Once your account or computer has been compromised, what do you do? First, change your future behavior. Second, secure your computers.

1. Never send or keep usernames and passwords in email. If someone sends you a password via email, immediately change it.
2. Never store your usernames and passwords in plain text.
3. Segregate as much as possible. Single source passwords, single passwords for multiple sites and linked accounts allow hackers to exploit multiple accounts with a single access.
4. Never assume a backup from the prior day is safe. It's unlikely you know when your system was exploited, if it was.
5. Assume the worst case situation, and plan in that context. Protect all your accounts by immediately changing your passwords and research your options.