This advice is for all.
Use a password manager such as
Lastpass which is free and ensure all your passwords are different, ensure your master password is extremely secure,
keep it safe and also make sure all other passwords are random characters of at least 8 characters that are unique (I'd use at least 9 characters), preferably containing a combination of upper case, lower case and numbers (you can also include symbols, but not all systems support all of them). Don't ever use names, words from the dictionary, words with numbers at the end or similar combinations as your password as it is not secure (watch the video).
If you think your passwords are secure, think again after watching this:
And this video was from 2016, password cracking will have advanced even more since then and there is even more powerful hardware available.
Now check whether you have been pwned, E.g. has your information been already leaked? You will be very surprised that a high proportion of people are on this database and this is only known leaks, while many are discovered long after. If you have been pwned, then even if your username and password information is hashed on the leaked database, hackers can use the techniques shown in the video to crack passwords, that's why a secure password is important.
Have I been pwned? Check if your email has been compromised in a data breach
Note: The above site is safe and doesn't actually reveal anyone's password information, it only tells you if your information has been leaked and by what company.
Yes it is frightening to be on this list and many people here will be, but it's meant to be so people will learn. Many companies don't store their password information securely and hackers often will steal people's usernames and passwords, and then test them against various other sites they want to hack into. When data is compromised lots of companies don't even publicise it or warn their users, so even if you're not on this list don't take it lightly.
Also ensure you have adequate antivirus software installed that is kept up to date, there are free ones available if necessary such as
Avast or
AVG on PC, but paid is usually even better. Windows 7 and above comes with basic antivirus protection, but it's not the best despite some reviews to the contrary and I recommend better. Ideally you will have antivirus protection that also protects you from keyloggers that basically record your keypresses including passwords and send the information to a hacker without you knowing. For a free independent antikeylogger solution there is
KeyScrambler that will protect you in most browsers with additional protection for paid users. Some broadband provider subscriptions come packaged with licences to paid antivirus / security software that maybe worth checking out if you haven't already, well they do in the UK at least. I'm not a smartphone expert, but Lastpass is available on Android too as well as antivirus software, obviously only download apps from reputable sources.
Best of luck!
PS: Even social media passwords are worth hacking because spam bots will use accounts to make money, occasionally accounts can be used for worse crimes.
PPS: I see clicking on external links and the dangers has already been discussed and that you need to ensure the message really was from Twitter, not a phishing attempt which is very common.
