TickYouOff
Sign in
Back
🔐

Personal Cybersecurity Audit

Medium 20 items · 1 hour
testuser's avatar
testuser Published 4 weeks ago
Technical

This checklist helps individuals audit and harden their personal digital security across accounts, devices, and networks. It’s designed for everyday users who want practical steps to reduce risk and recover from breaches.

Progress
0 / 20
  1. Inventory online accounts and devices — List emails, social logins, cloud services, and all devices you use regularly.
  2. Update OS, browsers, and apps on all devices — Install available security updates and patches now.
  3. Enable automatic updates where available — Turn on automatic installs for OS and apps to stay patched.
  4. Install and configure a reputable password manager — Choose a vetted manager (e.g., Bitwarden, 1Password) and sign in on your devices.
  5. Migrate passwords into the password manager — Import or add logins; remove passwords saved only in browsers.
  6. Create a strong master password and set recovery options — Use a long passphrase and enable emergency access or recovery methods.
  7. Identify and change reused or weak passwords — Use your manager's audit tool to replace duplicates and weak entries.
  8. Enable two-factor authentication (2FA) on important accounts — Prioritize email, banking, cloud, social, and admin accounts.
  9. Set up an authenticator app or hardware key for 2FA — Use Authy, Google Authenticator, or a hardware security key; avoid SMS when possible.
  10. Store backup codes and recovery keys securely — Keep printed or encrypted copies in a safe place for account recovery.
  11. Enable full-disk encryption on phones and laptops — Turn on FileVault, BitLocker, or built-in device encryption.
  12. Set up encrypted backups and test restores — Use encrypted cloud or local backups and verify you can restore files.
  13. Secure your home router and Wi‑Fi — Change default admin password, enable WPA2/WPA3, and update router firmware.
  14. Use a VPN on public Wi‑Fi and avoid sensitive tasks there — Connect to a trusted VPN and postpone banking or account changes on public networks.
  15. Review mobile app permissions and revoke unnecessary access — Limit camera, mic, location, and contact access where not needed.
  16. Review social media privacy settings and remove sensitive info — Set posts to friends-only and delete old posts that reveal personal data.
  17. Audit and revoke third-party app access to accounts — Remove unused OAuth apps from Google, Facebook, and other services.
  18. Check for breached accounts and reset compromised credentials — Use Have I Been Pwned and reset any exposed passwords immediately.
  19. Enable phishing protections and verify suspicious messages — Turn on email spam filters, preview links, and confirm senders before clicking.
  20. Schedule regular security reviews and enable alerts — Set a quarterly reminder and turn on account security alerts where available.
Sign in to save
📝 My Notes