• “I’m not famous.”
• “I don’t have money.”
• “Why would anyone hack me?”

• Your data = can be sold.
• Your device = can be used for attacks.
• Your account = can scam others.
• Your identity = can be copied.

Without it, you can lose:

• Your chats, DMs, and photos
• Your money and bank access
• Your reputation - through fake posts or leaked content
• Your future - college apps, job applications, all compromised
• Your ideas - stolen, copied, or erased

Right here in Kosovo:

• Students have been tricked with fake Erasmus links.
• Parents have clicked malware in WhatsApp groups.
• Government agencies have been hit with DDOS and malware.
• Companies have had their money transfered to attackers accounts via various forms of fraud
• Phone scams and phishing emails are increasing every year.

Think of your phone or laptop as your house.

• Your messages = your private conversations.
• Your photos = your personal memories.
• Your emails = your work and future.

Everything is connected. And that means:

• A breach can hurt your reputation.
• A scam can drain your account.
• A hacked phone can ruin your job interview before it starts.

Here’s what it really is:

• Control - You decide who sees your stuff.
• Power - You don’t get fooled. You understand how things work.
• Freedom - You can move through the digital world safely.

Answer honestly:

• Do you reuse the same password everywhere?
• Have you ever clicked on a weird link from Instagram or WhatsApp?
• Do you use public Wi-Fi without a VPN?
• Do you use Multi Factor Authentication on your emails, social media and online platforms like: shopping, gaming, entertainment, sports etc.?
• Do you know if your email has ever been leaked?

Anything digital:

• Your phone
• Your laptop
• Your accounts
• Your photos, files, and messages
• School systems, bank servers, even water and energy infrastructure

Yes, ethical hacking is part of it. But there’s also:

• Keep it accessible. You should be able to use it when you need it.
• Risk analysis
• Policy writing
• Security awareness training
• Investigations
• System design

There are lots of different roles:

• SOC Analyst - Watches for threats 24/7
• Penetration Tester - Tries to hack systems (legally!)
• Incident Responder - Jumps in when something goes wrong
• Security Engineer - Builds secure systems
• CISO (Chief Info Security Officer) - Sets the big-picture strategy
• IT Security Officer - Manages the security of information systems
• IT Risk Officer - Manages the risks of information systems
• Forensics Expert - Investigates who did what

• Some people code.
• Some people write reports.
• Some people train others.

Here’s reality:

• A hacker is anyone who understands how systems work, and how to break or improve them.

There are good hackers. Bad hackers. And ones who are a bit of both.

Black Hats: The Bad Guys

• They break into systems without permission.
• They steal, destroy, spy, scam, or hold data for ransom.

Why they hack:

• Money (stealing credit cards, selling data)
• Ego (“I did it because I could.”)
• Revenge or chaos
• To disrupt competitor operations in order to gain market advantage
• Government missions (aka state-sponsored hackers)

Example:

• Ransomware gangs locking up hospital systems until they’re paid.
• A teen hacker selling Instagram logins.
• A foreign government spying on another country’s elections.

White Hats: The Good Guys

They’re cybersecurity professionals who help organizations stay safe. They test systems with permission, fix problems, teach users, and stop attacks.

What they do:

• Find vulnerabilities before bad guys do
• Respond to cyber incidents
• Build secure networks
• Train teams and raise awareness

They’re the digital bodyguards.

Gray Hats - The Blurry Middle

They hack without permission, but not to hurt anyone. Sometimes they do it “for the greater good.” But it’s still risky.

Example:

• Someone finds a flaw in a government site, doesn’t ask for permission, but reports it anyway.
• They might break a rule, but not with bad intentions.

Still… intent doesn't erase consequences. Gray hats walk a dangerous line.

