Protecting your own account is more than important. Not online on Hypixel Network but also in your daily life. School, work or even your home connection are all affected by this any second. So having your account secured and still being able to log in as fast as possible is not common these days. In this guide, we make sure that we try to make it easier for you by following some basic tips we will apply to you. Basic tips Do not share your password with anyone, not even your dog or even shouting it out loud. Do not use the same password twice and always update your password monthly if possible. Staff or employees will never ask for your password. Companies will never call, mail or even email a request to share information about your account information (password, security questions or SMS code). Companies will let you know how you can make your account more secure by linking a page to where to change it to. Do not click any links you are unfamiliar with, do not download anything someone asks you to do download if you do not trust them. Do not connect to wifi networks you don’t know and you are not sure if you should trust them (including public wifi without any password required). More information about this here. Do not log in on public devices at all or devices that are easily accessible. Keep your Operating system, antivirus and browser always up-to-date and make sure you are aware of the news about these type of subjects. The news page I use can be found here. Use a password manager such as lastpass Enable 2FA where possible 2 Factor AuthenticationA 2-factor authentication code is commonly used as an extra layer of security on your account or accounts. These methods are most likely used by most companies and if not, they will be used soon or later. There are a lot of types 2 Factor Authentication system developed of the past 10 years which as an outcome the most commonly used are the following: Security questions; having two questions or more about personal information which only you should know ones a month or only when you res Email Verification; having a code or sometimes even a verification link send towards your mail which you have to use every time to log in. Code Generators; an SMS code or a third party application which generates codes. I will go by each one of them step by step and which company might be using them for a while based on my personal experience. Security questions You have seen them in Mojang or even in your bank account. Questions which is personal and direct towards you. For example; ‘what was your first cat name?’ Spoiler: Information about security questions Those questions are meant to be a security matter. They are often a requirement to type them every time the same, capital and spaces included to make sure you are correct with your question. This type of information is still a type of information which you might have shared on your Facebook or any other social media. which means that this type of security is not the most recommended to use if a company has the possibility to choose between a lot of them. Email verification Microsoft, Gmail or steam all have an email verification code method in their systems. These systems are there to send you a code which you can use for your account ones each session or sometimes a timer on it as well. Spoiler: Information about Email verification These codes which are most likely 6 digits long or even more is one of the code solutions which is out there right now and often used for the first time or even every time you log in on the account. This type of information is most likely to be on your email. This will lead that your email will also be compromised in a matter of time. Which will lead into that you should not use the same password twice in for anything. Code Generators Google, Hypixel, Twitter or any other huge company is using this method these days. It is either with an SMS code or with a third party application. These are often used and you can trust your device to the account for 30 days and you will only use the code ones in those 30 days. Spoiler: Information about Code Generators These codes will come from a server and are 6 digits long. They refresh every 30 seconds and it is hard to hack/bypass this method with a system. There are a lot of third-party applications who get this code for your instead of using an SMS system. The common apps are; Authy (Recommended to use, sync with the cloud and on all devices) IOS/Apple Android Google Authenticator IOS/Apple Android These applications can manage the codes and will show you a new code every 30 seconds. The source and more explanation of how the Code Generators work could be found here. Breaches Daily a lot of robots or humans try to get information about accounts or information they could sell to other people. A lot of people try to get breaches via; a database; Phishing you via an email for this type of information. We will help you with giving your more information about how to possible detect these type of people who try to get your information via these ways. You can be notified when your account was in a breach using https://haveibeenpwned.com/ Getting into databases This one, you can’t see it but since this year a lot of companies are required to deliver news about new breaches within databases and keep their customers/users updated about who and what got leaked. Spoiler: Information about data breaches You will either get a mail from a company saying that you should change your password on the website. To make it secure for yourself, don’t click on the link they send via the mail but search it up via google to make sure it isn’t a scam mail. You can check if a breach has happened on https://haveibeenpwned.com/ on here you can also enable email notifications to get notified when your email is included in a breach. Example of a data breach mail. Always watch out what is happening, it might be a real mail or not, but always be secure it via the tips above. Phishing via mail You know them, mails from companies about that you need to pay something or otherwise you will be in a lot of trouble. Mails who said that they need to update your bank information via a link. Spoiler: Information about Phishing emails You would think, who would fall for it? Well we all did at some point or will do it in the future. Some of them are really hard to catch but you can always look better before you click on a link and ask yourself the question “Does a company really ask me this?” and you can call them if you are not sure about it. We have a few examples about some phishing mails, watch carefully some of them might be real. These examples, often look very real but you can see grammar mistakes or sometimes even company name errors in it If you are still unclear how breaches work, I would recommend to watch this video. Credit to @Hoopless for helping a lot with this thread!