Strong passwords are key to protecting your personal information. Once a cybercriminal has your password, they will have unlimited access to unlock and steal your personal information, inflicting untold damage to your wallet and reputation. Criminals often employ sophisticated tools to help them decipher passwords – outsmart them by reading the tips below and create passwords that are challenging to crack.
Strong passwords should be easy for you to remember, but difficult for
others to guess. When choosing passwords, make sure they meet the
standards below:
Lengthy – Longer passwords are more difficult to crack.
Mix It Up – Use mixed case letters, numbers, and special characters in each of your passwords. Note that common substitutions, like using $ for S, are so frequently used that they are easy for hackers to guess.
Don't Make It Easy – Try to be unpredictable. Common words or personal details are predictable. Choose words that are hard to guess.
Avoid Repetition – Do not repeat the same password across your accounts. That way, if one password is stolen, it cannot be used elsewhere. If you must reuse passwords, do so only for accounts that have little importance.
Use A Passphrase – Instead of a password, consider using a passphrase. Phrases are longer than words, and the added length will increase its complexity and make it more difficult to crack. You might use a phrase you were taught from your youth, your favorite movie quotation (Example: ETphonehome) or song lyric (Example: OhSayCanYouSee), or an original phrase you can easily remember (Example: “PitSteelersAreTheBestTeamInTheUS”).
Enable Multi-Factor Authentication – When available, take advantage of this additional level of security that authenticates you as the account owner using a one-time use code sent via a text/email, a code-generating fob or app, or biometrics (fingerprint scan, face/voice recognition, etc.).
Select a Password and User ID That are Unique to Your Banking Accounts – Never use the same password and user ID to conduct your banking as you do for any other site. Reusing the same log-in credentials on different websites, such as social media sites or email, puts your credentials at risk, as well as any other account using those same credentials.
Set Up Alerts – This is a security option to receive an email and/or text message notification of key activity on your bank accounts and credit cards. Check with your bank and card issuers if this security feature is available.
Choose Security Questions when Available/Offered – Select security questions with answers that cannot be found on public websites or guessed. For example, if you’ve ever noted your favorite color or favorite food on a social media website, this would not make for a good security question.
These articles are for general information purposes only and are not intended to provide legal, tax, accounting or financial advice. PNC urges its customers to do independent research and to consult with security, financial and legal professionals before making any financial decisions. This site may provide reference to internet sites as a convenience to our readers. While PNC endeavors to provide resources that are reputable and safe, we cannot be held responsible for the information, products or services obtained on such sites and will not be liable for any damages arising from your access to such sites. The content, accuracy, opinions expressed and links provided by these resources are not investigated, verified, monitored or endorsed by PNC.
Read a summary of privacy rights for California residents which outlines the types of information we collect, and how and why we use that information.