There are tons of information security resources. But whether it's blogs, podcasts or video tutorials, a lot of them are tailored to information security professionals or people with tech knowledge. I always felt there's not enough material available that's simple enough to understand for your non tech/security savvy friends or family.
I did a poll, and while it is still running, it's pretty clear that most people share my opinion.
I got some good feedback, both about resources and possible ways to reach more people. In this post I will list resources that explain security related topics in an easy way. I hope this content helps people to understand particular security risks and shows them how to defend and improve their online security posture.
The way to reach more people is a whole different story. It's not easy at all.
But we need to start somewhere. That's why I decide to create this list of resources. I hope if you read this that you share the useful bits with your family and friends. Help them understand why online security matters and even more important, help them improve their online security. If you have additional resources I would appreciate that you reach out to me via twitter. I'm happy to add any good content.
General security awareness websites and blogs
I regularly blog about security awareness. Recently I did a 31-part blog series for CyberSecurity Awareness Month 2019.
Other blogs and websites:
Public awareness and prevention guides by Europol.
Top tips for staying secure online by the UK National Cyber Security Centre (NCSC).
Safeonweb a security awareness site from the Belgian government.
Cybersec 101, a security awareness site for beginners.
Information security for (investigative) journalists (Dutch and English pdf available) by Silkie Carlo and Arjen Kamphuis.
Multi factor authentication
My own blogs:
Phishing 101: A guide on how to protect yourself against phishing attacks.
The No More Ransom website can help to get your files back when they are encrypted after a ransomware attack. This website also contains a lot of practical advice to protect against ransomware.
My own blog:
Ransomware 101: How to protect against ransomware and what to do after a ransomware attack?
Securely backup your data: What does a good backup strategy look like? In this blog I also show a possible practical implementation.
Online security for children
Data breach detection
How to monitor your data breach exposure: in this blog I describe several tools that can help to detect if your personal data is stolen.
Scams and fraud
I've written various blogs about scams and fraud:
If you want to know how you can easily check some aspects of a website's security read this blog.
Internet of Things (IoT) security
A blog by me: The security risks of internet connected devices
Step by step guides
This is a series by Troy Hunt where he explains basic internet security in a very understandable way. The topics covered are
- How to choose a good password
- How to know when to trust a website
- Why we need to update our software
- How to protect your phone from hackers
- How to protect your home from the Internet of Things (IoT)
The next one is a video by Tanya Janca on how to use 2FANotifier (a browser plugin available for Chrome and Firefox) to enable two-factor authentication (which is actually an extra step necessary to login on top of your password) on websites.
Security In Five is a 5 minute podcast which explains security concepts in an understandable way