diff --git a/WordPress-Security-Tips.md b/WordPress-Security-Tips.md
index 2f88206..ddd7028 100644
--- a/WordPress-Security-Tips.md
+++ b/WordPress-Security-Tips.md
@@ -86,4 +86,6 @@ WordPress in recent versions uses the 'X-Frame-Options' HTTP header for privileg
 
 Most administrative users login to their blog via the same IP address. By whitelisting access to the wp-login.php file you ensure that only specific IPs can access it.
 
+**23. Use a strong password**
+
 **For further WordPress hardening tips see: [http://codex.wordpress.org/Hardening_WordPress](http://codex.wordpress.org/Hardening_WordPress)**
\ No newline at end of file