Get yourself a Ledger Nano S or TREZOR wallet
Always print backups of wallets, really important keys, Google Authenticator backup codes, via a No-Wifi Printer (You can also write them down in a safe book)
Get USB Drives and be sure not to lose or break them.
Get rid of your clipboard manager, auto-upload screenshot app, remote viewer, they are not safe
Install a password manager and protect it with Google Authenticator
Your Computer
Review your Chrome Extensions and remove extensions you don’t use, don’t need, don’t trust. Disable ones you don’t actively use on a daily basis.
Turn off automatic updates
Use incognito mode when accessing super-secure things like banking and crypto
Don’t ever enter your secret-keys into websites using a browser that has extensions
All applications that start on launch should be disabled except you need it.
Do not install or download application from untrusted websites.
Review your Cloud Storage Software
Disable uploading automatically.
Avoid synchronizing your downloads or desktop or home directory
Remember that things that have been uploaded once are there for life, even if you delete it.
If you discover a password or private key in your Dropbox, start by deleting it. Deleting is not enough so immediately change the password or move your funds.
Change your passwords to new, unique, strong passwords
Never reuse passwords.
Enable 2FA.
If already enabled, disable and re-enable 2FA.
Remove your phone number from a 2FA option.
Generate new backup codes and write them down or print via no-wifi printer and securely removed from your device afterwards.
Review your Chrome Settings
- Unsandboxed plugin access: Ask when a site wants to use a plugin to access your computer.
- Location: Ask before accessing
- Camera: Ask before accessing
- Microphone: Ask before accessing
- Flash: Block sites from running Flash
- Popups: Blocked
Clear your cache, settings, history, etc.
Review your Google, Github, Facebook, Skype, Twitter Accounts and disable all apps that you haven’t used in a while, or the apps you dont recognise.
Log out of all devices and Never Use Public Wi-Fi
Always be careful with your crypto assets... Keep them secured.