New Video from @collinsinfosec: Comprehensive Online Security Guide

In this video, Collins Infosec provides a step-by-step overview on how to protect yourself online. He begins with a fun analogy, comparing cyber threats to weeds in a lawn, before diving into practical recommendations for balancing security and convenience.

The first crucial piece of advice is password management. Collins strongly recommends using password managers, which store all passwords in encrypted vaults, accessible via a single strong master password. He mentions Bit Warden, an open-source tool, but also suggests other options like 1Password, KeePass, and Passport. He emphasizes the importance of generating unique and strong passwords for each account and syncing them across all devices.

Next, Collins discusses multi-factor authentication (MFA). He stresses the importance of applying MFA to all accounts, especially for password managers, email accounts, social media, and bank accounts. He explains that SMS codes are the weakest but should still be enabled if available. He recommends using separate authentication apps from password managers for one-time codes. He also mentions passkeys and hardware keys as more secure methods, especially for the most sensitive accounts.

Collins shares his personal MFA strategy, using a Ubico 502 hardware key to secure his email accounts and password manager, with backup codes stored in a fireproof safe and on an encrypted external hard drive. For other accounts, he uses OTP codes sent to an authentication app.

Backup strategy is another crucial point. Collins recommends having both online and offline backups. For online backups, he uses Sync.com, which encrypts files in the cloud. For offline backups, he uses an external hard drive stored in a fireproof safe. He also mentions the importance of having a backup sheet with crucial information printed out.

Regarding Wi-Fi and network segmentation, Collins recommends using a personal router rather than the one provided by the ISP. He uses the UniFi Dream Machine for its advanced features and advises changing the default admin password, enabling WPA3 encryption, and segmenting the network into subnets to isolate different types of devices.

Collins also addresses the issue of antivirus, stating that the native solutions of operating systems, such as Microsoft Defender and Apple XProtect, are sufficient for most users. He recommends keeping them enabled and up-to-date.

To protect against identity theft, Collins advises freezing credit bureau accounts and temporarily unfreezing them when necessary. He also mentions the importance of using privacy-based DNS resolvers to avoid ISP surveillance.

Finally, Collins talks about browser security, recommending the installation of the Ublock Origin extension to block ads and malicious sites, as well as Square X for analyzing files in sandbox environments.

In conclusion, this video offers a comprehensive and balanced security strategy suitable for both everyday users and security professionals. For more details, watch the full video at the following address: https://www.youtube.com/watch?v=o0RxwyPjI3I