1- Never ever use an exchange without 2FA: Even the hardest passwords can get hacked easily. If you don't use 2FA you can get hacked...
Using exchanges that have 2FA enabled on them is an added security advantage, but the security advantage can also be bridge by you in some point, one if you happen to use a same email link to your exchange and it's also part of your primarily email on your device, their is a possibility of you also getting compromise, as one of the first thing hackers target when they want to hack your account is your email as it will give them the necessary details they need in other to be successful in their mission.
.
Third-party service providers are not trustworthy therefore it will be a big mistake to use your main or primary email to register with them. The simple thing is to create several nominal emails that will be used for KYC requirements. The benefits of 2FA cannot be overshadowed by the simple practice of creating a new email.
So the safest thing is to not leave your money on centralized exchanges. If you must use them once you are done, always withdraw them back to your private wallet.
Your personal information is as important as your funds, so not leaving large finds in exchanges is as important as not allowing them to have access to your personal data.
2- Never ever use the same password for different accounts.
Yep, I got hacked! Why? I was applying for several airdrops, you guys know that nowadays some of them require signing up to their websites. And what have I done? I used the same password and email I used for the Bibox exchange.
Sometimes using the same password for everything you do makes it easier to guess and be hacked. But also look at it this way: saving your password and logs on your browser also reduces your security, as if the email linked to your browser is compromised, all your saved logs will be in the wrong hands. And these days browsers are also being penetrated for data theft without the user's knowledge, so the best thing to do is always login as you go and don't use the save password option; it helps with easy remembering but is also a security risk.
[/quote]
We shouldn't sacrifice privacy at the altar of convenience. Having the same password might be easy to access all your accounts but it gives hackers or scammers easy access to all your accounts. The best option will be to spend time cramming them and in no time you will get used to them. You can also keep them in a safe offline place.