top of page

Online Safety Guide

Cybersecurity Basics

In the modern age of the Internet, it’s hard to be online 24/7 and be sure that you’re safe and secure.

 

Criminals are not really out there to damage your computers, they want your data, they want your online accounts. Once they have that, they can sell this onwards to other criminals, and make more money.

Prevention

No operating system is immune. Windows, macOS and Linux can all be compromised if software vulnerabilities are exploited or users are tricked into installing malicious software.

 

  • Invest in a reputable Anti-Virus product. There are many to choose from, but if you want independent advice on these, check out AV Test or AV Comparatives. These organizations work independently to the Anti-Virus vendors, and give honest appraisals on the effectiveness of the products they review.

  • While neither site lists AV products for Linux, many of the vendors listed DO have Linux products, so check their websites.

  • A significant source of malware is through online advertising. Most advertising services vet the content they offer, and are safe, however not all are as ethical. While we appreciate that map-makers like to get paid for their work, some download sites are so overloaded with Ads that an Ad-Blocker is almost essential to use those sites. We personally have used uBlock Origin to filter out the worst of the advertising.

  • If you use sites that require a login, and most do these days, use some basic “hygiene” tactics

  •  Always use a strong password, something that can’t be guessed

  • Use a password manager to store these, for safety and convenience. We like Proton Pass.

  • Never re-use the same username/password across multiple sites

  • Use Two Factor Authentication if offered, it’s an extra step for an attacker to overcome.

    • It's worth remembering that 2FA isn't a silver bullet. Some malware steals active login sessions (sometimes called session tokens or cookies), allowing an attacker to reuse an existing login without needing your password or 2FA code. That's one reason compromised Discord accounts continue to be a problem.

  • Review your browser extensions occasionally and remove any you no longer use or don't recognise. Extensions have access to a surprising amount of data.

    • Only install browser extensions you genuinely need, and periodically review and remove any you no longer use.

  • Never scan Discord QR codes or log into external websites just to "verify" your Discord account unless you completely trust the source.

Clean-up

So, you’ve been affected somehow. Either your PC is infected, or your password has leaked, and sometimes a combination of both

 

  • Clean up your PC if infected. While it stays infected, your passwords remain vulnerable, even if you change them. Use a reputable Anti-Virus product

  • Once the PC (or phone, they can be infected too) is clean, RESET all your passwords. If an attacker has got one of your passwords, you cannot be sure they haven’t got them all.

    • Generate STRONG passwords, with random characters that are unguessable

    • USE a password manager to store them

    • SET Two Factor Authentication if offered

    • Use the service's "Log Out Everywhere" or "Log out of all devices" feature if available. This invalidates active sessions and can disconnect attackers who are still logged in.

  • Review your Discord Authorized Apps periodically and remove any applications you no longer use or don't recognise.

  • If your Discord account suddenly starts posting spam, assume one of your devices may be compromised rather than simply changing your password. 

©2020 - 2026 GMC Community

tiktok.png
Website developed by
Jerry GMC Master Fixer
bottom of page