Script Kiddies:

• Use tools they don’t fully understand
• Download stuff online and “try it” on random targets
• More annoying than dangerous, until they get lucky

Organized Crime:

• Serious hackers-for-hire
• Run like businesses
• Use ransomware, steal data, and cash out via crypto

Hacktivists:

• Mix of “hacker” and “activist”
• Break into systems to protest or spread a political message
• Example: Defacing websites or leaking documents

State Actors:

• Work for governments
• Target other countries, companies, or political groups
• Highly trained, well-funded, and deadly serious

In the real world, white hats work as:

• Penetration Testers (Pentesters) - Paid to break in before the bad guys do.
• SOC Analysts - Watch systems 24/7 for suspicious activity.
• Incident Responders - The firefighters of cyber.
• Forensics Experts - Trace the who, what, when, and how of an attack.
• Security Engineers - Build defenses like firewalls, detection systems, and secure networks.

They are the ones keeping the lights on - and your data safe.

Sometimes, things get messy.

• A teenager hacks his school’s system out of curiosity. Is he a black hat? Or just misguided?
• A whistleblower leaks government surveillance. Hero to some, criminal to others.

Cybersecurity isn’t always clean-cut. But your choices matter. Intent matters. Permission matters.

• If you’re curious… good.
• If you like puzzles… great.
• If you want to build, defend, and protect, welcome to the white hat path.

The world needs ethical hackers. Not rebels without a cause, but warriors with purpose.

Most cyberattacks don’t start with fancy code. They start with you.

• You clicking a link.
• You opening a file.
• You trusting the wrong thing.

The truth? Hackers don’t “hack in.” They “log in”, because someone gave them access.

Let’s see how that happens.

Here’s the step-by-step strategy most attackers follow. Think of it like a playbook. It’s called the Cyber Kill Chain - and no, it’s not from Call of Duty.

Step 1: Reconnaissance

Learn everything about the target.

• Google you
• Stalk your socials
• Check what software your school or company uses
• Scan your website
• Look for your email address or phone number

Why? So they can plan the perfect trick.

Step 2: Weaponization

Build the attack based on what they found.

• Create a fake website (looks just like your bank or school login)
• Build a PDF with hidden malware
• Write an email that sounds real, like it’s from your boss, professor, or a company

Why? So the trap looks harmless.

Step 3: Delivery

Send the trap.

• Email
• Social media DMs
• Messaging apps
• Malicious ads or download links

Why? To get you to interact. That’s the key.

Step 4: Exploitation

You open the file or click the link.

Now:

• Malware runs silently
• Your device starts sending info to the attacker
• You land on a fake page and enter your real password

Why? To gain control without you even noticing.

Step 5: Installation

Backdoors are set up.

• Malware installs itself permanently
• Attackers now have a secret way in
• You might still use your device like normal… but they’re inside

Why? To stay inside undetected.

Step 6: Command & Control

The attacker gives instructions remotely.

They might:

• Download more malware
• Use your device to attack others
• Steal passwords, files, or credit cards

Why? Your device becomes a tool.

Step 7: Actions on Objectives

Time to finish the mission.

• Lock your files and demand ransom
• Steal your money or data
• Spy on your activity
• Wipe systems or damage them

Why? This is the goal. Everything else was preparation.

Let’s say you get this email:

• “Hey! This is your school admin. There’s a security update for your account. Please log in here: school-portal-login.site”

It looks right. You click. You type in your login.

Boom. You’re in. But…So is the attacker.

They now:

• Log in as you
• Change your password
• Download private files
• Send phishing emails to your classmates using your name

And just like that, one click turned into a breach.

Once hackers get into one system, they look for ways to move deeper.

This is called pivoting.

• They hack your email → Then use it to access your cloud drive
• They break into one school server → Then jump into the grading system
• They hack one employee → Then reach the whole company

Cyberattacks grow like viruses. That’s why early detection is key.

Most attackers don’t want a challenge.

They look for:

• Weak passwords
• Old software with known flaws
• People who click without thinking
• Systems with no two-factor authentication

They want low effort, high reward. Don’t give them that.

What it is:
A fake email, DM, or message trying to trick you into clicking a bad link, downloading malware,or giving away info.

