Windows Security Tips 

1:00 Setting - Accounts - Local Account 1:50 Control Panel - User Account - Change your account type - Standard 4:50 Start - Setting - Account - Sign in options - Password 9:50 Start - Create a restore point - Configure - ✅Turn on system protection - ok 15:35 Start- type Control panel - Networking and internet - Networking and Sharing Center - Change adapter settings - right click on Ethernet icon - Properties - ?!?!?

Your password method is actually what I've been doing for a year now. Glad to see someone else does that.

I just discovered your channel a couple of days ago and i automatically subbed. Your content is awesome!

I'm an IT Security Professional and i can tell you the actual statistics on vunerablilities and weaknesses on a Windows operating system. Only 6% of infections come from your anti-virus/malware not stopping the infection. The other 94%(yes i said 94%) are from people NOT updating their Windows Operating System. What people don't understand is that Windows OS's are like swiss cheese; they have tons of wholes in them. And everytime you receive a Windows update for your OS, it plugs one of those holes. Sadly, Windows is written so poorly from a programmer standpoint that it's constantly finding new holes. It's like a wack-a-mole game. Everytime you plug a existing hole, i new hole appears. Your best Security advice is NOT to use Windows OS's at all!

top-notch video! i am studying cybersecurity and this info has been very valuable. Thanks bro! Subscribed to your channel now

Yep, fairly solid set of tips. Good stuff.

Great set of tips. I'm 100% with you about passwords, what your remember and never write down beats something you have to write down to always reference... especially at work, where they think long complex passwords that need to be changed every X days is the way to make things secure. Yeah. Sure. I should buy stock in 3M post it notes.

Another wonderful video that will protect thousands of people! Thank you; you do a great service for us.

Energy of dad joke on this channel is insane

The Microsoft account thing is a double edged sword though. Apps you download from the Microsoft store have limited access like they do in iOS and Android and I presume Linux. Traditional windows apps aren't limited in this way. In order to use those versions of apps you have to have a Microsoft account. Now, you CAN uninstall OneDrive if you want but many devices come with encryption without having to pay extra (finally!") to protect your data in the case of theft. I actually uninstalled OneDrive because I use Google Drive. I also think that a written down, complicated password, is more secure because you're most likely to have your account attacked by somebody who doesn't have access to your PC. I use a memorable password for the service that manages my passwords and that's it but for older people I can see how password managers might complicate life.

Great tips! I run with a standard local account, myself, even though the UAC prompts get old. I use Windows Defender as my AV with core isolation enabled, I run EVERY download through VirusTotal and have Windows Sandbox enabled in the case of downloads that I am not 100% sure of. Also, I actually use Quad9's DNS (with DNS over HTTPS enabled in my browsers) which automatically blocks a gargantuan list of malicious domains entirely and is probably the most private DNS service. On top of that, I ensure that my adblocker (Adguard is my preference) on all of my browsers has access to a filter list to block malware domains and functions as well. Oh, and I also encrypted my storage drives with Bitlocker (TPM enabled) just for added security, though that's a bit overkill as I live in an area with an extremely low crime rate. While I do have a less complex password for my PC, because of where I live, I'm not terribly worried about it as it's not a BAD password, it's just not as ridiculous as my passwords for sites that I use (at LEAST 50 characters each, with random letters, numbers and special characters, all managed through KeePassXC).

So clearly explained. Thanks.

@CyberCPU Tech, glad you mentioned PiHole towards the end of the vid. I recently went a step further with mine and installed a recursive DNS server called UNBOUND along side PiHole. Im still in the testing it out for speed/reliability phase but for the most part its seems to be running well despite the fact its running on a pi2.

Those Head flourishes he does to get the beard movin is hilarious

I was curious what your opinion is on PC Matic? Ive been using it for a few years now and it seems pretty good and low impact on the machine. I value your opinion. Great channel BTW

Is there a way to make specific system restore points permanent? I would like to be able to revert back to a fresh installation with custom apps installed

Thanks for all your Windows 11 programs, I bought a new PC and would have been totally lost without your programs. I have run into an issue that seems pretty common. After changing the automatic reset point as you advised, I set a new point manually and tried running a system reset, but it failed. I found several RU-vid shows on how to fix this, most confusing. I doubt this has anything to do with the registry change so could you do a program on how to fixe system reset when it fails?

