Losing control of your personal information can be all too easy online. But by taking some precautions, you can maintain privacy while surfing the Web.

We’ve got five tips for protecting yourself:

1. Adjust social-network privacy settings

Facebook has made strides in simplifying its privacy settings, but their many options can still seem like a labyrinth. Still, it’s worth going in there every once in a while and familiarizing yourself with how much of your information is shared with the world.

To get there, log in to Facebook, and type “privacy settings” into the search box. Facebook recently shrunk that feature to be accessible from a smartphone.

The settings page now offers quick toggles to decide whether your profile is shared just with approved friends, with their friends, too, or publicly. Because many people draw privacy lines differently, you can also fine-tune individual switches.

Taking a leap further, you can give the “super-logoff” trick a try. It’s especially popular among young people.

Twitter, another popular social network, also lets you lock your account from public view. In settings, there’s a feature called “protect my tweets.”

2. Ensure personal data is sent over a secure connection

When sending credit card numbers, banking information and passwords, verify that there’s an image of a padlock on the address bar of the browser. This denotes a secure connection to the site. This technology encrypts the data you send and receive, so it’s difficult for anyone snooping on the line to access your info.

3. Consider opting out of ad tracking

Online ad networks often install a small file on the computers of people who visit certain websites. These so-called cookies can log your surfing habits, allowing advertisers to tailor ads to your interests.

But what if we don’t want to be tracked?

For starters, many Web browsers have a feature in their settings panel that lets you disable cookies from third-party websites. This will stop many ad networks from gaining a fast track into your computing activities.

A couple of organizations offer systems for opting out of popular ad networks. The Network Advertising Initiative and PrivacyChoice.org let you opt out of ad networks with a few clicks. You’ll need to activate this on every computer you use. But be warned: Some ad companies may continue to track you even though you’ve elected to opt out.

Like commercials on TV, advertising provides the cash to keep many websites running. Opting out of tracking won’t make ads go away, but tracking advocates say it makes them more annoying because they’re less relevant to the user.

4. Use private Web browsing features or install a VPN

Most modern Web browsers provide an extra layer of protection. Called either “private” or “stealth browsing,” these sessions keep out cookies and don’t log site history.

For stronger protection, you can install what’s called a Virtual Private Network. This encrypts practically everything you do on the Web while the VPN is enabled. Many companies offer this feature to their employees, which sends the data back to corporate-owned servers. There are a number of free VPNs available for download.

Another handy program, Little Snitch, will report whenever software may be doing something fishy. Anytime an app on your computer tries to send information over the internet without your permission, an alert will pop up.

5. Think before you post

This may sound obvious to some, but if you’re posting information to a company’s server, you have little guarantee that it won’t find itself elsewhere.

Even if all of your privacy settings are in order, a social network might change its policies later. The system might spring a hole vulnerable to search bots or hackers. A trusted friend might see one of your party photos and decide to pass it on.

Use your brain. If you don’t want something sailing into the public domain, don’t put it on the boat.

Hackers that may or may not be from 4chan took down all Gawker Media sites over the weekend, publishing staff passwords and obtaining usernames, emails, and passwords for 1.5 million users registered on the Website network.

As seems to be the norm lately, Gawker was hacked and taken down this weekend by a group with loose ties to 4chan, the Internet equivalent of a pirate island. All Websites under the Gawker Media brand–Lifehacker, Gawker, Gizmodo, Jezebel, io9, Jalopnik, Kotaku, Fleshbot, Deadspin–were affected by the attack as well. 1.5 million usernames and passwords were compromised in the attack. After taking over the Gawker site, the hackers who call themselves “Gnosis” published the passwords of site staff members and published a long list of users whose password was “password.” Having a good time, the hackers shared bits and pieces of Gawker’s custom CMS source code as well.

Below is a quote from one of the hackers, posted on Mediaite.

“We went after Gawker because of their outright arrogance. It took us a few hours to find a way to dump all their source code and a bit longer to find a way into their database. We found an interesting quote in their Campfire logs:

Hamilton N.: Nick Denton Says Bring It On 4Chan, Right to My Home Address (After
The Jump)

Ryan T.: We Are Not Scared of 4chan Here at 210 Elizabeth St NY NY 10012

I mean if you say things like that, and attack sites like 4chan (Which we are not affiliated to) you must at least have the means to back yourself up. We considered what action we would take, and decided that the Gawkmedia “empire” needs to be brought down a peg or two. Our groups mission? We don’t have one.

We will be releasing the full source code dump along with the database at 9PM GMT today. You are the only outlet we have told the release time.”

While initially denying the attack, Gawker has issued an apology to its users on all of its sites, urging them to change their passwords because of the attack.

“We understand how important trust is on the internet, and we’re deeply sorry for and embarrassed about this breach of security—and of trust,” said Lifehacker. “We’re working around the clock to ensure our security (and our commenters’ account security) moving forward. We’re also committed to communicating openly and frequently with you to make sure you understand what has happened, how it may or may not affect you, and what we’re doing to make sure this never happens again.”

If you have ever commented on any of the Gawker sites, we recommend that you go and change your password. What do you think of this rise of Internet hacking groups? Is it better when hacking is done in the dark or when it’s out in the public like this and Operation Payback?