<a href="https://www.defensivecomputingchecklist.com/" rel="nofollow">https://www.defensivecomputingchecklist.com/</a><p>That's an exhaustive list and more than most people will read, but it's got some good content. Looking forward to someone replying with a simpler version that we can pass on to friends who type google into the chrome address bar.
<a href="https://cybersecureyourself.net" rel="nofollow">https://cybersecureyourself.net</a>
I helped make this one. Simple by design.<p>A longer one that I recommend (as well as EFF’s SSD): <a href="https://hackblossom.org/cybersecurity/" rel="nofollow">https://hackblossom.org/cybersecurity/</a>
I suggest starting here - its a short list of, hopefully, the most important things to keep in mind
<a href="https://www.defensivecomputingchecklist.com/rulesoftheroad.php" rel="nofollow">https://www.defensivecomputingchecklist.com/rulesoftheroad.p...</a>
<a href="https://securityplanner.consumerreports.org/" rel="nofollow">https://securityplanner.consumerreports.org/</a> I've seen this one posted on Twitter several times. The fact that you can choose the devices that you own/are interested in securing makes it stand out to me.
Phishing awareness is one thing.<p>When they check emails, they should always double check who is sending it. One common question I get asked - "Is this email legit?", where the email claims to be Microsoft, Google, etc. saying they _need_ to click this link to do X for their account.
Understanding the rules for Domain Names insures someone will not be fooled or scammed<p><a href="https://defensivecomputingchecklist.com/DomainNameRules.php" rel="nofollow">https://defensivecomputingchecklist.com/DomainNameRules.php</a>
Find out their preferred online communities & ask there. Those communities have already been (de facto) filtered for favored perspectives & styles, so by definition the tool / advice selection will be better for them.