#1 Cybersecurity Expert Reveals: 5 Ways to Protect Yourself Online (Starting Tonight)

Summary of #1 Cybersecurity Expert Reveals: 5 Ways to Protect Yourself Online (Starting Tonight)

by Mel Robbins

1h 19mFebruary 19, 2026
Listen to Episode

Overview of Mel Robbins Podcast — #1 Cybersecurity Expert Reveals: 5 Ways to Protect Yourself Online (Starting Tonight)

Episode summary: Mel Robbins interviews award‑winning cybersecurity expert Caitlin Sarian (aka “Cybersecurity Girl”). Caitlin breaks down why everyday people — not just tech teams — are easy targets, how scammers use publicly available data and modern tools (including AI), common scams (Venmo, phone phishing, camera hacks, etc.), and five simple, high‑impact actions you can take tonight to protect yourself, your kids and aging relatives.

Guest credentials: Caitlin Sarian — 10+ years in cybersecurity consulting (EY, TikTok), global cybersecurity awareness lead, educator and consultant on data/privacy/compliance.

Key takeaways

  • Cybercrime is massive and growing — Caitlin describes it as one of the largest “economies.” It’s not a question of if but when someone will be targeted.
  • Most people were never taught digital hygiene. Small, repeatable routines can block ~95% of common threats.
  • Scammers increasingly leverage open‑source information (OSINT) and AI to build convincing attacks in seconds.
  • You don’t need to be a tech expert — practical, simple steps (passwords, updates, MFA, data minimization) make a huge difference.

The five things to do tonight (Caitlin’s core checklist)

These five actions are the most impactful immediate steps.

  1. Passwords: identify your key accounts and give each a strong, unique password

    • Use a long passphrase or a password manager (1Password, LastPass, Keeper, or built‑in iPhone password manager).
    • Stop reusing a “base” password with small variations.

  2. Enable automatic software updates

    • Updates often patch security vulnerabilities. Turn on auto‑updates for OS and apps.

  3. Freeze your credit

    • Contact each of the three major credit bureaus (Equifax, Experian, TransUnion) and freeze your file — fast and effective against identity theft.

  4. Take nine seconds before you click any link

    • Pause, inspect sender address/URL, hover to preview links, and call organizations directly if unsure (don’t click links in unexpected emails/texts).

  5. Limit the amount of personal data available online

    • Use alternate identities for signups (aliases, secondary emails, Google Voice numbers), remove personal data from people‑search sites or use a deletion service like Incogni, and audit app privacy settings.

Practical, specific tips & why they matter

  • Multi‑factor authentication (MFA): enable it for banks, email, social media. Prefer authenticator apps over SMS when possible.
  • Venmo / payment scams: scammer sends you money from a stolen card then asks you to return it — charge is reversed and you’re out the money. Avoid sending refunds; contact the platform or bank.
  • Public Wi‑Fi: avoid banking or sensitive tasks on untrusted Wi‑Fi. Use phone tethering or a reputable VPN if needed.
  • Juice‑jacking: don’t plug your phone into random USB chargers (hotel/airport USB outlets). Use wall outlets or your own charger.
  • Don’t save passwords in Notes or unsecured browser storage: use a password manager and/or lock notes with a passcode/biometric lock.
  • Camera & mic protection: cover laptop cameras when not in use; check smart doorbell/baby camera passwords and networks. Many cameras on open networks are discoverable.
  • Voicemail & unknown calls: don’t answer unknown calls. Keep voicemail without your name/greeting to avoid voice authentication abuse.
  • Don’t post real‑time vacation updates: delay public posts until after you return to reduce burglary and social engineering risks.
  • Incognito ≠ anonymous: private browsing hides history locally but doesn’t hide your activity from sites or network observers.

Protecting family (kids and seniors)

  • Seniors:
    • Freeze credit on their accounts.
    • Set strong unique passwords on financial/retirement accounts and enable MFA directed to a trusted caretaker’s device if needed.
    • Teach the “hang up and call” rule for suspicious calls; consider calling a fraud helpline together.
  • Kids/teens:
    • Use child/age‑appropriate account settings (YouTube/Instagram kids’ modes).
    • Set profiles to private, block messaging where possible, avoid Snapchat and fleeting‑message apps that encourage risky behavior.
    • Talk openly about scams, sextortion, and never sharing private photos. Consider a family “safe word” to verify identity in urgent money requests.

How to tell if you’ve been compromised — immediate checks

  • Check account activity/logins: Gmail “Last account activity,” WhatsApp desktop sessions, Instagram/other social apps show logged‑in locations/devices.
  • Banking alerts: if you receive odd card charges or micro‑charges, call the bank using the number from the back of the card (don’t click links in texts).
  • Lost/stolen phone: before loss, make settings harder for thieves (remove quick airplane toggle from control center). After loss, lock/wipe via Find My/Google Find My Device, change key passwords and alert banks.

Recommended tools & resources mentioned

  • Password managers: 1Password, LastPass, Keeper, built‑in iPhone password manager
  • Authenticator apps: (Google Authenticator, Authy, Microsoft Authenticator)
  • VPN: use a reputable VPN when necessary on public networks
  • De‑data services: Incogni (privacy/data deletion service)
  • Reporting/fraud resources: IC3.gov (Internet Crimes Complaint Center), bank fraud hotlines
  • Credit bureaus: Equifax, Experian, TransUnion (to freeze credit)

Notable quotes / soundbites

  • “If there’s any free product or app, you are the product.”
  • “Cybersecurity is protecting your digital footprint.”
  • “It’s not a matter of if, it’s a matter of when.”
  • “Take nine seconds before you click a link.”

Quick “Tonight” action checklist (time estimate)

  • Strong passwords + MFA on key accounts (30–60 minutes)
  • Turn on auto‑updates (2 minutes)
  • Freeze credit at the three bureaus (10–30 minutes)
  • Inspect app permissions (camera, mic, location) and limit where unnecessary (10–30 minutes)
  • Remove sensitive personal data from one people‑search site or try Incogni (15–60 minutes / or subscribe)

Final note — mindset & approach

  • Cybersecurity is a set of simple routines, not an advanced skillset. Treat it like hygiene: small habits repeated protect you over time.
  • Start with the five basics Caitlin recommends. Build routines (like auto‑updates and a password manager) and gradually audit privacy settings across apps and devices.

This summary gives the practical steps Caitlin emphasizes — do the five core actions tonight and share this episode with family members (parents, kids, partners) so they can adopt the same protections.