Don't settle for the defaults and run the risk of "shedding" your personal details such as email addresses and other contact information without even knowing it. When checking your browser's setup, options, or preferences settings, consider using a pseudonym instead of your real name and an email address from a side account.
Never give passwords to friends, even really good friends. A best friend or partner can – maybe accidentally – pass your password along to others or become an ex and abuse it. Security experts at UC Davis Health recommend using a "pass phrase." It should be relatively long – maybe 20 characters or so - and consist random words strung together with numbers and symbols along with upper and lower case letters. Come up with something that you will remember but others wouldn't guess. For example, YellowChocolate#56CadillacFi$h. Avoid using phrases that are easy to guess.
The objective of social engineering is to coerce someone to provide information that leads to ill-gotten gains. Social engineers are limited only by their imaginations. Some of their tactics include asking you to transfer gift cards, requiring you to change your password, or telling you about an online order that you didn't place. If you're not sure, then don't click on it.