Part 2: Essential Security Tools

🗺️ Series: Overview • Part 1: Recognizing Scams → • Part 2: Essential Tools (current page) • Part 3: Network Security → • Part 4: Daily Habits →

⚠️ Disclaimer

I’m not a certified security professional or lawyer. I’m just sharing my experience and security habits - things I try to follow myself and urge my mom to practice as well. This is not a professional security consultation, nor a legal advice. Your situation may differ. When in doubt, consult with qualified paid professionals.

What I told Mom to do if she only had time for TWO THINGS:

1. Use a password manager
2. Enable two-factor authentication

Everything else is important, but these two tools protect people from the vast majority of attacks. I’m not exaggerating when I say this eliminates about 80% of the risk.

🎯 Bottom Line

Most hacks happen because of password reuse or weak passwords. Fix this ONE thing, and most security problems are solved.

The Password Problem

Let’s be honest. Most people:

• Use the same password for multiple sites (I used to do this)
• Use passwords like “Password123” or their dog’s name (guilty)
• Write passwords on sticky notes (Mom did this)
• Reset their password every time they log in

I get it. Remembering dozens of complex passwords is impossible.

That’s why I use a password manager.

1. I Use a Password Manager (Here’s Why)

What a Password Manager Does

A password manager:

• Generates strong, unique passwords for every site
• Remembers all my passwords for me
• Auto-fills login forms
• Syncs across all my devices
• I only need to remember ONE master password

What I Personally Use: 1Password

I use 1Password for myself and my entire family. My mom uses it too.

Why I chose it:

• Very user-friendly (my mom figured it out!)
• Family plan lets me help my mom remotely
• Travel mode for international trips
• Stores more than passwords (see below)

Cost: ~$5/month for individuals, ~$20/month for families (up to 5 people)

Other Great Options

Bitwarden - FREE & Open-Source

• Excellent free tier
• Open-source (security experts can audit it)
• Great for tech-savvy users
• Premium features for $10/year

Dashlane - Premium Option

• Built-in VPN
• Dark web monitoring
• Slightly more expensive

🗃️ What I Store in Mine

I store more than just passwords in my password manager:

• Emergency contacts
• Passport numbers
• Software license keys
• Secure notes
• Credit card info (for auto-fill)
• WiFi passwords

It’s all encrypted and synced across my devices.

How I Got My Mom to Use It

Step 1: Installed 1Password on her computer and phone Step 2: Added her 5 most important passwords (email, bank, Amazon) Step 3: Let her use it for 2 weeks Step 4: She was hooked - “Where has this been all my life?!”

Now she uses it for everything. No more sticky notes!

Questions Mom Asked Me

“What if I forget my master password?” I told her that’s the trade-off - she’d be locked out. That’s why it’s secure. I told her to write it down and store it somewhere safe (NOT on the computer).

“What if 1Password gets hacked?” They use military-grade encryption. Even if hacked, the data is unreadable without the master password. (This happened to LastPass - users with strong master passwords were fine.)

“Isn’t putting all my eggs in one basket risky?” I told her it’s actually safer than reusing passwords everywhere. When one site gets hacked, hackers try that password on every other site.

2. I Use Two-Factor Authentication (2FA) on Everything

Two-Factor Authentication (also called MFA) means I need TWO things to log in:

1. Something I know (my password)
2. Something I have (my phone, a code, a hardware key)

Even if someone steals my password, they can’t get in without that second factor.

Where I Have 2FA Enabled

I have it on everything important:

• ✅ Email (Gmail, Outlook, etc.) - I did this first
• ✅ Banking and financial accounts
• ✅ Social media (Facebook, Instagram, X/Twitter)
• ✅ Shopping accounts (Amazon, etc.)
• ✅ Password manager itself
• ✅ Work accounts
• ✅ Any account with personal information

🔐 Critical

If someone hacks email, they can reset passwords for ALL other accounts. That’s why I protected my email with 2FA first.

