September 7, 2019

Information security resources for laypeople

This blog contains a list of information security resources tailored to the average user. It will be regularly updated

Information security resources for laypeople

There are tons of information security resources. But whether it's blogs, podcasts or video tutorials, a lot of them are tailored to information security professionals or people with tech knowledge. I always felt there's not enough material available that's simple enough to understand for your non tech/security savvy friends or family.

I did a poll, and while it is still running, it's pretty clear that most people share my opinion.

I got some good feedback, both about resources and possible ways to reach more people. In this post I will list resources that explain security related topics in an easy way. I hope this content helps people to understand particular security risks and shows them how to defend and improve their online security posture.

The way to reach more people is a whole different story. It's not easy at all.

But we need to start somewhere. That's why I decide to create this list of resources. I hope if you read this that you share the useful bits with your family and friends. Help them understand why online security matters and even more important, help them improve their online security. If you have additional resources I would appreciate that you reach out to me via twitter. I'm happy to add any good content.

General security awareness websites and blogs

My blog series (31 blogs) for CyberSecurity Awareness Month 2019

Public awareness and prevention guides by Europol.

Top tips for staying secure online by the UK National Cyber Security Centre (NCSC).

Watch Your Hack by Daniel Verlaan.

Security awareness and tips by The AntiSocial Engineer.

Security for everyone by Andy Gill.

A guide to protect your digital self by Francesco Cipollone.

End user security cheatsheet by Sean Wright.

How to monitor your data breach exposure by me. This blog contains numerous ways on how to check if your username and password were stolen by attackers.

Safeonweb a security awareness site from the Belgian government.

Cybersec 101, a security awareness site for beginners.

Decent Security by SwiftOnSecurity.

Cyber aware online by Martijn Kamminga.

Information security for (investigative) journalists (Dutch and English pdf available) by Silkie Carlo and Arjen Kamphuis.

Stop Think Connect. General security awareness in different languages by STOPTHINKCONNECT.

Cybersecurity for small business by FTC

Security tips by US-CERT

Multi factor authentication

Multi factor authentication (MFA) for beginners by Tanya Janca.

Two-Factor Authentication with Yubikey – What is it? by Alex Harmon

Better account security with multi-factor authentication by me

Ransomware

Ransomware 101 by me

The No More Ransom website can help to get your files back when they are encrypted after a ransomware attack. This website also contains a lot of practical advice to protect against ransomware.

Backups

Easy, Cheap And Secure Backup With Google Cloud by Scott Helme

Securely backup your data by me

Security tools

Before you click a link you want to check it with a scanning tool. A few easy to use tools are urlscan.io and virustotal. Here's a blog (in Dutch) on how to check if links are secure.

Internet of Things security

The security risks of internet connected devices by me

Step by step guides

How to protect your Twitter Account by me.

Videos

This is a series by Troy Hunt where he explains basic internet security in a very understandable way. The topics covered are

  1. How to choose a good password
  2. How to know when to trust a website
  3. Why we need to update our software
  4. How to protect your phone from hackers
  5. How to protect your home from the Internet of Things (IoT)

The next one is a video by Tanya Janca on how to use 2FANotifier (a browser plugin available for Chrome and Firefox) to enable two-factor authentication (which is actually an extra step necessary to login on top of your password) on websites.

Javvad Malik has some good awareness videos on his YouTube channel.

Podcasts

Security In Five is a 5 minute podcast which explains security concepts in an understandable way