Password creation advice

You should never tell anyone your password, including moderators of any kind, even JMods. Nobody else should know your password and it should not be easily guessed. We recommend changing your password every three months.

To keep your account safe, here are a few tips:
1. Use a unique password for each of your accounts
Reusing passwords is risky. If someone figures out the password for one account, they could potentially gain access to other accounts (think: email, RuneScape, banking, and more!)
Make sure your password has a mix of:
  • Letters
  • Numbers
  • Symbols
This makes it harder for someone to guess.
2. Don't use personal information or common words
Create a password that's unrelated to your personal information.
Try selecting a random word or phrase and insert letters and numbers into the beginning, middle and end to make it extra difficult to guess!
3. Make sure your registered email is up-to-date and secure
Your password is only as secure as the registered email on your account. Go to our advice on securing your computer and account for more information on 2-Step Verification for your email address.
4. Add an extra layer of security with RuneScape Authenticator
Once you've created a password, you can add an extra layer of security by enabling RuneScape Authenticator. This extra defense means that even if someone knows your password they'll be unable to access your in-game account.
Was this article helpful?