The Ultimate CyberSafeGuide Checklist — 100 Actions to Secure Your Digital Life
The Ultimate CyberSafeGuide Checklist — 100 Actions to Secure Your Digital Life
This is the definitive cybersecurity checklist — a comprehensive collection of 100 actionable security measures organized by category and priority. Use this as your personal security audit, an onboarding tool for new employees, or a reference to ensure no critical security measure has been overlooked. Work through it systematically and your digital security posture will be among the strongest of any individual or small organization.
🔑 Passwords and Authentication (20 items)
Install a reputable password manager (Bitwarden, 1Password, or Dashlane)
Generate unique passwords for every single online account
Enable two-factor authentication (2FA) on your primary email account
Enable 2FA on all banking and financial accounts
Enable 2FA on all social media accounts
Enable 2FA on your password manager itself
Use an authenticator app (Authy or Google Authenticator) rather than SMS for 2FA
Store backup codes for 2FA in a secure offline location
Enable passkeys on Google, Apple, and Microsoft accounts
Check HaveIBeenPwned.com for your email address breach status
Change any passwords that appear in breach databases immediately
Use passwords of at least 16 characters for high-value accounts
Enable breach monitoring alerts in your password manager
Remove SMS-based 2FA where authenticator app is available
Set a PIN on your carrier account to prevent SIM swapping
Review and revoke sessions on all major accounts (Google, Apple, Microsoft)
Consider a hardware security key (YubiKey) for highest-value accounts
Use a strong, unique master password for your password manager
Enable biometric unlock on your password manager app
Audit connected apps in Google, Facebook, and Apple ID settings quarterly
💻 Device Security (15 items)
Enable automatic OS updates on all computers and mobile devices
Enable full-disk encryption — BitLocker (Windows), FileVault (macOS)
Enable the built-in firewall on your computer
Install and maintain reputable antivirus/antimalware software
Enable a strong PIN or passphrase lock screen on all mobile devices
Enable Find My Device / Find My iPhone for remote wipe capability
Keep all applications updated — not just the operating system
Remove software and apps you no longer use
Review app permissions on your phone monthly
Never install apps from outside official app stores
Use a screen privacy filter in public places
Cover your webcam when not in use
Never use unknown USB devices or cables
Carry your own charger — avoid public USB charging ports
Enable auto-lock on all devices after a short idle period (2–5 minutes)
🌐 Network Security (15 items)
Change your router’s default admin username and password
Enable WPA3 or WPA2 encryption on your Wi-Fi network
Update your router firmware regularly
Create a guest network for IoT devices and visitors
Disable WPS (Wi-Fi Protected Setup) on your router
Use a reputable VPN on all public Wi-Fi connections
Switch to a privacy-respecting DNS resolver (Cloudflare 1.1.1.1 or Quad9)
Enable DNS over HTTPS in your browser and operating system
Audit devices connected to your home network regularly
Disable remote management on your router unless needed
Use ShieldsUP (grc.com) to scan your network for open ports
Change default credentials on all IoT devices
Disable UPnP on your router
Enable HTTPS-Only mode in your web browser
Install uBlock Origin browser extension to block malicious ads and trackers
💾 Data Protection and Backups (10 items)
Implement the 3-2-1 backup rule for all important data
Test your backups by actually restoring from them
Enable encryption on cloud storage (use Cryptomator for Dropbox/Google Drive)
Enable 2FA on all cloud storage accounts
Regularly delete data you no longer need
Use secure deletion tools when disposing of old drives
Encrypt sensitive documents before emailing or sharing
Maintain an offline backup disconnected from the internet
Check backup integrity monthly — ensure files are not corrupted
Store at least one backup copy in a physically separate location
📧 Email and Communication Security (10 items)
Enable spam and phishing filters on your email provider
Never click links in unexpected emails — type URLs manually instead
Verify unexpected requests by calling back on known official numbers
Use Signal for sensitive conversations requiring end-to-end encryption
Check email forwarding rules for any unknown forwarding addresses
Use an alias email service (SimpleLogin) for site registrations
Be skeptical of any communication creating urgency or requesting credentials
Hover over links before clicking to preview the destination URL
Report phishing emails to your email provider and the impersonated company
Use ProtonMail or Tutanota for sensitive communications requiring email privacy
🔒 Privacy and Digital Footprint (10 items)
Audit and minimize personal information visible on social media profiles
Enable privacy settings on all social media platforms
Use a privacy-focused search engine (DuckDuckGo or Brave Search)
Request deletion of your data from data broker sites annually
Review and limit location sharing permissions on all apps
Opt out of personalized advertising in Google, Facebook, and Apple settings
Use browser fingerprint protection (Brave or Firefox with privacy settings)
Clear cookies and browser history regularly
Delete old accounts that you no longer use
Exercise your GDPR/CCPA rights — request data deletion from companies holding your data
🧠 Security Awareness and Incident Preparedness (10 items)
Learn to recognize phishing emails, SMS, and calls
Know the contact information for your bank’s fraud department
Know how to report cybercrime in your country
Have a written plan for what to do if you are hacked
Establish a verbal code word with family to verify identity during suspicious calls
Follow cybersecurity news sources to stay current on threats
Never share 2FA codes with anyone — even support staff
Be suspicious of any request creating urgency or bypassing normal procedures
Know the signs your device may be infected with malware
Conduct a personal security audit using this checklist every six months
⚡ Advanced Security Measures (10 items)
Set up Pi-hole for network-wide DNS-based ad and malware blocking
Use VeraCrypt for creating encrypted containers for sensitive files
Subscribe to breach notification services for your domain
Implement DNS over HTTPS at the router level for all network devices
Use a dedicated device for high-security activities like banking
Consider a hardware security key (YubiKey) for critical accounts
Enable Lockdown Mode on iPhone for high-risk threat environments
Use a privacy-focused email provider (ProtonMail or Tutanota)
Place a credit freeze with all three credit bureaus to prevent identity theft
Use Tails OS or Whonix for activities requiring maximum anonymity
Final Message from CyberSafeGuide
Cybersecurity is not a destination — it is a continuous journey. The threat landscape evolves daily, new vulnerabilities are discovered constantly, and attackers adapt their techniques endlessly. But the fundamentals remain constant: strong authentication, least privilege, encryption, backups, awareness, and vigilance. Master these fundamentals and you have a foundation that will serve you regardless of what specific threats emerge. Thank you for reading CyberSafeGuide — stay safe out there.
