While Windows 10 is the most secure Windows to ever be made, yet there are still some things you can do to tighten that security.
In this guide we'll go over:
Passwords
Automatic Updates
Built in Firewall and Defender
Antiviral Programs
Data Backups
We'll get started with making sure your log in password is strong.
2. Select Password
Wherever possible, you should pick a password that is impossible to guess and is also resistant to brute-force attacks.
Some devices or systems do not allow special characters or they may have their own requirements.
Password Dos and Don'ts
Dos
Passwords should be long, 8-12 characters or more.
Passwords should be something easy for you to remember, but hard for others to guess or lookup.
Passwords should have lots of different character types: upper and lower case letters, numbers, and symbols.
Replacing letters with symbols is a simple way to achieve this: use @ for a, and ( for c, as example.
Passwords are personal, most services have a way to create a 'linked' account or share services with trusted friends and family.
Change passwords regularly. Every 90 to 180 days; this helps keep your accounts from being compromised long-term.
If you must write down a password or make note of it, do so only in specially designed programs, or keep and hold the physical copies with the same care and respect you would a social security card or birth certificate. Remember; anyone with your password "is you".
Don'ts
Don't use short passwords; computers can guess them very easily.
Don't use a common word you can find in a dictionary.
Don't use information that can be looked up or guessed, such as a birthday, anniversary, or pet's name.
Don't use the same password for everything. If one password is compromised, all of the same ones are compromised across all your accounts.
Don't share passwords. People with your password "are you" to a computer system, or a service.
Don't keep the same password forever. Assume that, at some point, it will be guessed, seen, or otherwise compromised, and it must be changed.
Don't write down passwords in the open, or save them in non-encrypted files on your computer.
Password Resources
Are Password Management Programs Safe? — Using a password management program can help you to create and maintain strong passwords that are different for every site and service you use.
Click Sign-In Options then click Change (or Add if this is first time setting up a password).
If you are changing your password, you'll be prompted to type in your current password.
If you log in using a Microsoft Account, Microsoft will text you a code using the number associated with your account. You'll have to verify the last four digits of your number first and then type in the code when you receive it.
Now enter your old password and then your new password.
That's it! Your password is now changed.
4. Keeping Your Password Secure
Some precautions should be taken in order to keep your password secure.
Best practices:
Do not use a master password that you use everywhere (such as email, work, school, home, network)
If possible, do not share your password with anybody.
Passwords that are shared with others, like for a home network, should only be shared if necessary.
Be aware when typing your password in public, or that in no way anyone is watching.
Some types of electronic devices like computers and smartphones can remember passwords, so beware of devices that are not yours.
Make a schedule of when to change your password. For example, every 180 days.
It is not recommended to write down passwords. But if you have to, make sure that it is neither physically nor visually accessible by others.
5. Configure Automatic Updates
Automatic Updates are on by default and ensure your Windows 10 system is receiving the most up to date patches.
To make sure Automatic Updates are on, follow these steps:
Click the Start button.
By default it is in the lower left corner of your screen.
Click the Settings button on the left side of the start menu
Click Update and Security.
Click Advanced Options.
Make sure Automatic is chosen.
6. Enable or Disable Defender
Windows Defender will be on by default but if you want to make sure (or you want to turn it off) go ahead and follow these steps.
Click the Start button.
Click the Settings button on the left side of the start menu
Click Update and Security.
On the left side click Windows Defender.
Slide the button under Real-time Protection to On or Off.
7. Enable or Disable Firewall
The built in Firewall is also on by default. It's set to allow all outbound communication and ask to make sure if you want inbound communications (such as online games) to occur.
To access the Firewall settings follow these steps:
Click the Start button.
By default it is in the lower left corner of your screen.
In the search field type Firewall.
Select Windows Defender Firewall.
If your shields are green then your Firewall is on.
If the Firewall is not on, click Turn Windows Firewall on or off.
Click Turn On Windows Defender Firewall for both Private and Public networks.
8. How to Use Firewall
With Windows Defender Firewall on, you will sometimes see popup notifications from applications asking for access to your system.
You should only allow access if you recognize the program. Typically, you'll only see the prompts the first time after installing software or a game.
Click Allow to give the program access.
9. Third Party Anti-virus
If you would rather have another option for security there are many 3rd party software suites out there to choose from.
Some of the available suites include:
Norton
McAfee
Sophos
Comodo
Malwarebytes
10. Data backups
Now that we've covered updates and security, let's go over some best practices for backing up your data.
First and foremost, it is always wise to backup you data and backups should be performed regularly. Even beyond the scope of malware or security, it is always prudent to have frequent backups because hard drives can fail, systems can crash, things can break, "life can happen", so you're always better off safe than sorry.
Data backups, just like any type of backup are a matter of redundancy. One backup solution is good, two or more is better.
Offsite backups are always a good idea, especially as a secondary backup. That way if an event happens such as a fire, flood or theft, you have the remote offsite backup to fall back on.
It is always prudent to set your backups to use a versioning scheme. That way if files are corrupted, infected or locked, you don't have to worry about having only one backup which may be the bad version.
If you are using a local backup such as an external hard drive it is always a good idea to disconnect the drive when it is not in use. The reason being, some forms of malware can encrypt or corrupt all data on all connected drives, so a drive that is not connected will not be affected.
11. Backup
Windows 10 comes with its own backup software.
To begin you'll need an external drive.
Select the Start button, then select Settings.
Select Update & Security.
Select Backup.
Make sure your external drive is connected and select Add a Drive.
Select your drive from the drop down list.
Backups will start automatically, you do not have to make any other changes.
Windows 10 will now make a backup every hour of C:\Users\<your username>.
If you want to change these settings click More Options beneath Add a drive.
12. Summary of Security
Windows 10 is the most secure Windows to date. Remembering a few simple rules can help keep you safe in this digital world.
Secure, complicated passwords that you use only once per site or program.
Not sharing your passwords, or allowing others to see your password.
Enabling Automatic Updates keeps your system secure with frequent updates.
Keeping Windows Defender and Windows Defender Firewall on gives you a barrier of security.
Third party programs are available if you'd rather use them.
Keep an up to date backup using Windows own feature.