They look for:

• “Your package was delayed. Click here to track.”
• “Your school account will be suspended. Log in now.”
• “You’ve won a free iPhone!”

Why it works:

• It looks urgent.
• It looks legit.
• You click without thinking.

How to spot it:

• Check the sender's email address - does it look weird?
• Hover over the link - does it lead to the real site?
• Bad grammar or unexpected pressure = red flag.

Rule: Don’t click links or download files unless you're sure.

What it is:
Malicious software that infects your device.

Types you might run into:

• Spyware: Watches you, records what you type.
• Keyloggers: Capture your passwords and messages.
• Trojans: Look like a normal file - but open the door to hackers.
• Ransomware: Locks your files and demands payment to unlock them.

How it gets in:

• Opening file attachments from unknown emails
• Downloading pirated games, movies, or cracked software
• Plugging in a random USB stick

Rule: If it’s free but shady… it’s probably a trap.

What it is:
Hackers try to guess, steal, or crack your password.

Common methods:

• Brute force: Try thousands of combinations until they get in.
• Credential stuffing: Use passwords leaked from other sites you’ve used.
• Phishing: Trick you into typing your password into a fake page.

Signs you’ve been hit:

• You’re logged out and can’t get back in.
• You get password reset emails you didn’t request.
• Your friends get weird messages from you.

Rule:

• Use strong, unique passwords.
• Turn on 2FA (two-factor authentication).
• Never reuse passwords.

What it is:
Psychological tricks to make you give up information or access.

How it happens:

• “Hey, I’m your school’s IT guy - can you send me your login real quick?”
• “I'm your cousin's friend, I need your help with something urgent.”

It works because:

• We want to help.
• We don’t want to look rude.
• We assume people are who they say they are.

Rule: Always double-check identities. Be polite but skeptical.

What it is:
Open Wi-Fi in cafés, schools, airports can be fake, or insecure.

What can happen:

• Hackers can watch what you’re doing.
• They can intercept passwords, messages, even payment info.
• They can pretend to be the Wi-Fi network you think is safe.

Rule:

• Avoid entering passwords or banking info on public Wi-Fi.
• Use a VPN if you have to connect.
• Ask: “Is this the official network?”

What it is:
Someone takes over your email, Instagram, Snapchat, or bank account.

How they do it:

• Phishing
• Weak passwords
• Reused passwords from past breaches
• Sim-swapping (they take over your phone number)

Why it’s dangerous:

• They can scam your followers.
• Leak your private messages.
• Lock you out of your own life.

Rule:

• Use 2FA.
• Monitor your logins.
• Act fast if something feels off.

What it is:
Apps that pretend to be helpful, but are secretly malicious.

Common traps:

• “Download this app to see who viewed your profile!”
• Cracked versions of games or editing tools
• Fake antivirus or “cleaner” apps

They can:

• Steal data
• Spy on you
• Lock your device

Rule: Only download from official app stores. Check reviews. Avoid sketchy websites.

What it is:
False or misleading content meant to trick, divide, or manipulate you.

Why it matters in cybersecurity:

• Hackers use fake news to cause chaos.
• Disinfo campaigns target elections, protests, or specific groups.
• You may unknowingly help spread it.

How to spot it:

• Check the source.
• Verify with a second (real) outlet.
• Be cautious with emotional headlines or viral posts.

Rule: Don’t be a victim. Think before you share.

When people hear “cybersecurity,” they think:

• Hackers
• Phones
• Passwords

But it’s much bigger.

Cybersecurity is the invisible shield protecting entire systems:

• Schools
• Hospitals
• Banks
• Airports
• Governments
• Even power plants and water systems

Your home is a digital battlefield, whether you notice or not.

Devices at risk:

• Phones
• Laptops
• Smart TVs
• Wi-Fi routers
• Smart speakers (like Alexa or Google Home)

Common threats:

• Weak Wi-Fi passwords
• Fake apps
• Phishing messages
• Malware from pirated downloads

Good habits = good defense.
When your home is secure, you become harder to target.

