How cybersecurity works

The three promises →

Explain what security actually protects — that data stays secret, true, and available.

Proving who you are →

Explain how a system checks you are who you claim to be — the three factors.

Why passwords are the weak link →

Explain why most passwords fail, and what actually makes one strong.

Attackers don't break in — they log in →

Explain why most breaches use stolen trust, not cracked code.

The con, not the code →

Explain how attackers trick people, and the tells that give a lure away.

Malware, demystified →

Explain the main things malicious software does, and how it usually gets in.

Trusting the wrong line →

Explain how an attacker can sit between you and a site, and why that is dangerous.

Scrambling secrets →

Explain how encryption keeps data secret even when it is stolen.

The padlock in the address bar →

Explain how your browser checks it is really talking to the real site.

The second key →

Explain why a second factor stops most attacks even after a password leaks.

Layers and blast radius →

Explain why security is layers, and why limiting access contains a breach.

The patch race →

Explain why unpatched software is an open door, and why timing matters.

Capstone: reading a security claim →

Judge a security claim or message as Sound, Shaky, or Oversold.