-Create a separate password for each website you use

-No website should EVER have the same password as your e-mail account

-Ideally, you should use a password manager such as 1Password or Last Pass that will help you create long, randomized passwords.  Safari on the Mac also offers this feature and Google Chrome does as well.

-In lieu of letting a password manager create your passwords, think of an easy for you to remember but hard for others to guess, “base,” for all of your passwords, then put a unique identifier at the end of each specific password.  For example — your Microsoft account password could have the letters “ms” or “msft” at the end of your base.

-Wherever possible, enable two factor authentication with your online accounts

-This will require you to periodically enter a code in addition to your password to log into these services

-These codes are texted to your cell phone or provided by a code authenticator app

-It becomes significantly harder for a bad actor to log into  your account because they don’t physically have your cell phone or code authenticator

-Examples of websites that allow you to setup 2 factor authentication are — Apple / iCloud, Google, Yahoo, Outlook.com / Microsoft account, Bank of America, and many more

-Unless you are regularly applying for credit or having your credit bureaus checked — freeze your credit reports!

-Thanks to a new law – the  Economic Growth, Regulatory Relief, and Consumer Protection Act — effective Sept 21st,  it is now free to freeze and unfreeze your credit reports with Equifax, Experian, and Trans Union