Tip:
Change your Wi-Fi password. Use unique passwords for all devices. Keep software updated.

Your home is a digital battlefield, whether you notice or not.

Schools use a ton of tech:

• Emails
• Online grade systems
• Student records
• Learning platforms (Google Classroom, Moodle)

Why schools are targeted:

• Easy access
• Tons of personal data
• Limited IT security in many places

What can go wrong:

• Grades changed
• Exams leaked
• Private data stolen

Tip:
Don’t share your login with friends. Report anything suspicious to your school IT team.

If you work at a coffee shop, bank, gym, or anywhere that handles:

• Credit cards
• Customer info
• Internal systems

…you’re in the cyber game now.

What hackers want:

• Customer databases
• Card reader access
• Employee logins

Small businesses = big targets.
Why? They’re often easier to hack.

Tip:
Be careful what you access from work devices. Never open personal email or sketchy websites on them.

Anywhere that offers free Wi-Fi is a potential risk zone.

Think:

• Cafés
• Airports
• Libraries
• Hotels
• Shopping malls

What can happen:

• Hackers spy on your traffic
• Fake Wi-Fi networks trick you into connecting
• They can steal your logins in real time

Tip:
Avoid logging into sensitive accounts on public Wi-Fi. Use a VPN if you must connect.

This is serious.

Hospitals are:

• Full of tech
• Connected to national systems
• Packed with critical data

Real danger:

• Ransomware attacks can shut down life-saving equipment
• Patient records can be stolen or tampered with
• Emergency rooms can be frozen mid-operation

This isn’t just about data, it’s about lives.

Governments are always under attack.

What’s targeted:

• National ID systems
• Border control
• Election infrastructure
• Classified info

Who’s behind it:

• State-sponsored hackers from other countries
• Hacktivists
• Organized cybercrime groups

Why? Power, money, influence.

Kosovo, like every other country, is part of this cyber battlefield. That’s why building local cyber talent with people like you is a national priority.

Think about this:

• What if the power went out nationwide?
• What if water pumps stopped working?
• What if flights were grounded for days?

These systems rely on networks, and those networks can be attacked. It’s called Critical Infrastructure, and defending it is top-level cybersecurity.

Countries now treat cyber defense like national defense. This is where cybersecurity becomes a matter of national security.

Cybersecurity isn’t a place. It’s a layer.

Every time you:

• Connect
• Log in
• Tap your card
• Share something
• Use smart tech

…you’re part of a system that needs protection.

That’s why cybersecurity professionals work across every sector: tech, law, finance, education, health, and more.

You’ve seen the threats. You’ve seen the battlefield.

Now meet the defenders: the people who keep systems, businesses, and even countries safe.

Cybersecurity isn’t one job. It’s a whole world of roles. Different skills. Different brains. One mission.

Let’s break them down.

SOC Analyst (Security Operations Center)

They’re the security guards of the digital world.

What they do:

• Watch for alerts
• Spot unusual activity
• Respond to early signs of attacks

You’d like this if:
You enjoy puzzles, spotting patterns, and working under pressure.

Incident Responder

They jump in after something goes wrong.

What they do:

• Contain the breach
• Clean up the mess
• Find how it happened

Think of them as cyber firefighters.

You’d like this if:
‍You stay calm in chaos, and love solving problems fast.

Penetration Tester (Pentester)

Also called “ethical hackers.” They try to break into systems, with permission.

What they do:

• Find weak spots before real attackers do
• Simulate attacks
• Write detailed reports about how they got in

You’d like this if:
You love hacking games, CTFs (Capture the Flag), or thinking like a villain, for a good cause.

Security Engineer

They build and maintain the tools that protect systems.

What they do:

• Configure firewalls
• Design secure networks
• Install security software
• Automate defenses

You’d like this if:
You enjoy building things, writing scripts, and making systems work smoothly.

Security Architect

They design entire security strategies.

What they do:

• Plan how to secure big systems
• Work with engineers and managers
• Think about both the tech and the business side

You’d like this if:
You’re a planner, a systems thinker, and like to design big-picture solutions.

