Start Here
If you only do a few things, do these. This is the 80/20 that prevents most account takeovers.
1) Lock down your email (highest leverage)
- Turn on two-factor authentication for your email account(s)
- Review recovery options (phone number, recovery email)
Read: Two-factor authentication
2) Use a password manager (stop password reuse)
- Pick a reputable password manager
- Change your most important passwords first (email, banking, Apple/Google)
Read: Passphrases
3) Add a security key (best protection against phishing)
- Add a hardware security key to your email + password manager
Recommended: Recommended Products
4) Secure your phone
- Keep OS updated
- Turn on device encryption and a strong lock screen
Read: Mobile phone security guide
If you want, tell me what you use (Gmail/Outlook, iPhone/Android) and I’ll point you to the exact steps.