Narang said. Other tips to keep in mind are keeping software and security patches up to date, using strong passwords, creating a different password for every website, and using two-factor authentication when possible, according to Narang. And, of course, never give out any personal information via email, social media platforms, text messages or instant messages, Narang said. Users should also enable your email provider’s spam/phishing filters and clicking on unknown links is a bad idea. Don’t even click on links, even from family or friends, if the email lacks any context or truly personal message that [would] indicate it’s real.