Stay Safe Online
Actionable AI prompts designed to help you enhance your personal cybersecurity
This blog provides actionable AI prompts designed to help you enhance your personal cybersecurity. As digital threats continue to evolve, protecting your online presence is no longer optional, it's essential. These prompts will assist you in building strong digital defenses, recognizing common cyber threats, establishing secure practices, and maintaining vigilance in an ever-changing digital landscape.
The prompts are organized into distinct categories covering all aspects of personal cybersecurity, from password management and device security to social engineering awareness and ongoing protection strategies. Each prompt is crafted to help you harness the power of AI to strengthen your cybersecurity posture through practical, implementable actions.
CATEGORIES
Password Security and Authentication
Password Manager Recommendation
1. Act as a cybersecurity expert. Based on my needs as [describe your digital lifestyle: frequent traveler/family use/business professional/etc.], recommend the most suitable password manager. Compare at least 3 options, highlighting their strengths, weaknesses, costs, and unique features. Include specific setup instructions for the recommended option and explain how to import existing passwords from my browsers. I currently use [list browsers you use].
Creating a Strong Master Password
2. Act as a password security specialist. Help me create a strong, memorable master password for my password manager using the diceware method or song lyrics method. My interests include [list some interests or favorite music/books/etc.]. Explain why your suggested approach is secure while remaining memorable for me personally.
Two-Factor Authentication Implementation Plan
3. Act as a security consultant. Create a prioritized implementation plan for setting up two-factor authentication across my digital accounts. Start with these high-priority accounts: [list your most important accounts like email, banking, cloud storage]. For each account type, provide specific step-by-step instructions for enabling 2FA, recommending authenticator apps over SMS where possible. Also, explain how to safely store backup codes.
Security Key Selection Guide
4. Act as a hardware security specialist. I want to invest in hardware security keys for maximum protection. Based on my usage patterns [describe how and where you use your devices], recommend specific security key models that would work best for me. Include compatibility information with my devices [list your devices], setup instructions, and what to do if I lose a key.
Password Audit Plan
5. Act as a security auditor. Create a methodical plan for me to audit all my existing passwords. Include how to identify weak passwords, those that have been compromised in breaches, and accounts using duplicate passwords. Provide a template for tracking my progress and prioritizing which passwords to change first based on account sensitivity. My main online accounts include [list types of accounts you have].
Device Protection
Device Security Checklist
6. Act as a device security specialist. Create a comprehensive security checklist for all my devices, which include [list your devices: smartphones, laptops, tablets, etc.]. For each device type, include settings to check, features to enable/disable, and built-in security tools to configure. Organize this by priority so I can implement the most important protections first.
Automating Security Updates
7. Act as a systems administrator. Help me set up automated security updates for all my devices and software. For each of my operating systems [list your operating systems: Windows/macOS/iOS/Android/etc.], provide instructions for enabling automatic updates, setting "active hours" to prevent disruption, and configuring notification preferences. Also include recommendations for keeping applications and firmware updated.
Disk Encryption Setup
8. Act as an encryption specialist. Provide step-by-step instructions for enabling full disk encryption on all my devices [list your devices and operating systems]. Include any performance considerations, recovery options if I forget passwords, and explain how to verify encryption is working properly. Also advise on any external drives that should be encrypted.
Antivirus and Anti-malware Configuration
9. Act as a malware protection expert. Based on my computing environment [describe your devices and how you use them], recommend the most appropriate antivirus/anti-malware solutions. Include both free and paid options, explaining when paid solutions provide value. Provide configuration guidelines for optimal protection without excessive performance impact.
Browser Security Optimization
10. Act as a browser security expert. Help me optimize security settings and extensions for my browsers [list browsers you use]. Recommend essential security extensions, privacy settings to enable, and features to disable for maximum security. Include instructions for clearing cached data and securing saved passwords until I transition to a dedicated password manager.
