Our computers store a lot of important information about us, including our addresses, passwords and credit card information. Viruses and other malware can be used to steal this data, slow down our devices or even lock us out of them entirely. And with roughly 450,000 new malicious programs created every day, our devices can face near-endless threats. Accordingly, it’s important to learn how to protect your computer from viruses and other threats, like spyware.
Let’s explore how you can keep your computer safe, from using antivirus software to adopting broader device security best practices.
How to protect your computer from cyberattacks
Update your computer regularly
Security patches — and fixes for vulnerabilities discovered in the software — are some of the most common OS updates. Microsoft releases regular security updates and Apple releases frequent security updates for its various operating systems as well. To keep your computer safe, you’ll want to make sure these updates are installed in a timely manner. This doesn’t mean you need to stop what you’re doing to install an OS update the instant it’s released, but you don’t want to wait a week to install it either.
Similarly, many programs — like the web browser you’re using to view this article — receive regular security patches. Make sure you’re always using the latest version of these tools so you’re protected by the most recent updates.
Pro tip: Updates can sometimes go wrong. Back up important files before installing updates to ensure you won’t lose anything.
Enable antivirus software
Windows and MacOS both come with built-in, free antivirus tools. Windows has Microsoft Defender, an antivirus tool that scans downloads for signs of malware and runs frequent automated scans for viruses. You can also run manual scans at any time with Microsoft Defender.
MacOS offers multiple layers of antivirus protection: Notarization and XProtect. Notarization keeps malware out of the App Store and blocks apps with malware from running on your computer. XProtect blocks downloads of files with malware from sources other than the App Store, prevents files or programs with malware from running and remediates problems caused by malware.
By default, these programs should be enabled on your computer. In Windows, you can confirm this by going to Windows Security > Virus & Threat Protection > Virus & Threat Protection Settings. Here, confirm that Real Time Protection is toggled on:
On older versions of MacOS, you can check XProtect is enabled by going to System Settings > General > Software Update > Advanced. This is done in newer versions of MacOS by going to System Settings > General > Software Update > i Icon (next to Automatic updates). Make sure the box for Install system data files and security updates — or Install security responses and system fileson newer versions of MacOS — is checked.
Add third-party antivirus software
While the built-in antivirus tools are powerful enough to protect most users, there are some instances where you might want to purchase a separate antivirus software:
- You want to schedule scans. Microsoft Defender and XProtect run automated scans on a schedule determined by your operating system. You can schedule Windows Defender scans using a separate tool, the Task Scheduler, but this is frustratingly complex for people who aren’t technologically inclined. XProtect, meanwhile, doesn’t offer this option at all. If you want to easily schedule scans, you’ll need to purchase separate antivirus software.
- You want more browser protection. Some Microsoft Defender and XProtect browser security tools only work on the operating systems’ built-in browsers (Microsoft Edge and Safari, respectively). You’ll need a third-party antivirus to access browser security for other browsers, like Chrome or Firefox.
- You want access to other security and privacy tools. Many third-party antivirus tools come bundled with things like scam protection, parental controls, disk cleanup tools, online data cleanup and even identity theft protection. Some also offer VPNs, but we don’t recommend most VPNs bundled with antivirus software because they’re often slow and many lack advanced privacy features.
I recommend Bitdefender if you’re looking for a third-party antivirus tool. Bitdefender’s antivirus is highly intuitive and performs even deep scans quickly, without causing a major drain on your computer’s resources. Bitdefender’s Ultimate Security packages also include an ad-blocker/anti-tracker, scam detector, digital footprint monitoring tool, dark web monitoring and, at the higher levels, identity theft protection. You’ll also get a VPN, but its performance isn’t great, so we recommend buying a separate VPN instead.
McAfee offers a similar suite of tools, with a particularly impressive online account cleanup tool, and you can install McAfee on unlimited devices without paying anything extra. However, McAfee can be slow, and it uses significantly more processing power than other top antivirus tools. So I only recommend it if you have more than the five devices protected by Bitdefender’s plans.
If you want the advanced protection of a third-party antivirus tool but you don’t have the budget — or don’t want — to pay for it, you can opt for the free version of AVG Antivirus. You can also check out our list of the best free antivirus tools for other options.
Enable firewall protection
Firewalls scan data sent to your computer for malware and attempt to block files or other data they deem suspicious. Like antivirus software, this software is built right into modern operating systems and should be automatically enabled. However, you may want to confirm that your firewall protection is enabled.
To confirm that the built-in Windows firewall is active, open Windows Security and go to Firewall & network protection. All of the settings here should say Firewall is on.
In MacOS, go to System Settings > Network > Firewall. You’ll then see all of the currently active firewall settings.
Most premium antivirus tools also come bundled with proprietary firewall tools, which often provide more advanced and customizable settings than the firewall software built into your operating system. Firewall protection is usually enabled by default when you install your antivirus. You may also be able to toggle it on and off in the dashboard of your antivirus.
Ensure you have protection against spyware
Spyware isn’t technically a virus, but it’s still worth protecting yourself from. This malicious software gathers personal information about you and sends it to third parties, who can then sell your data or use it in other nefarious ways. Your operating system’s built-in security software provides some level of protection from spyware, but you may be able to get better protection with third-party anti-spyware software.
The good news is that most premium antivirus tools include spyware protection. In some cases, this is a core feature of the antivirus and is automatically enabled when you activate the antivirus. However, some companies like AVG provide antitracking and antispyware software as additional programs that must be configured separately.