Digital Forensics Expert

They investigate after an incident, like digital detectives.

What they do:

• Examine logs and files
• Trace hacker activity
• Collect evidence for court cases

You’d like this if:
You enjoy investigations, details, and tracking the truth.

Threat Intelligence Analyst

They study hackers and threats around the world.

What they do:

• Track hacker groups
• Analyze global trends
• Warn companies about new attacks

You’d like this if:
You’re curious, strategic, and like to stay ahead of the game.

CISO (Chief Information Security Officer)

The boss of cybersecurity.

What they do:

• Lead the security team
• Make strategic decisions
• Manage budgets, risk, and people

You’d like this if:
You want to lead, plan, and make an impact at the top level.

Cybersecurity Consultant / Trainer

They work across different companies and help others understand cyber risks.

What they do:

• Write policies
• Train employees
• Advise teams on best practices

You’d like this if:
You enjoy explaining things, working with people, and improving systems.

Nope.

Some roles require technical skills (like coding or networking). Others need strong communication, analysis, or even law and psychology backgrounds.

In fact:

• Some of the best consultants used to be teachers.
• Some of the best analysts come from gaming or military backgrounds.
• Some amazing ethical hackers never went to university.

Cybersecurity is about mindset.
Curious. Focused. Ethical. Problem-solver.

Everywhere:

• Tech companies
• Banks and telecoms
• Hospitals and schools
• Government and military
• NGOs and international organizations

And yes, in Kosovo too.

When you hear “cybersecurity,” what do you imagine?

• A guy in a hoodie typing 1,000 words per second?
• A genius who hacked NASA when they were 12?
• A programmer who speaks five coding languages fluently?

Here’s the truth:
You don’t need to be a genius. You don’t need to be a programmer.

What you do need:

• Curiosity
• Problem-solving
• A bit of patience
• Willingness to learn

That’s it. The rest can be learned.

Let’s be clear:
There are cybersecurity jobs where coding helps (like penetration testing or malware analysis). But there are also jobs where you’ll never touch a single line of code.

Examples:

• Security awareness trainer
• Policy advisor
• SOC analyst
• Risk assessor
• Digital forensics technician
• Threat intelligence analyst

Cybersecurity is part tech, part strategy, part communication, part psychology.

Critical Thinking

Can you break down a problem? Can you follow clues? You’d be surprised how many attacks get stopped just by asking smart questions.

Curiosity

The best cyber professionals are curious. They dig. They test. They explore.

Communication

You might know the risks, but can you explain them to others? Every org needs people who can teach, present, and guide.

Ethics

You’ll have access to systems, data, and trust. Ethics isn’t optional; it’s everything.

Some of the best cybersecurity professionals:

• Never went to university
• Started in customer service or retail
• Came from military or police
• Switched from completely unrelated careers

You can enter this field from ANYWHERE.

Certs can be a great way to prove your skills, especially if you don’t have a degree.

Beginner-friendly ones include:

• CompTIA Security+ - broad intro to cybersecurity concepts
• Cisco CyberOps - good for SOC roles
• Google Cybersecurity Certificate - great for self-paced learners
• TryHackMe / Hack The Box - hands-on platforms to practice skills

You can start small. Some certs take just weeks to prepare for.

Too young? Too old? Doesn’t matter.

• Teenagers can start with online labs and YouTube.
• 20-somethings can pivot from other fields.
• 30+? 40+? You bring maturity and life experience, huge advantages in leadership, consulting, or training.

You can start small. Some certs take just weeks to prepare for.

Here’s a roadmap:

• Learn the basics from books, videos, or courses
• Practice safe habits (passwords, phishing awareness)
• Try free tools like Wireshark, VirusTotal, Shodan
• Watch YouTube breakdowns of real-world hacks
• Follow cybersecurity people on social media
• Explore free platforms like TryHackMe or Blue Team Labs
• Attend local workshops, tech meetups, or CTFs

You’ll be amazed how far you can go without writing a single line of code.