Recognizing and Responding to Phishing Attempts
Phishing Email Analysis
11. Act as a cybersecurity analyst. Analyze this suspicious email I received to determine if it's legitimate or a phishing attempt. I'll paste the full email including headers below. Highlight all suspicious elements, explain why they're concerning, and recommend appropriate actions I should take: [paste the full email content including headers].
Creating a Phishing Recognition Guide
12. Act as a security awareness trainer. Create a comprehensive guide to help me recognize phishing attempts across different channels (email, SMS, social media, phone calls). Include visual cues to watch for, psychological tactics used by attackers, and example scenarios. Make this guide practical enough that I could share it with [family members/colleagues] who have varying levels of technical expertise.
Hover-and-Verify Training
13. Act as a phishing prevention specialist. Develop a practical training exercise that will help me build the habit of hovering over links before clicking. Include examples of deceptive URLs versus legitimate ones, explain what to look for in the destination URL, and provide tips for mobile devices where hovering isn't possible. Give me 5 practice examples to test my ability to identify suspicious links.
Social Media Scam Identification
14. Act as a social media security expert. Create a guide to help me identify and avoid common scams on platforms I use [list social media platforms you use]. Include examples of giveaway scams, romance scams, marketplace fraud, and emerging threats specific to each platform. Provide specific verification steps I should take before engaging with suspicious content.
Suspicious Message Response Protocol
15. Act as a security incident responder. Develop a step-by-step protocol for how I should respond when I receive a suspicious message claiming to be from [common services you use: bank/workplace/government agency/etc.]. Include verification methods that don't involve clicking links or calling numbers provided in the message, and guidelines for reporting phishing attempts to the appropriate authorities.
Data Backup and Recovery
3-2-1 Backup Strategy Implementation
16. Act as a data protection consultant. Design a comprehensive 3-2-1 backup strategy for my digital assets based on my needs. I need to protect [describe what you need to back up: family photos, financial documents, work files, etc.]. Compare cloud backup options, local storage solutions, and recommend specific tools and services. Include a setup guide and schedule for maintaining this system.
Backup Verification Protocol
17. Act as a business continuity specialist. Create a verification protocol to ensure my backups are working correctly. Include monthly test restoration procedures, how to verify file integrity, and a checklist to ensure all critical data is included in backups. Provide a template for logging test results and setting reminders for regular verification.
Ransomware-Resistant Backup Design
18. Act as a ransomware defense expert. Design a backup system specifically resistant to ransomware attacks. Explain air-gapped storage options, versioning capabilities, and immutable backup configurations. Recommend specific solutions that balance security with usability for someone with my technical background [describe your comfort level with technology].
Cloud Storage Security Configuration
19. Act as a cloud security architect. Provide a security hardening guide for my cloud storage accounts [list services you use: Google Drive, Dropbox, OneDrive, etc.]. Include settings to review, security features to enable, sharing permissions to audit, and best practices for organizing sensitive versus non-sensitive data.
Digital Estate Planning
20. Act as a digital legacy planner. Help me create a secure digital estate plan that would allow trusted individuals to access my important accounts and data if I'm incapacitated. Include secure methods for storing and sharing credentials, legal considerations, and specific instructions for different types of accounts. Balance security with practical accessibility for my designated representatives.
Network Security
Home Router Security Hardening
21. Act as a network security specialist. Create a step-by-step guide for securing my home router, which is a [provide router model if known]. Include instructions for changing default credentials, updating firmware, configuring encryption settings, disabling unnecessary features, creating guest networks, and implementing access controls. Explain each recommendation in terms a non-technical person can understand.
VPN Selection and Configuration
22. Act as a privacy consultant. Based on my needs [describe your internet usage patterns and privacy concerns], recommend the most appropriate VPN service. Compare at least 3 options based on security features, privacy policies, performance, cost, and device compatibility. Provide setup instructions for all my devices [list your devices] and guidelines for when VPN use is most critical.
