Brilliant move, using the same password on Gmail, Amazon, and that motorcycle forum! I've really enjoyed reading your email and taking over your bank account. I'm so glad you never learned to protect yourself. 
John Short & Chrissie MacDonald
- GET A GOOD PASSWORD MANAGER
The best passwords are long strings of letters, numbers, and symbols that you can't remember. So you'll need a tool to keep track of them—ideally, one you can access from any device. Look for a product that not only stores passwords but also generates them for you. I like 1Password, which works well on Mac OS, Windows, iOS, and Android.
- PERFORM A PASSWORD AUDIT
Import all your existing passwords into your password manager (you probably have more than you realize stored in your browser). Now for the audit. Search for reused passwords first; these are your biggest security risk. Eliminate every instance of repetition. Then search for schemes (like 1234Facebook or 1234Google). A savvy hacker—or cracking program—will get past those in seconds. Finally, sort your passwords by strength and change the weak ones.
- SEARCH YOUR EMAIL
Your inbox is a treasure trove of passwords. An easy solution: Do a simple search for “password” and delete all the results. Also search for “login” and “username.” This way, if someone does get into your email, they'll have a harder time finding all your accounts.
- WALL OFF CRITICAL ACCOUNTS
Your bank, email, online investing, cell phone, Internet service, and data storage accounts are critical. Take extra steps to protect these. If you haven't already done so, set up two-step verification for such accounts. Two-step login requires an additional code that's sent to your phone (the code changes each time). If your bank doesn't offer two-step, change to one that does.
For next level security, just go ahead and get a Yubikey
If that feels like too much, a password manager would still up your game
Alright, fine. At the very least, follow these 7 steps for better passwords