Maybe. Maybe not.

If you want to go deeper (like into hacking, scripting, or building tools), learning coding will help. But even then, you can learn it later. You don’t need it to start.

Most people in cyber learned things on the job, piece by piece.

Don’t let “not knowing code” stop you.

When people hear "cybersecurity", they think:
“It’s about stopping hackers.”

That’s part of it.

But at its core, cybersecurity is about something deeper:

• Control
• Power
• Freedom

Let’s break that down.

The internet is chaotic. Everyone wants your attention, your data, your time.

Hackers. Advertisers. Scammers. Apps. Algorithms.

Cybersecurity gives you the tools to take back control:

• You decide who sees your stuff.
• You know when something’s shady.
• You set the rules for your own privacy.

Most people don’t control their digital lives. They drift. Cybersecurity wakes you up.

It turns you from a passive user into an active guardian.

Let’s be real: most people don’t know what’s going on online.

You will.

• You’ll know how attacks happen.
• You’ll know what data is being collected.
• You’ll know how to protect yourself and others.
• You’ll know how to break things ethically, and fix them better.

In a world full of digital threats, knowledge is power.

Cybersecurity turns you into someone others depend on.

You don’t get lost. You lead.

• Cyber attacks create fear.
• Fear of being watched.
• Fear of being hacked.
• Fear of losing everything.

But when you know how to defend yourself, that fear disappears.

• You don’t fall for scams.
• You don’t panic over fake emails.
• You don’t live paranoid, you live prepared.

That’s real freedom.

Cybersecurity lets you live online with confidence.

What you learn isn’t just for you.

You can help:

• Your parents avoid scams
• Your school protect student data
• Your workplace stay secure
• Your country grow its digital resilience

You’re not just protecting yourself. You’re part of a movement, of ethical, smart, capable people who make the internet safer.

That’s real influence. That’s real leadership.

Cybersecurity isn’t just something you “do.”

It’s something you are.

It’s a way of thinking:

• Spot the hidden risk.
• Think like the attacker.
• Protect people.
• Be smarter than the threat.

Whether you become a pentester, a trainer, a consultant, or just someone who knows how to stay safe, you’ll walk through the world sharper.

That’s what this is really about.

Hackers see the world in terms of:

• How things work
• Where they can break
• And how to fix them (or exploit them)

It’s not about chaos. It’s about curiosity.

The best defenders are creative. They see the holes others don’t.

The mindset is this:

• “What if I press here? What if someone forgot to lock this part? What happens if Ichange this input?”

This is how hackers think.

And now… so can you.

Let’s break it down:

Curiosity

• You want to understand systems, not just use them.
• You explore settings, dig into how things work.
• You ask, “What happens if…?”

Skepticism

• You don’t trust links blindly.
• You question every login page.
• You notice weird patterns others ignore.

Together, that makes you powerful.

You stop being just a “user.” You become a hunter.

Try this exercise:

Look at your favorite app or website and ask:

• What happens when I click “Forgot password”?
• What if someone guessed my security question?
• What if someone guessed my security question?
• Can I open this in multiple tabs and confuse it?
• Does the URL change when I log in? What does it show?

You're not breaking anything. You're learning.

This is the beginning of reconnaissance: a key skill for ethical hackers.

Just like martial artists stay alert in the street, cyber professionals stay alert online.

Examples:

• You spot a fake link in a friend’s message.
• You notice that a login page looks slightly off.
• You see a USB stick lying around, and don’t plug it in.

These small decisions = the hacker mindset in action.

You’re training your eye.

Yes, seriously.

Cybersecurity students use real tools that hackers use, but in labs, not on live targets.

You can try:

• TryHackMe (free gamified hacking challenges)
• Shodan.io (search engine for exposed devices)
• VirusTotal (scan links and files for malware)
• Burp Suite (for web testing; start with the free version)
• Wireshark (see what’s happening on a network)

Important: Only test systems you own or have permission to use. That’s what makes you ethical.

