Hackers using bots can crack about 60% of passwords in less than 60 minutes, and 45% in less than 60 seconds.
To protect your personal information, we’ve introduced multi-factor authentication (MFA) on all AusPassport accounts. MFA makes it harder for cybercriminals to take over your account as it adds an extra layer of protection. Even if your password is guessed or stolen, your account can’t be accessed without a unique authentication code from your email or phone number.
We also strongly recommend you follow these general password security tips:
- change your password to a strong, unique passphrase that uses 4 or more random words*
- use a password that’s easy for you to remember but hard for others to guess
- use a password manager
- don’t re-use the same password across multiple online accounts
- don’t save passwords in your web browser
- don’t share your password with anyone
- don’t let anyone see your screen if you use the ‘show password’ option.
* You can find the specific AusPassport account password requirements on our website.
You can test the strength of your password and whether it’s been involved in a breach or leak by visiting the passwords page on the NSW Government website.