How to Keep Your Twitter Feed From Going Rogue or Getting Noto’d

It’s always been risky for anyone to click on sketchy Internet links or make digital passwords easy to guess. For some users, the stakes are even higher. For example, you may be the chief financial officer of Twitter Inc., and you may accidentally send spam to the world via your company’s own site.

On Tuesday, Twitter CFO Anthony Noto fell victim to a person, group or application that wanted to take advantage of him on the Internet. He’s not alone -- the same day, Newsweek magazine’s Twitter feed was also breached, and accounts from the New York Post to Burger King have been targeted in the past.

We don’t know how Noto’s account was compromised -- the company says it’s premature to guess. And we don’t know exactly what, if anything, Noto did wrong. But we do know what you can do right on Twitter so you aren’t the next person to get Noto’d.

1. Set up your account so that every time you log in, the site sends a code to your mobile phone. That way, you can only get through if you have your phone to retrieve the code. (Don’t lose it in a cab.) This is called two-step verification. It’s one of the best ways to safeguard your account, if you don’t mind waiting a couple of extra seconds for the code. Twitter added this as an option in 2013 and recommends using it, though it’s not required. Set it up or learn more here.

2. Choose a strong password, and not the same one you use on other websites. Update it regularly. Strong means at least 10 characters, Twitter advises, with capital and lowercase letters as well as numbers. Don’t use your dog’s name or your birthday. Set it up so that whenever you change it, Twitter will ask you to answer personal questions to make sure it’s a genuine request. You can update your password in your account’s settings.

3. If someone you haven’t spoken with in years sends you a link they say is really interesting or got them a great deal, there’s a good chance that person’s account has been compromised. It could be from a spammer, so don’t click on it -- doing so might end up sending all your acquaintances similar links.

4. Stay away from suspicious third-party apps that want your Twitter user name and password in order to give you access. They could be collecting and selling the information. Same goes for Facebook Inc. and e-mail logins. Don’t give that information to any company you don’t trust.

Even if you do all these things, there are still ways for the most determined hackers and spammers to get in. That’s the kind of thing that big companies like Delta Air Lines Inc., whose Facebook page was also compromised Tuesday, and Newsweek have to worry about. But at least you’ll know you did everything you could.