In early July, a hacker comprised the email account of a Twitter employee, and stole some internal company documents. He did this by using the password reminder feature of Gmail. What can we learn from this? First, use unique, unusual passwords. Second, make sure the answers to your security questions are not easily guessed. Third, make sure your alternative email address (for password resets and reminders) is still one that you receive mail at. Fourth, do not store passwords in your online email accounts. To learn more, read Ask Dave Taylor.