Basic Windows Security Tips

2024-01-06 01:12:15
A few tips, but important ones. Also includes a few write-ups as to why.

You can enable BitLocker by pressing the Windows key, typing Manage BitLocker, and finally hitting Enter on your keyboard.
Using a computer without BitLocker (especially on a laptop) is a bad idea. If I was to take someone's Windows laptop right now, I bet that 99% of those people would not be using BitLocker or any other form of encryption. This means I could simply remove the hard drive, put it in my computer, and copy everything stored on it, no passwords required. Use BitLocker.

Same reason as the first, but a bit less necessary. That being said, it's always good to encrypt your stuff. You never know what you might have on it that a nefarious person could find useful.

Never use a Windows PIN. It's much less secure than a password (assuming what you're using isn't completely moronic), and is easier to "guess", assuming you're doing what most people do, which is using a notable year or basic patterns/combos.
Note: Alternatively, you can use Windows Hello, or another form of biometric.

Surprisingly, most do not know that you do not need to be logged in with a Windows account to use OneDrive, or other Microsoft native services. You can simply make an offline account, then login to OneDrive after, making sure to select "allow only Microsoft apps to sign in" upon doing so.
In addition, this is somewhat of a controversial step, as it also depends on your use case. Assuming your are using a strong password on your local account, you could be more secure than using a Microsoft Account, especially if you are using a PIN to login, or don't use an authenticator of some sort. Secondly, using a Microsoft Account puts you at risk of a possible Microsoft data breach, though this is unlikely.

Don't just depend on browser synching. Use a password manager and make sure you use secure passwords. I would recommend KeePassXC.

Check out these notes...