1. Check your PC of viruses or malware before you change your password
Most hackers get your password through malware that’s been installed on your PC without your knowledge (for example, when you download a new screen saver, toolbar or other software from an untrustworthy source.) It’s important to clear your PC of viruses or malware before you change your password. That way, the hackers won’t get your new password.
If you have a good antivirus program installed, make sure it is up-to-date, then do a full scan of your system. If you don’t have an antivirus app installed, install one ASAP. Many companies offers free solutions for example AVG, Avira, Microsoft and Panda.
If you’re running Windows 7, you can download and install Microsoft Security Essentials.
If you’re running Windows 8.1 or 10 you already have Windows Defender. To turn it on, from the Start screen or Search for “Windows Defender” and tap or click Windows Defender, then follow the instructions on the screen.
Regardless of which antivirus app you install, run a full scan on your PC before you change your password. You should also set up your antivirus app to automatically get updates and to scan your PC on a regular basis.
2. Change your password
After you have run the antivirus app, try to sign in to your account and change your password. If you can’t sign in, try to reset your password.
Make sure you create a strong password, using a mixture of uppercase, lowercase, numbers and special charactors
Use 2 step verification if possible.
Don’t use the same password for different accounts.
Do make the new password significantly different from previous passwords.
Don’t recycle passwords.
Do change your password regularly.
Don’t use a single word for your password.
Do use a password phrase (no spaces between words) that can’t be guessed easily.
Don’t use easy-to-remember personal info like your name, names of family members, your address or phone number.
Do use an easy-to-remember sentence or phrase converted into a string of initials, numbers and symbols.
Don’t use passwords like “password”, “money$$$” or “12345678”.
Use ‘Have I Been Pwned?’
‘Have I Been Pwned?’ is one of the best tools for checking your email accounts’ safety. You should go to the website and enter each of your email addresses.