I’m fed up with seeing friends who get hacked or lose their data, so I’ve collected some of the best advice on how to secure your computer against cyber-threats.
Email: Never, NEVER click links in email. This is the number one way people get hacked. Email is an old system with poor security and it’s very easy for an attacker to impersonate someone or make a message sound urgent. The same goes for links on Twitter, Facebook, etc, from people you don’t know and trust.
Passwords: Put together four random words. That’s your password. It’s long enough to be hard for computers to crack, but easy enough to remember. Also, choose a completely different password for each site you sign up to, and just have your web browser’s password manager remember them all for you.
Two-factor auth: Enable this feature on any site that supports it, especially your main e-mail account. It means even if someone gets your password, they can’t access your account without also stealing your phone. Remember to generate backup codes in case you lose your phone.
Secure communications: Use an app called Signal (iOS/Android) and have all your friends install it too. It automatically protects your texts and calls with reliable encryption, and doesn’t store your messages online so your privacy is safe even if someone hacks your accounts. It also uses your Wi-Fi so calls and texts made with Signal are free.
Device encryption: Most PCs and smartphones support full-device encryption now. Enable it. If your phone or PC is ever stolen, hackers will be unable to read your private data without the password.
Web browsers: Chrome is the most secure right now. For added security, install a browser plugin called HTTPS Everywhere. It automatically upgrades you to a secure connection whenever possible. If a website you use doesn’t support HTTPS yet, get on Twitter or Facebook and ask them why.
Flash, Java, Acrobat Reader: Disable/uninstall these if you can, they’re the source of huge security vulnerabilities and 99% of people don’t need them for web browsing any more. Chrome supports PDFs on its own, most sites support HTML5 video, and no website requires Java. If you do need one of these (e.g. Java for Minecraft), make sure its updater is up to date. Do not trust any website which claims to update Flash, Acrobat Reader or Java for you.
Wi-Fi: Enable WPA2. Disable WPS. Set a very, very long Wi-Fi password, and change it occasionally. This is necessary because anyone can record your Wi-Fi traffic from a distance and make password attempts very quickly. A strong enough password can be made by rolling dice 40 or 50 times; it’s a hassle to type in, but you only have to do it once per device.
Installing software: Don’t trust pirate software. Windows Movie Maker and iMovie are free. Games can often be bought at 75% discount on Steam during sales. Only download free software from the manufacturer’s website, because other download sites often inject ads or malware. Only download from secure URLs (ones that begin with "https://” and usually display a green lock).
System updates: Always let your computer and phone run their security updates (Windows Update, App Store updates, etc). Do not use old operating systems that does not receive security updates (e.g Windows XP, Android 4.3 or older). Do not attempt to root your phone; this strips it of important security protections.
Backups: Computers and phones break all the time. Always keep a copy of any data you don’t want to lose, and put it in a safe location. Google Drive gives you 15GB online storage for free and will survive even if your home is burgled; portable hard disks are cheap nowadays and will survive even if your PC and accounts are hacked. If your phone has a setting to sync photos with online storage, make sure it’s enabled.
Please feel free to share, repost, translate, remix, adapt or Youtube this advice in any way you see fit. Attribution not required. (more internet safety)
