Foundational Knowledge

Stop Ignoring Those Update Popups

That annoying popup asking you to restart your computer? It's probably fixing something important. Most attacks use vulnerabilities that have been known for months or years. Updates fix these. Enable automatic updates everywhere possible.

What to update regularly: your operating system, web browser, antivirus software, apps that connect to the internet, and even your router firmware.

Backups

Getting pwned can mean either your data being stolen or having it held hostage. Ransomware attacks are everywhere now, and they're not just targeting big companies. They're going after regular people too.

If you don't have backups, a ransomware attack means you either pay up (and they might not give you your data back anyway) or you lose everything. With good backups, you can just wipe the infected device and restore from your backup.

Follow the 3-2-1 rule: 3 copies of your important data, 2 different storage types (e.g. external drive + cloud), and 1 copy offsite.

Antivirus

Windows Defender (built into Windows) is actually pretty good these days. For most people, that's enough. If you want extra protection, there are many free options out there that are solid. Only consider paid antivirus if you handle sensitive information regularly or want more features.

Physical Security

All the digital security in the world won't help if someone can physically access your devices. Lock your devices, don't leave them unattended in public, and be careful with random thumb drives.