Security Simplified

As a kid, I “maintained” my parents’ computer by defragmenting the main drive and deleting system files I thought were junk. It died.

Fortunately, since then my skills have improved. I’ve re-built and maintained hundreds of devices over the years, sprinkling in security concepts to make them more resilient against malware and attackers.

I want to help equip you to be slightly more secure with your computer and data maintenance routine. It doesn’t have to be daily, but incorporating these small concepts will very likely save you future pain.

Here’s a simplified yet effective guide to revisit some of the most important basics of maintaining and securing your digital life.

In both the home and business settings, most of us that operate computers simply expect one thing: function.

To keep our machines running smoothly and securely, it’s important to perform regular maintenance. Like a car that needs an oil change, computers need routine updates.

Here’s how:

1. Keep Everything Updated

Why it Matters: Software updates aren't only about adding new features; they often patch critical security vulnerabilities that could be exploited by attackers. They also include bug fixes that can improve efficiency and bring a better experience.

Action Items:

• Enable Automatic Updates: On all your devices (computers, smartphones, tablets), ensure that operating systems, browsers, and applications are set to update automatically. This reduces the window of opportunity for cyber attackers.

  • Windows: Go to Settings > Update & Security > Windows Update > Advanced options and choose "Automatic (Recommended)".

  • Mac: System Preferences > Software Update > Automatically keep my Mac up to date.

  • Android: Settings > System > Advanced > System update > Auto-download & install.

  • iOS: Settings > General > Software Update > Automatic Updates.

• Check for Updates Manually: Even with automatic updates, occasionally check manually to ensure everything is current, especially for applications where automatic updates might not be available.

Another part of regular maintenance is keeping your digital space clean. This includes data, applications, settings, enabled features, and default “stuff” that exists when you first purchase hardware and software.

I don’t expect most people to know the intricacies of knowing which features they need enabled or how to clean up registry settings in a Windows environment, but you can start by a simple “what’s installed” audit.

Some simple steps:

2. Declutter Your Digital Space

Why it Matters: The more applications you have, the larger your attack surface and need for power (processing, storage, and actual electricity). Unused or outdated software can lead to failures, crashes, and be a gateway for malware.

Action Items:

• Audit Your Apps: Go through each device and uninstall apps that you no longer use or need.

  • Look for apps that haven't been used in the last six months as a starting point.

  • Be wary of apps that ask for permissions they shouldn't need (like a flashlight app needing access to your contacts or location).

• Audit Your Data: Go through all your files and backup what you want to keep (either to a secure cloud storage or an external hard drive). Then delete any files that you don’t regularly use or need. It’s like a personal retention policy.

• Regular Clean-Up: Schedule a bi-annual review of your software ecosystem. This practice not only frees up space but also reduces potential vulnerabilities and keeps your machines performance at its peak.

Even if your machine is functioning smoothly, a forgotten password can stop you dead in your tracks. For many of us, remembering all our passwords can be a nightmare. Especially when we’re told we should use a unique password for each system.

Fortunately, you can learn to master this problem and turn it into a practice that greatly strengthens your security.

3. Master Your Passwords

Why it Matters: Passwords are often the first line of defense. Poor password practices can undo all other security measures.

Action Items:

• Use a Password Manager: Instead of trying to remember complex passwords or writing them down, use a password manager:

  • Benefits: Generates unique, strong passwords for each site/service, encrypts your data, and auto-fills login details.

  • Recommended Choices: ProtonPass, KeePassXC (for a local only version), Bitwarden.

• Enable Two-Factor Authentication (2FA): Wherever possible, add an extra layer of security with 2FA, which requires a second form of verification beyond just the password.

• Password Best Practices:

  • Never use the same password for different logins (especially if you have the same username).

  • Use passphrases that are memorable, long, and strong.

  • Change passwords at least annually.

  • Store them all in your password manager so you only have to remember the master password (write this one down and keep it somewhere safe…not on your desk).

If you’ve never heard of a passphrase, check out this comic:

If you’re a more advance user and already implement these practices, keep up the good work! Stay tuned for future deep dives into some more advanced concepts of the topics and solutions mentioned in this edition.

Conclusion

By focusing on these core practices—keeping software updated, decluttering your digital life, and securing your credentials—you'll significantly enhance your cybersecurity posture. Remember, security is not a one-time setup but an ongoing process of vigilance and maintenance.

Stay secure, stay informed, and let's keep our digital world a safe place for all.

Thank you for reading!

Elevate the Cybersecurity Skills of Your Staff with our Security Mentor Service!

Need security but don’t have a budget for dedicated staff?

Our Security Mentor Service offers personalized guidance, expert insights, and individualized sessions to build your security internally. Reducing risk and saving money on contractors and managed services by empowering you or your existing employees.

Start today and unlock your full potential, boost your security, and provide value to your business!