Let’s be honest: breaking things is fun.

But what makes you a white hat (the good kind of hacker) is your purpose.

You break things to:

• Understand them
• Improve them
• Help others stay safe

That’s what companies pay for. That’s what schools, hospitals, and governments need.

Yes:

• Join legal Capture The Flag (CTF) competitions
• Hack test environments like TryHackMe or Hack The Box
• Learn from ethical hacker YouTube channels
• Research vulnerabilities in safe, permission-based systems

No:

• Don’t test websites or apps without permission
• Don’t access accounts that aren’t yours
• Don’t share private data or “leaks” you come across
• Don’t think “just looking” means no harm

Being ethical isn’t about rules, it’s about responsibility.

A great ethical hacker doesn’t just know the tricks.

They know:

• How real attackers operate
• How systems can fail
• How people get fooled

But they also:

• Know when to stop
• Respect boundaries
• Work for the good side

It’s like being a lockpicker who helps improve door designs.

Cyber hygiene is just like personal hygiene.

• You brush your teeth daily to prevent cavities.
• You shower so you don’t smell like a gym bag.
• You cut your nails, clean your ears, and wash your hands.

Cyber hygiene = small digital habits that prevent bigger problems.

You don’t need advanced tools. Just consistency and awareness.

If you reuse the same password everywhere, it’s like using one key for your house, your car, your locker, and your bike.

If someone steals it once, they own your entire life.

How to fix it:

• Use different passwords for each site.
• Make them long (at least 12 characters).
• Avoid names, dates, or easy guesses.

Pro tip: Use a password manager (like Bitwarden or 1Password).

It remembers everything so you don’t have to.

This is one of the most powerful defenses you can use.

How it works:

• You log in with your password.
• Then, you confirm it’s really you with a code from your phone or app.

Even if someone steals your password, they still can’t get in.

Where to use it:

• Email
• Social media
• Banking
• Anything important

Turn it on. Today.

If something feels off, it probably is.

Examples of sketchy links:

• “Click here to claim your prize!”
• “Your account is suspended, log in now!”
• Shortened links (bit.ly, tinyurl) from strangers

What to do instead:

• Go to the site directly (don’t click; type it)
• Hover over the link to preview where it really goes
• Ask: Would this company really contact me this way?

If unsure, don’t click. Ever.

Yes, updates are annoying. Yes, they matter.

Most hackers use old vulnerabilities, things that updates already fixed.

What to update:

• Your phone
• Your apps
• Your laptop
• Your browser
• Your router (yes, even that)

Make it a habit. Updates = patches = protection.

Public Wi-Fi is like shouting your passwords across a crowded room.

Safer options:

• Use your mobile data if possible.
• If you have to use public Wi-Fi:
• Don’t log into sensitive accounts.
• Use a VPN (virtual private network) to encrypt your connection.

That funny post, cute selfie, or angry tweet might be harmless.

Or... it might:

• Give away your location
• Expose personal info
• Be used to impersonate you later

Ask yourself:

• Would I be okay if this got screenshotted and sent to strangers?
• Am I giving away more than I realize?

Digital footprints are permanent. Walk wisely.

Antivirus isn’t perfect. But it helps catch basic malware before it spreads.

Good free options:

• Windows Defender (built-in on Windows)
• Bitdefender Free
• Avast or AVG (with caution; avoid bloatware)

Just don’t rely on it as your only defense. Think of it like wearing a seatbelt—not crashing is still better.

If ransomware hits, or your laptop dies, or your files get wiped…You’ll wish you had a backup.

What to back up:

• Photos
• School projects
• Documents
• Anything you care about

Where to back it up:

• An external drive
• A cloud service (Google Drive, Dropbox, iCloud)

Do it regularly. Your future self will thank you.

Cyber hygiene gets stronger when it’s shared.

Help your:

• Parents update their devices
• Siblings avoid sketchy downloads
• Friends stop reusing “123456” as a password

You don’t need to preach. Just be the smart one in the group. Security spreads.