London Daily

Focus on the big picture.
Wednesday, Jul 02, 2025

Three random words better than more complex passwords – GCHQ

Three random words better than more complex passwords – GCHQ

The advice comes amid rising cyber crime amid the pandemic.

It is far better to concoct passwords made up of three random words than use more complex variations involving streams of letters, numbers and symbols, Government experts have said.

The National Cyber Security Centre (NCSC), part of Government Communications Headquarters (GCHQ), highlighted its “three random words” recommendation in a new blog post.

It said a key reason for using the system is it creates passwords that are easy to remember yet strong enough to keep online accounts secure from cyber criminals, owing to their unusual combination of letters.

By contrast, more complex passwords can be ineffective because they can be more guessable for criminals and the software they build to detect them, the advice says.

"Traditional password advice telling us to remember multiple complex passwords is simply daft"


The agency says cyber criminals target predictable means supposed to make passwords more complex – like substituting the letter o with a zero, or the number one with an exclamation mark.

Criminals allow for such patterns in their hacking software, which negates any desired added security from such passwords.

“Counter-intuitively, the enforcement of these complexity requirements results in the creation of more predictable passwords,” the agency said.

By contrast, passwords constructed from three random words tended to be longer and harder to predict, and used letter combinations which were more difficult for hacking algorithms to detect.

The blog post concedes the three random words approach was not 100% safe since people might use predictable word combinations, but said a major advantage of the system was its usability “because security that’s not usable doesn’t work”.

Cyber crime has risen dramatically during the pandemic


The guidance comes as cyber crime has soared during the pandemic, with online fraud rising 70% in the last year, according to data from the Office for National Statistics.

“Traditional password advice telling us to remember multiple complex passwords is simply daft,” NCSC technical director Dr Ian Levy says on the centre’s website.

“There are several good reasons why we decided on the three random words approach – not least because they create passwords which are both strong and easier to remember.

“By following this advice, people will be much less vulnerable to cyber criminals and I’d encourage people to think about the passwords they use on their important accounts, and consider a password manager.”

Newsletter

Related Articles

0:00
0:00
Close
Poland Implements Border Checks Amid Growing Migration Tensions
Political Dispute Escalates Between Trump and Musk
Emirates Airline Expands Market Share with New $20 Million Campaign
Amazon Reaches Milestone with Deployment of One Millionth Robot
US Senate Votes to Remove AI Regulation Moratorium from Domestic Policy Bill
Yulia Putintseva Calls for Spectator Ejection at Wimbledon Over Safety Concerns
Jury Deliberations in Diddy Trial Yield Partial Verdict in Serious Criminal Charges
House Oversight Committee Subpoenas Former Jill Biden Aide Amid Investigation into Alleged Concealment of President Biden's Cognitive Health
King Charles Plans Significant Role for Prince Harry in Coronation
Two Chinese Nationals Arrested for Espionage Activities Against U.S. Navy
Amazon Reaches Major Automation Milestone with Over One Million Robots
Extreme Heat Wave Sweeps Across Europe, Hitting Record Temperatures
Meta Announces Formation of Ambitious AI Unit, Meta Superintelligence Labs
Robots Compete in Football Tournament in China Amid Injuries
Trump Administration Considers Withdrawal of Funding for Hospitals Providing Gender Treatment to Minors
Texas Enacts Law Allowing Gold and Silver Transactions
China Unveils Miniature Insect-Like Surveillance Drone
OpenAI Secures Multimillion-Dollar AI Contracts with Pentagon, India, and Grab
Marc Marquez Claims Victory at Dutch Grand Prix Amidst Family Misfortune
Germany Votes to Suspend Family Reunification for Asylum Seekers
Elon Musk Critiques Senate Budget Proposal Over Job Losses and Strategic Risks
Los Angeles Riots ended with Federal Investigations into Funding
Budapest Pride Parade Draws 200,000 Participants Amid Government Ban
Southern Europe Experiences Extreme Heat
Xiaomi's YU7 SUV Launch Garners Record Pre-Orders Amid Market Challenges
Jeff Bezos and Lauren Sanchez's Lavish Wedding in Venice
Russia Launches Largest Air Assault on Ukraine Since Invasion
Education Secretary Announces Overhaul of Complaints System Amid Rising Parental Grievances
Massive Anti-Government Protests Erupt in Belgrade
Trump Ends Trade Talks with Canada Over Digital Services Tax
UK Government Softens Welfare Reform Plans Amid Labour Party Rebellion
Labour Faces Rebellion Over Disability Benefit Reforms Ahead of Key Vote
Jeff Bezos and Lauren Sánchez Host Lavish Wedding in Venice Amid Protests
Trump Asserts Readiness for Further Strikes on Iran Amid Nuclear Tensions
North Korea to Open New Beach Resort to Boost Tourism Economy
UK Labour Party Faces Internal Tensions Over Welfare Reforms
Andrew Cuomo Hints at Potential November Comeback Amid Democratic Primary Results
Curtis Sliwa Champions His Vision for New York City Amid Rising Crime Concerns
Federal Reserve Proposes Changes to Capital Rule Affecting Major Banks
EU TO HUNGARY: LET THEM PRIDE OR PREP FOR SHADE. ORBÁN TO EU: STAY IN YOUR LANE AND FIX YOUR OWN MESS.
Trump Escalates Criticism of Media Over Iran Strike Coverage
Trump Announces Upcoming US-Iran Meeting Amid Controversial Airstrikes
Trump Moves to Reshape Middle East Following Israel-Iran Conflict
Big Four Accounting Firms Fined in Exam Cheating Scandal
NATO Members Agree to 5% Defense Spending Target by 2035
Australia's Star Casino Secures $195 Million Rescue Package Amid Challenges
UK to Enhance Nuclear Capabilities with Acquisition of F-35A Fighter Jets
Russian Shadow Payments via Cryptocurrency Reach $9 Billion
Explosions Rock Doha as Iranian Missiles Target Qatar
“You Have 12 Hours to Flee”: Israeli Threat Campaign Targets Surviving Iranian Officials
×