The basics are really key - keep your crap up to date and use a separate, long password for every site. Utilize a password manager to generate and store them so that you don't even know what they are (aside from a couple of critical things, perhaps).
Add full disk encryption and you're going to stymie 95% of the attackers out there.
MFA is less important when all of your passwords are different, and there are actually competing beliefs about it, but again, it makes sense to use it on critical items, just make sure you're protecting your recovery keys.
GreenLFC º e>
greenleaderfanclub@protonmail.com
Infosec / Ham / Retro º masto>
GLFC@mstdn.starnix.network
Avoids Politics on BBS º gem> gemini.greenleader.xyz
--- Mystic BBS v1.12 A48 2022/07/15 (Linux/64)
* Origin: 2o fOr beeRS bbS >> 20ForBeers.com:1337 (700:100/71)