Public Wi-Fi Safety Protocol
23. Act as a mobile security expert. Develop a comprehensive safety protocol for when I must use public Wi-Fi networks. Include pre-connection precautions, settings to change before connecting, activities to avoid, protective measures to take during the session, and post-connection security checks. Provide alternatives to public Wi-Fi where possible.
IoT Network Segregation
24. Act as a network architect. Design a segregated network setup for my smart home devices to isolate them from my main network containing sensitive data. I have the following IoT devices [list your smart home devices] and network equipment [list your router/access points]. Provide detailed instructions for creating and maintaining this segregation with my specific equipment.
Wi-Fi Security Audit
25. Act as a wireless security auditor. Create a comprehensive audit checklist for assessing the security of my home wireless network. Include checks for encryption standards, password strength, guest network configuration, connected devices inventory, firmware status, and potential vulnerabilities. Provide remediation steps for any issues identified.
Social Engineering Defense
Social Engineering Scenario Training
26. Act as a security awareness trainer. Create 5 realistic social engineering scenarios I might encounter based on my profile [describe your job, online activities, or demographics]. For each scenario, describe how the attack might unfold, psychological tactics used, warning signs to watch for, and appropriate responses. Make these engaging and educational.
Building a "Pause-Question-Verify" Habit
27. Act as a behavioral psychologist specializing in security habits. Design a practical training program to help me develop the "pause-question-verify" habit when dealing with unexpected requests. Include daily exercises, mental triggers, self-talk scripts, and methods to overcome urgency pressure. Tailor this to my specific vulnerabilities [describe situations where you tend to act quickly without verification].
Authority and Urgency Resistance Techniques
28. Act as a social engineering defense expert. Develop specific techniques to help me resist manipulation through authority figures and artificial urgency - two common tactics in social engineering. Include psychological preparation, verification procedures, and response scripts for scenarios involving [mention authority figures relevant to you: boss, bank, government agencies, etc.].
Digital Footprint Assessment
29. Act as a privacy investigator. Create a methodology for me to assess what information about me is publicly available that could be used in targeted social engineering attacks. Include search techniques, platforms to check, information types to look for, and remediation steps for oversharing. Focus especially on professional networks, social media, and data broker sites.
Family/Team Security Communication Plan
30. Act as an organizational security consultant. Develop a communication plan and verification system for my [family/team] to prevent impersonation attacks. Include out-of-band verification methods, emergency authentication questions, code words, and protocols for handling unexpected urgent requests from each other. This system should be simple enough for [describe the least technical member of your group] to use.
Smart Home and IoT Security
Smart Home Security Assessment
31. Act as an IoT security specialist. Create a comprehensive security assessment for my smart home setup, which includes [list your smart home devices]. Evaluate each device type for common vulnerabilities, privacy concerns, and security best practices. Prioritize recommendations based on risk level and provide specific steps for securing each device.
IoT Update Management System
32. Act as a systems administrator for smart homes. Design a manageable system for tracking firmware updates across all my IoT devices [list devices if possible]. Include methods for checking update availability, scheduling regular update sessions, documenting update history, and handling devices with poor update support. Make this system practical for a non-technical user to maintain.
Voice Assistant Security Configuration
33. Act as a voice technology security expert. Provide a security hardening guide for my voice assistants [list which you use: Amazon Alexa, Google Assistant, Apple Siri, etc.]. Include privacy settings to review, features to disable for security, voice purchase controls, third-party skill/app review, and physical security considerations for these devices.
Smart Home Privacy Zoning
34. Act as a privacy architect. Help me create "privacy zones" in my home where smart devices with microphones and cameras are limited or configured for maximum privacy. Consider my home layout [briefly describe your living space] and needs for using these technologies. Provide a visual mapping concept and device-specific settings to implement this zoning approach.
Connected Device Inventory and Risk Assessment
35. Act as an asset management specialist. Create a template for inventorying all my connected devices, assessing their risk level, and documenting security information. Include fields for tracking device names, IP addresses, manufacturer, update capability, known vulnerabilities, and security feature status. Provide an initial risk rating methodology that considers device function, data access, and update support.
