There are things one can do to reduce the possibility that their account will become compromised, but you can never 100% remove all potential risk. That's just life.
Fun thing about email addresses... they're plastered all over the internet and in the open. You get spam, phishing scams, you name it because they have found it and added it to their list. It will likely stay on their list for all perpetuity. How do you stop said spam? A brand new email address. When it happens again... ditto. You get to keep doing this or accept that spam is like death and taxes.
You frequent social media sites? Here's what you need to do. STOP USING ANY EMAIL ADDRESS that has any connection to you. That means, don't use Google, don't use Hotmail, don't use Apple, don't use any service in which any information about you was used to create the account.
You use a fake email address. These are temporary email addresses that get deleted within 24 hours. You use that to create your account for a social media site. They verify your email to grant you access to the site you wish to socialize on. From that point on, you never actually need the email account. Just jot down the fake email address and whatever password you created and use it to log in to said site from then on. THAT IS THE ONLY SMART WAY to use an email address with social media.
2 factor... 12 factor... a big guy with a large stick... all of them can be compromised, it's not a matter of IF but WHEN. Life-Lock... promises to tell you that your accounts have been compromised... they don't promise to protect you nor do they promise to right your life... read the fine print... they very very fine print.
If you are worried about the internet finding you... it already has. Have they stolen your identity? Will they? All the fun things that internet roulette has to offer... that and memes.
