Use at least 12–16 characters
Mix uppercase and lowercase letters
Include numbers
Include special characters
Avoid common words
Avoid personal information
Avoid predictable patterns
Use a unique password for each account
Use a passphrase with random words
Avoid reusing old passwords
Use a password manager
Enable multi-factor authentication