Types of 2FA (From Least to Most Secure)

1. SMS Text Messages (What I set up for my mom)

• Pros: Easy to understand, works on any phone
• Cons: Can be intercepted (SIM swapping attacks)
• My take: Better than nothing! Perfect for non-tech users

2. Authenticator Apps (What I use)

• Note: 1Password and Bitwarden already include built-in authenticator functionality - no separate app needed!
• Standalone apps (if not using a password manager): Google Authenticator, Microsoft Authenticator
• Pros: More secure than SMS, works offline
• Cons: Slightly more complex setup
• My take: Best balance of security and usability

3. Hardware Security Keys (What I use for important accounts)

• Devices: YubiKey
• Pros: Most secure option, immune to phishing
• Cons: Costs money ($25-50), can lose the key
• My take: Overkill for most people, great for high-value accounts

💀 Real Attack

My friend’s email got hacked. The hacker had his password (from a data breach). But they couldn’t get past 2FA. Crisis averted!

Without 2FA, the hacker would have:

1. Accessed his email
2. Reset his bank password
3. Transferred money out
4. Changed passwords on all other accounts

How I Set Up 2FA

For my mom (SMS method):

1. Go to account security settings
2. Look for “Two-Factor Authentication” or “Two-Step Verification”
3. Choose “Text message” option
4. Enter phone number
5. Enter the code they send
6. Done!

For myself (Authenticator app):

1. Download Google Authenticator or Microsoft Authenticator
2. In account settings, choose “Authenticator app”
3. Scan the QR code with the app
4. Enter the 6-digit code
5. Save backup codes in password manager

🔑 Key Thing

I always save my backup codes. If I lose my phone, these codes let me back in. I store mine in 1Password.

Find Out Which Sites Support 2FA

1Password users: 1Password automatically detects when a site supports 2FA and prompts you to set it up. No need to check manually!

For everyone else: Visit 2fa.directory - it lists thousands of websites and which 2FA methods they support.

3. I Keep My Software Updated

Yeah, this is boring. But it’s critical.

Why I Bother

My firewall and antivirus are only as good as their latest patch. Hackers exploit known vulnerabilities in old software.

What I Update Regularly

• Operating system (Windows, macOS, iOS, Android)
• Web browsers
• Antivirus software
• Router firmware
• All apps on my phone

How I Handle Updates

On Mom’s computer:

• I enabled automatic updates for everything
• I check her router firmware quarterly

On my own devices:

• Auto-update enabled for OS and apps
• Manual check for router/IoT devices monthly

🤷 My Take

I enable automatic updates. Yes, the restart is annoying. Yes, it’s worth it.

4. Antivirus: What I Use

My Setup

On Windows (Mom’s computer):

• Windows Defender - it’s excellent and FREE (built into Windows 10/11)
• I told her not to pay for expensive antivirus
• I made sure she didn’t disable it

On Mac (my computer):

• macOS built-in protection
• Malwarebytes for occasional extra scanning

What I avoid:

• Kaspersky (banned by FCC in 2022 due to national security concerns)
• Free antivirus that constantly tries to upsell

How I Keep It Effective

1. Auto-update enabled
2. I run full scans monthly
3. I never disable it “just for this one download”

The 80/20 Rule in Action

Here’s what I did for my mom, in order:

1. ✅ Installed 1Password (took 30 minutes)
2. ✅ Enabled 2FA on her email via SMS (5 minutes)
3. ✅ Enabled 2FA on her bank (10 minutes)
4. ✅ Enabled Windows auto-updates (2 minutes)

Total time: Under 1 hour

Risk reduction: ~80%

That’s it. Four things. One hour. Massive improvement.

What I’d Do First If Starting Over

If I were starting fresh, here’s what I’d tackle first:

• Install a password manager - I use 1Password, but Bitwarden is excellent too
• Enable 2FA on email - This was the first thing I did, and it protects everything else
• Check 2fa.directory - I used this to find which of my accounts support 2FA
• Enable automatic updates - I did this on all my devices and Mom’s too
• Help a family member - Setting up Mom’s password manager was worth every minute

Next in Series

Part 3: Network & Home Security →

Learn how I protect my home network with routers, firewalls, and proper configuration. This is where I build my digital fortress.

More Resources

• 1Password Security Guide
• Bitwarden Documentation
• Google: How to Set Up 2FA
• YubiKey Getting Started

Last updated: January 31, 2025