I use pi hole + unbound for my dns 👍

Just found tour Channel, and This is just a Big Big help. Thanks. Hope you will make more beginners videos🙏

yeah, security thing is huge these days. If your one of those persons that have or might fall for tech support scamm, you most defently do not want your info stored on your pc, but how windows 11 is and wants you to have a online account to even be able to logg into windows 11... (yes I know about the local win11 account workaround), but I still see this forced windows account loggin as a high privacy risk. since you cant easely have bogus info without changing it online on microsoft account itself,. Not only that, streamers to, seeing theyr real life info.... some streamers dont want to share that part of theyr real life. I forgot all about UAC so thanks for that info!

regular updates and local accounts are the two most basic things- to do security wise on any operating system. everything else is a nice to have thing

Other ways to keep safe is also your network, I have firewall and security setup on my router that blocks in coming bad traffic.

This is awesome

I have yet to find a SSD or HDD that I cannot access plugged in to a USB as a data drive on my personal PC, or laptop. That OS is not active, so I can get into, and transfer most any data on the drive. I've done this numerous times for friends and family in the past. As for me, I don't keep anything important on my "C" drive other than applications, and my Document folder is backed up weekly to a different physical drive

6:00 - passwords I avoid using password manager because it hard for me to trust some remote company with this. Suggestion: I use a password generator from site name and year, just a sequence of edits that gives me a unique password that hard to guess. I only need to remember the script. Been using it for years, never failed.

Great stuff as always. Thanks!

im new to all this. so be nice haha. but if you have a local account, doesn’t that mean that if something happens you are in danger of loosing everything you had in there?

Great video. I had switched to Linux unfortunately 2 of my work-related programs only run on Windows 11 :( So I had to buy a Windows laptop.

I have problems using System Restore when using Bitdefender Total Security. It becomes so tightly linked it stops me using recovery using S.R. I used to love it as it was so easy to do. 😞

Thanks for your tips with security. I am doing what you explain. Nice to know its good practise!!!

This a great common sense + (i.e. smart sense) video. Finally some good info!

Another problem with BitLocker is Microsoft has your key. Why does anybody want MS to know it is beyond me.

Very good , what about malicious software removal tool (mrt) build in windows?

I just stumbled onto your videos, lots to interest. Thankyou. In this vid you mention the possibility of changing the MS account to local account on a loaded system. I don't want to reload everything, so, do you have a video for this process please? TY

I keep my important passwords (banks mostly) on an encrypted USB stick. They are long and completed, mostly, some are nonsensical statements. Only need to remember the long and complicated master password for the stick.

the *_most_* secure way to sign into windows is actually with a security key.. you should do a video on that!

Love all your videos, my question is, if you already have a computer that is already set up with a Microsoft account, is it possible to add a local account, set it as adminstrator, and then delete the original Microsoft account, will this work the same as setting up the computer as you have shown here? Im ask because i dont really want to start installing Win11 from scratch

It is extremely difficult to set up a new Windows 10. You just click through the setup assistant but then you have to add the same user with the command prompt, make it an administrator then remove the account the assistant created. The next thing is to uninstall the Windows Store with the PowerShell or the registry because you will generate so many CPU errors that it will destroy your mass storage device by overfilling it with reports. Any time you have a kernel on the filesystem you turn on DEP in the advanced system settings because oftentimes you have no idea how many accounts go on it’s security card and by the time you learned of all of them your computer has been attacked and went down. If anything happens to your operating system just switch to Unix and start virtualizing older editions of Windows and your system will eventually come back!

Hey CCT! 👍 After viewing this video I checked my UAC and it was "NEVER NOTIFY". Now I don't remember if in a bumble headed move I set it that way but I promptly moved it to "ALWAYS NOTIFY".

For the AV I use Tronscript which is like offline-Virustotal. I run it once a month just in case.

Very helpful for an illiterate like me, thank you!

90% of chances, the problem is between the keyboard and the chair.

Great tips but what about Cloudflare DNS?

windows security is the best for pc

how do u deal with virus and connectingg these pcs to the internet if u needed to do updates or install software? i given a x99 system and ive wiped it but i still dont trust plugging it into my network to reinstall all the driverrs?

Do have a virtual box tutorial?

I'm understanding why you cannot stand Microsoft, that said, could you do a video ion how to bypass constantly requiring to sign in to local microsoft, account

Is antivirus needed?