Learn to identify phishing and other scams
Phishing involves someone sending you an email, text or other communication claiming to be from a reputable source (like a bank) that needs you to do something. Most often used to steal personal information, this technique can also be used to get you to click on links containing malware, such as viruses or ransomware. Similarly, while other scams tend to focus on stealing your money or identity, they can also work to install spyware or other malicious software on your computer.
There are a few things you can do to protect yourself from these scams:
- Pay close attention to email addresses. Scammers often use slight variants of existing companies’ URLs. For example, if they’re pretending to be from PayPal, they might use the URL “paypal1.com” instead of the real “paypal.com” URL.
- Pay attention to the greeting. Scammers frequently send emails with generic greetings, such as “dear customer.” They may also misspell your name or even use a different name altogether.
- Identify links before you click on them. Hold your mouse over any links to see the URL. If it’s not the real URL of the company the email claims to come from, don’t click on it.
- Look closely at images in the email. Along with spoof URLs, many scammers use slight variations of real companies’ logos to legitimize their emails. If you suspect an email with a logo is fake, cross-reference the image with the real logo on the company’s website.
- Pay attention to screencaps of files. Many scam emails include fake invoices, which may contain malware. Make sure any invoices you receive are from companies you actually do business with and reference products you’ve actually purchased. Luckily, most email clients display a screenshot of attached files, so you can determine this without opening the attachment.
- Understand the policies of companies you work with. Many companies, like banks, have clear policies stating that they will not email or call you to request personal information. Knowing these policies can help you quickly identify fraudulent messages claiming to come from these companies.
- Contact the company separately. If an email largely looks legitimate but comes from an email address you don’t recognize, reach out to the company through a verified channel, like their customer service live chat. They can tell you if the company needs anything from you. This also gives them an opportunity to warn other customers about potential scams.
Many antivirus tools, including Bitdefender and McAfee, also provide scam protection tools. You can connect these tools to your email address (and, in most cases, your phone) and they’ll scan messages sent to you for signs of scams. Emails deemed suspicious will either be marked as potential scams or blocked outright. These tools can filter out many obvious (and some more sophisticated) scams, but they’re still evolving — and so are the scams they fight — so you’ll still need to use common sense to protect yourself.
Only download files from sources you trust
Good antivirus and firewall software can often identify and block malicious files you attempt to download, but you’re safest if you never attempt to download them in the first place. Luckily, many of the same strategies used to protect yourself from scams — like paying close attention to the email addresses sending you attachments — can help you filter out malicious downloads.
There are also some extra steps you can take to ensure files you download are coming from trustworthy sources:
- Download files directly from the official creator/distributor. Check that the URL of the site you’re downloading from matches the company or creator’s official website URL. If it doesn’t, ask the company or creator directly if the site you’re looking at is a licensed distributor.
- Look for «HTTPS://» in front of the URL. This tells you that data sent to and from the website is encrypted. This makes it harder for malicious third parties to intercept your information and use it to target you with malware or scams.
- Research the website you’re considering downloading from. Sometimes the company (or creator) is itself the problem, attaching malware to software that seems legitimate. Look for reviews — or even Google “(company name) malware” — to determine whether the website you’re considering downloading a file from is engaged in shady practices.
Most of all, pay close attention to any pop-up warnings you receive from your antivirus software. These notifications can help you avoid downloading harmful software that passed your initial checks.
Be careful about who you let use your computer
You can take all of the precautions you want, but they won’t matter if someone else downloads a virus onto your computer. This is why many experts recommend not letting anyone else use your device at all — and making sure you use a strong password to prevent untrustworthy people from accessing your computer.
Sometimes, however, you might need to let someone else use your computer for a short period of time. You might even have a shared family computer. However, you can still protect yourself by creating separate accounts for other people who frequently use your computer. Both MacOS and Windows let you customize permissions for these accounts, so you can prevent them from downloading programs or otherwise modifying your computer without your express permission/login.
Protect your kids
Kids can be extremely vulnerable to digital malpractice, and if they’re using your computer, this may make your computer vulnerable, too. However, there are ways to make your kids safer online — and protect your computer (or other devices they use) in the process: using parental controls, educating your kids about online safety and paying attention to their online activity.
Use parental controls. Tools like Microsoft Family Safety and Mac Parental Controls let you create content filters to prevent your kids from viewing unsafe websites or other digital content. You can also set screen time limits and limit time spent on certain apps — or even block apps entirely. Some antivirus software, like Norton, provides even more granular control.
Educate your kids about online safety. Explain what viruses are and why it’s important to protect your computer from them. Show your kids how to identify untrustworthy links, emails and other content. While you’re at it, go through some resources like Be Internet Awesome with your kids to give them a more robust understanding of online safety.
Pay attention to what your kids are doing online. You don’t need to watch their every move — and you probably shouldn’t, if you want your kids to feel trusted — but you should be aware of their general activities. Ask what their favorite websites are, what they’ve done online recently and who they’re interacting with. Encourage safe activities and gently discourage potentially unsafe activities, creating an environment where they feel safe to come to you if they’ve accidentally downloaded a virus or otherwise gotten into trouble online.
Final thoughts on how to protect your computer from threats
Viruses can do enormous damage to your computer and, if you rely on your computer for work or important personal projects, your life. Other cyberattacks, like phishing scams, pose significant threats. It’s important to take steps to protect your computer (and yourself), from making sure you have high-quality antivirus software to educating yourself and your kids about online threats. These tools and strategies can keep you safe from many online threats.
However, with new viruses evolving every day — and countless other issues that can impact your computer — it’s also important to prepare for things to go wrong by backing up your data. I recommend backing up your most important files with both a cloud storage program and an external hard drive for maximum security. Most importantly, remember to update these backups on a regular basis — at least once a week if you’re updating files regularly.