Developing Security Habits
Daily Security Routine Development
36. Act as a security habits coach. Design a 5-minute daily security routine that integrates with my existing habits. My typical day includes [briefly describe your daily routine]. Identify specific trigger points where security checks could be naturally incorporated, and create a simple checklist that evolves over 30 days from basic to more comprehensive protections.
Weekly Security Maintenance Schedule
37. Act as a personal security administrator. Create a 15-minute weekly security maintenance schedule customized to my technology ecosystem [list your main devices and services]. Include specific tasks to perform each week, a rotation system for deeper checks of different systems, and a simple tracking method to ensure nothing is missed over time.
Monthly Security Audit Framework
38. Act as a security compliance officer. Develop a monthly mini-audit framework that helps me comprehensively review my security posture. Include account security reviews, unusual activity checks, permission audits, backup verification, and emerging threat awareness. Create a simple scoring system to track my progress over time.
Family/Team Security Role Assignment
39. Act as an organizational security manager. Design a role-based security responsibility system for my [family/household/small team] to distribute cybersecurity tasks. Based on our composition [describe members and their technical abilities], suggest specific roles (like "Update Manager" or "Backup Verifier"), responsibilities for each role, and a rotation schedule that plays to individual strengths while building group resilience.
Security Habit Tracking System
40. Act as a behavioral analyst. Create a habit tracking system specifically for cybersecurity behaviors. Include measurable security actions, a progression path from beginner to advanced practices, positive reinforcement mechanisms, and methods to identify and overcome common points of failure in security routines. Make this system engaging enough to maintain long-term participation.
Staying Current with Cybersecurity Trends
Personal Cybersecurity Learning Plan
41. Act as a cybersecurity educator. Develop a 6-month learning plan to help me stay current on cybersecurity threats and protections relevant to personal users. Include recommended resources (podcasts, newsletters, websites, courses) that match my technical level [describe your technical background], time commitment of no more than [specify time available] per week, and a progression that builds knowledge systematically rather than causing information overload.
Emerging Threat Briefing
42. Act as a threat intelligence analyst. Provide a concise briefing on the most significant emerging cybersecurity threats that could affect personal users within the next 6-12 months. Focus on practical implications rather than technical details, and include specific protective measures I should consider implementing now to prepare for these threats.
Security News Interpretation
43. Act as a cybersecurity journalist. Analyze this recent security news headline that concerns me: [paste headline or article]. Explain the real implications for average users like me, separate hype from genuine concern, and provide specific actions I should consider in response. Include context about how this fits into broader security trends.
Technical Security Concept Translation
44. Act as a technical interpreter. Explain this cybersecurity concept I've encountered in simple terms: [paste concept or term]. Provide real-world analogies that make it understandable to a non-technical person, explain why it matters to my personal security, and offer practical ways I might apply or respond to this concept in my digital life.
Security Tool Evaluation
45. Act as a consumer technology reviewer. Evaluate this security tool/service I'm considering: [name of tool]. Provide an objective assessment of its effectiveness, usability for someone with my technical background [describe your comfort with technology], value compared to alternatives, reputation in the security community, and appropriate use cases. Help me determine if this is a worthwhile addition to my security setup.
Responding to Security Incidents
Account Compromise Response Plan
46. Act as a security incident responder. Create a step-by-step response plan for if I suspect my [email/social media/financial] account has been compromised. Include immediate containment actions, evidence preservation steps, recovery procedures, verification methods to ensure complete remediation, and preventive measures to implement afterward. Make this detailed enough that I could follow it while under stress.
Ransomware Response Protocol
47. Act as a ransomware specialist. Develop a comprehensive response protocol for if my personal devices are infected with ransomware. Include containment steps, identification procedures, options for recovery with and without paying ransom, reporting guidelines, and a restoration prioritization framework. Consider that I have the following backup systems in place: [describe your current backup situation].
