How to Protect Yourself

Reusing passwords is the single biggest preventable risk to your online security. A password manager (Bitwarden is free and open-source; 1Password is excellent if you want to pay) generates and stores unique, strong passwords for every site. You only need to remember one master password.

2FA means even if someone steals your password, they still can’t get in without a second factor (usually a code from your phone). Enable it on your email account first — that’s the key to resetting everything else. Then your banking, social media, and any other important accounts.

On iPhone: Settings → Privacy & Security. On Android: Settings → Privacy → Permission Manager. Look at which apps have access to your location, microphone, camera, and contacts. Revoke anything that doesn’t need it. Location is the most sensitive — set most apps to ‘While Using’ rather than ‘Always’.

Firefox with the uBlock Origin extension is a strong, free choice. It blocks most trackers and ads by default, without requiring any configuration. Brave is another option if you want something closer to Chrome’s interface. Both are free.

Visit haveibeenpwned.com and enter your email address. It’s free, safe, and run by a respected security researcher. If your email appears in a breach, change the password for that service immediately — and any other site where you used the same password.

Most social platforms default to sharing more than you realise. On Facebook: Settings → Privacy → check who can see your posts, search for you, and send you friend requests. On Instagram: switch to a private account if you don’t need a public presence. On LinkedIn: Settings → Visibility → review what recruiters and the public can see.

Using social login is convenient, but it links your activity on third-party sites back to your main account. If you do use social login, periodically review which apps have access: Google: myaccount.google.com/permissions — Facebook: Settings → Apps and Websites. Remove anything you no longer use.

Public Wi-Fi (cafes, airports, hotels) can expose your browsing to others on the same network. A VPN encrypts your connection. Proton VPN has a genuinely free tier with no data cap. Only use a VPN you trust — a bad VPN is worse than no VPN.