1. When choosing a new password, make it six or more characters (eight is ideal), and have at least one shifted character (i.e., !@#$%&), one letter and one number.
2. Do not use the same password for all of your private accounts.
3. Never send passwords in an e-mail.
4. Never write down usernames and passwords and leave them where they can be easily seen.
5. Never give out a password to another user.
6. Lock your computer if you’re going to be away for more than a few minutes.
7. Remember to change your passwords frequently. If you’re on a corporate network, ensure that a corporate password rotation policy is in place.
Need more convincing? Check out our latest article on Microsoft's crusade on dumb passwords.