In addition to the methods you mentioned, you can also spread your investments in multiple exchanges to remain safe. In case one exchange is hacked, your investment in other ones will be safe.
A loss is still a loss to me though, it'd be better to store your coins/tokens/altcoins on a Desktop wallet.
Only send amount that you are going to trade, otherwise keep it inside.
To avoid scams we have a few general rules:
Never download/install anything suspicious to add to the list