Forget bit locker, bios password should be enough to lock out us IT guys

Bitdefender is just fine.. But for simple office use also Defender it's ok under local accounts..

how often will the system restore be creating a new point, every time windows boots up?

I did the "System Restore Point" registry tweak a several months ago, What annoys me is after every build update (Windows Insider Dev Tier) The system restore is turned off, I know with the new build there is also a new registry settings, For some reason after every build my internal (secondary) 3 TB hard drive and my optical drive (DVD drive) disappear from "This PC" window it only shows my C: rive SSD.. I have to end up running "msdt.exe -id DeviceDiagnostic" and restart my system.. Sometimes I have to do that and go to my device manager/storage controller and uninstall my "Intel(R) Chipset SATA/PCIe RST Premium Controller" and restart my system.. I figure doing a fresh install of Windows 11 Pro, would probably fix it, but I have a lot of software and programs that I would also have to reinstall and last time I did a complete fresh install of my OS on My other computer it took me almost half the day to do updates & reinstalls.. I have tried literally every trick I can think of to stop it. Do you have any suggestions?? BTW, love your channel, I have found 99% of all your advice to be spot on.. Even techs need help (me, LOL) Thank you for sharing.. Sorry to babble on so..

Hello. Im on a local account and for some reason sign in options wont open up. Do you know a solution for this? Thank you

It will take longer to crack a pure alpha password of 10 characters than 8 characters of alpha-numeric- length is what matters (that's what she said), not complexity. 12 or more characters is the goal, so nonsense passphrase is the way to go. A good alternative DNS to google is Cloudflare's 1.1.1.1 (yup, it's that cool).

How do you feel about the security suites that you get with your internet subscription?

System restore? Doesnt that also save any potential virus?

What do you think about Kaspersky free AV?

fantastic advice, great channel, and free? please change me for your content. I feel ashamed to get it for free...

If memory serves me right my computer tach has mine pretty secure...

maybe i shouldn't turn off uac

CyberCPU - I cannot find SYSTEM RESTORE in REGISTRY. Using windows 10

Hey I finally found something you said that I disagree with. LOL Microsoft has been doing a horrible job with updates over the last two or three years. Maybe in the home user market you haven't seen it but in the business market every update breaks either domain printing, RDS, or kerberos certificate exchange with the DC.

what is im still getting the was unable to fix some files

if I use Bitlocker or Veracrypt to encrypt a PC drive, then temporary unlock the encrypted drive to view files, then lock PC without locking encrypted drive, can an average thief get the data?

I jumped on my computer. But, it broke... :- /

Select DWORD at 32 bit, what if I have 64 bit; make any difference?

I AM A 14 YEARS OLD GIRL AND I WANNA FEEL SAFE ON MY WINDOWS 11 LAPTOP.

The third-party anti-virus suites provide these DNS protections against a malicious website, giving protection using many of the popular browsers. Windows Security offers a similar benefit but heavily favors the use of Edge and like it's predecessor IE, I will NOT use. With the trusting nature of DNS, which servers you use makes little difference. As they all can be easily fooled into accepting spoofs and bad data that can easily send you to a bad site. But, too each their own.

What about bios password?

You can only one run Antirvirus software, not multiple ones. Microsoft Defender is OK, but you might want to buy another Antivirus that is better then Defender

How did you know my wifi password 😐

If you use a MIcrosoft account, you can make it passwordless. Microsoft claims no password is more secure

Best security tip ever is this. DONT USE WINDOWS. Use a Mac, or use Linux. Since they both use a Unix core they will always be more secure than Windows.

first!

Im sorry, dont mean to be that guy, but the system restore "hack" in RegEdit, should the value not be set to 1 as in enable? isnt 0 off and 1 on? Or is it 0 because you labeled it frequency? and if so, what is the 0 as far as how often will it create a restore point? Love your content, great for newbies and semi pros. Lol. keep em coming. I have an idea for a video in the future around security, Create a python file of some other bat file to DOD wipe the drive if a file or folder gets accessed with the wrong password. Like a self destruct of the drive if unauthorized access occurs. Ive been trying to get something like this going, and either its not possible in windows, or no one has created a how to on it. Im no coder so I have no clue which scripting language to even use.....

myonly pronlem is i clik on website that i shouldn't have.....lol

I don't want its just to help Google and Chrome so not other web can get it before them