Stay Safe Tips

18 ways to stop
being an easy target.

Practical, no-BS security habits. Each one takes less than a day to implement.

PASSWORDS01

Use a Passphrase, Not a Password

Length > Complexity. "correct-horse-battery-staple" is harder to crack than "P@ssw0rd1!".

Read article →
SESSIONS02

Clear Your Cookies Weekly

Session hijacking is the easiest way to bypass MFA. Terminate stale sessions often.

Read article →
MOBILE03

Disable Auto-Join Wi-Fi

Evil Twin hotspots wait for your phone to auto-connect. Stay in manual mode.

Read article →
EMAIL04

Check the Return-Path

The "From" name is a lie. Check the actual return-path header to see the truth.

Read article →
GITHUB05

No Secrets in Git

Even private repos get leaked. Use environment variables for all API keys.

Read article →
CDN06

Use Cloudflare Proxies

Hide your actual server IP. If they can find your origin, they can bypass your firewall.

Read article →
VPC07

Isolate Your Database

Publicly reachable databases (port 3306/5432) are magnets for brute force. Keep them in a private subnet.

Read article →
SOCIAL08

SIM Swap Protection

Call your carrier and add a "Port-Out PIN". Your phone number is the weakest link in your security.

Read article →
BROWSER09

Separate Your Lives

Use Different Browser Profiles (Firefox Containers) for work, personal, and shady site browsing.

Read article →
HARDWARE10

Buy a YubiKey

Hardware codes beat SMS codes 100% of the time. Phishing-proof your identity.

Read article →
RECOVERY11

Print Your Backup Codes

If you lose your MFA device and haven't saved your 10 recovery codes offline, you're locked out forever.

Read article →
API12

Scope Your Tokens

Never create a "Full Access" API token. Give it the absolute minimum permissions needed to function.

Read article →
ROUTER13

Update Your Firmware

Your home router is an at-risk Linux server. If the manufacturer stopped updates, the hardware is tech-trash.

Read article →
METADATA14

Scrub Your Photos

Posting a photo from home? Strip the GPS coordinates first or everyone knows your origin.

Read article →
PHISHING15

Hover Before You Click

Links are masks. Hover over every link to see the ACTUAL destination in the bottom corner of your browser.

Read article →
BACKUPS16

The 3-2-1 Backup Rule

3 copies, 2 different media types, 1 stored off-site. If it doesn't exist in 3 places, it doesn't exist.

Read article →
DNS17

Use Quad9 or 1.1.1.1

Default ISP DNS is slow and monitors your traffic. Switch to a secure, private resolver at the router level.

Read article →
ENCRYPTION18

Check the "Lock" Details

A green lock just means the connection is encrypted, not that the site is safe. Verify the Certificate Owner.

Read article →