Summed up in points for others:
Dont use same logins! Ever! Use random 12+ char. logins stored inside password manager.
Never 2FA with SMS message. Use GAuth app. ANd ofc use 2FA on everz site that alows it.
"auto insert password and username" - if you mean login saved inside Chrome - NEVER!!!!! Never store password inside the browser! Use password manager.
Whitelist IP if possible
oh....and the most important. Dont store larger amounts of money on exchange. Ever. Use hardware wallet.
cheers mate