = j&jwUth2fAp0w

Here, the number 2 replaces “to”, “0” (zero) replaces the letter “o”, “&” replaces “and”, and all vowels are capitalized while consonants remain lowercase. This creates a lengthy password to stop data thieves in their tracks.

Because you only use the first letter of each word of your passphrase, passphrases are a good choice even when password length is restricted. Remembering your passphrase could be as easy as humming the chorus of your favorite song. You can literally sing your way to stronger password security.

employee-ID-badge

Phishing is one of the most common ways passwords are compromised.

Learn More

Are Strong Passwords Enough to Protect My Data?

Passwords are surprisingly vulnerable.

Theoretically, any password can be hacked with enough time and computing power. A “brute force attack” is when a hacker tries every possible combination of characters until one unlocks your account. But this takes time, especially as an increasing number of websites require combinations of capital and lowercase letters, numbers, and symbols, increasing the number of possible combinations and lengthening the time it takes to crack a password.

Passwords are more often stolen than hacked. Malware on your computer or phone that tracks keystrokes or steals temporary files can deliver your username and password straight into the hands of hackers. Phishing — the practice of using emails, text messages, phone calls, or fake websites to trick users into sharing passwords — is even more common.

Login credentials can also be stolen through data breaches in which hackers penetrate a company’s computer system and steal sensitive information. Stolen usernames, passwords, and other personal data can be used to steal identities or sold on the dark web.

Multifactor authentication can make your passwords 99% more secure.

Enhance Your Passwords with Multifactor Authentication (MFA)

One simple step can make your passwords 99% more secure — turning on multifactor authentication.

In cybersecurity speak, a “factor” is a way of confirming your identity. A password is one type of factor, but there are others such as:

  • Personal identification numbers, or PINs
  • Secure USB keys
  • Keys or key fobs
  • Fingerprints or facial recognition

Factors can be divided into three categories: something you know, something you have, and something you are. MFA simply requires you to enter two different types of factors to gain access to your account.

Odds are, you’ve used MFA before. If you’ve ever entered your password and been sent a code through email or text to enter into a website, that’s MFA in action.

MFA keeps you safe because it requires hackers to have more types of information about you. Even if they’ve stolen your password, they still another factor such as your fingerprint or your phone to access your account.

The Takeaway

Protecting your personal information online is important, but thankfully it doesn’t have to be a headache. Now that you know how to create — and keep up with — secure passwords, you can help safeguard your loved ones by passing on this vital information.

Have Questions about Security? PenFed Has Answers.

Learn more about protecting yourself from online theft and threats.

Learn More

SIMILAR ARTICLES

What to Know About Brushing Scams

Protect yourself from brushing scams by learning what they are and how to avoid them.

Brushing Scams

Protect Your Children’s Personal Data Online

Children begin developing personal data profiles as early as kindergarten. Learn how to protect your children’s personal data online. 

Protect Your Children’s Personal Data Online

Safeguard Your Financial Data

In the online phishing world, helping to safeguard your financial data is a responsibility PenFed Credit Union takes seriously, using the latest security measures to secure your finances.

Safeguard Your Financial Data

Protection from Identity Theft & Financial Fraud

Concerned about identity theft protection for your family? PenFed Credit Union offers tips to protect your personal information. See how identity theft can affect your finances.

Identity Theft & Financial Fraud
  • ATMs & Branches
  • Careers
  • Foundation
  • Contact Us
  • Security Center

This credit union is federally insured by the National Credit Union Administration. Rates are current as of May 2025 unless otherwise noted and are subject to change.

APY = Annual Percentage Yield
APR = Annual Percentage Rate


  • facebook
  • twitter
  • linkedin
  • youtube
  • instagram
Download the PenFed app on Apple Store Download the PenFed app on Google Play
Read More about Equal Housing
Routing #256078446

©2025 Pentagon Federal Credit Union

Privacy
Disclosures
Fees
Rates
Forms
Site Map

Head’s Up!

You are about to visit a third-party site not affiliated with PenFed.org.

penfedcu.sparrowfi.com sparrowfi.com penfed and traveller logo penfed and seguros logo penfed and national car logo penfed and trustage logo PenFed and CampusDoor logo PenFed and Ascent logo PenFed and Ascent logo penfed and househappy logo penfed and benefit services logo penfed and chubb logo penfed and alpha logo penfed and crutchfield logo penfed and ftd logo

This content is from a third-party website. PenFed Credit Union is not responsible for its information.

Continue

Get Started

×

LOGIN

JOIN