Identity Theft Recovery Roadmap
48. Act as an identity theft recovery expert. Create a detailed roadmap for recovering from identity theft, including financial accounts, government IDs, and online presence. Include agency contacts, documentation requirements, timeline expectations, monitoring recommendations, and template letters/forms for different scenarios. Organize this by priority of what to address first.
Device Loss/Theft Response
49. Act as a mobile security consultant. Develop an action plan for if my [smartphone/laptop/tablet] is lost or stolen. Include immediate steps to protect accounts and data, remote location/locking/wiping instructions for my specific device models [list your devices], law enforcement reporting guidance, and a recovery checklist for when setting up a replacement device securely.
Family Security Incident Communication Template
50. Act as a family communication specialist. Create templates for effectively communicating about security incidents within my family. Include scenarios like suspected account compromise, device infection, identity theft concerns, and emerging threats. Design these templates to be clear, actionable, and appropriate for family members with varying technical understanding [describe your family members' range of technical knowledge].
Implementation Strategy
To effectively implement these prompts and strengthen your cybersecurity posture, follow this strategic approach:
1. Assessment and Prioritization
Begin by conducting a personal cybersecurity assessment:
● Identify your most valuable digital assets (financial accounts, personal data, work information)
● Evaluate your current security measures
● Determine your most significant vulnerabilities
Use this assessment to prioritize which prompts to implement first. Start with those that address your highest-risk areas:
● Password and authentication security (Prompts 1-5)
● Basic device protection (Prompts 6-10)
● Phishing awareness (Prompts 11-15)
2. Staged Implementation
Implement your cybersecurity improvements in manageable stages:
First 48 Hours (Foundation)
● Set up a password manager and secure your most critical accounts
● Enable automatic updates on all devices
● Configure basic backup for essential data
First Week (Core Protection)
● Complete device security checklists for all devices
● Implement two-factor authentication on priority accounts
● Establish your daily security quick-check routine
First Month (Comprehensive Shield)
● Develop and test your 3-2-1 backup strategy
● Secure your home network
● Create family/team security protocols
● Implement your weekly and monthly security routines
Ongoing (Maintenance and Evolution)
● Follow your security habit tracking system
● Stay current with emerging threats
● Periodically review and update your security measures
3. AI Assistant Utilization Strategies
To get the most value from these prompts when working with an AI assistant:
Provide Specific Context
● Always include details about your specific devices, services, and technical comfort level
● Share your actual usage patterns and priorities
● Be honest about your willingness to implement different security measures
Iterate for Clarity
● If an AI response is too technical, ask for simpler explanations
● If recommendations seem too general, ask for more specific guidance for your situation
● Request examples that relate directly to your circumstances
Documentation and Implementation
● Ask the AI to format complex instructions as checklists you can follow
● Request that technical procedures be broken down into smaller steps
● Have the AI help you create templates for tracking your security improvements
Learning Support
● Use the AI to explain unfamiliar security concepts in terms you understand
● Ask for analogies that relate cybersecurity to familiar real-world concepts
● Request summaries of key points after detailed explanations
4. Measuring Progress
Track your cybersecurity improvement journey:
● Use the Security Habit Tracking System (Prompt 40) to monitor your progress
● Conduct monthly self-assessments using the Monthly Security Audit Framework (Prompt 38)
● Document improvements and remaining gaps
● Celebrate security wins, no matter how small
Remember that cybersecurity is not a destination but an ongoing process. These prompts are designed to help you build a sustainable security practice that evolves with both the threat landscape and your personal digital life. Start with small, high-impact changes, then gradually implement more comprehensive protections as your confidence and capabilities grow.
By systematically working through these prompts with an AI assistant, you'll develop not just stronger technical defenses but also the security awareness and habits that form your most powerful protection against digital threats.
Hope this is helpful.
~ Felix


