Securing your computer

Why? Anyone can find your router’s default password with a simple web search. If criminals get your router password, they can steal personal data, spy on your browsing activity, install malware, and use your internet connection for illegal activities. They can also lock you out of your own network, hijack your bandwidth to slow down your internet, and attack other devices connected to your Wi-Fi, such as laptops, phones, and smart home cameras. 

How do I change my router’s default password?

If you can’t log in, press the “Reset” button on the back of your router for 10-30 seconds to restore factory settings. Then log in using the default credentials to reset them following steps 4 and 5 listed above. Resetting your router in this manner will bypass firewall rules and delete all custom security settings. 

Connect your computer or smartphone to your router via WI-FI or Ethernet cable.

Open a web browser (Safari, Chrome, Firefox, etc.) and enter your router’s IP address in the address bar to access your Admin Panel.

How to find your router’s IP address

Log in by using the default username and password printed on a sticker on the back or bottom or your router.

Locate your security settings and navigate to “Wireless,” “Passphrase,” or “Pre-share Key,”  and enter a new, strong password (at least 16 characters long with a mix of letter, numbers, and symbols). 

Click the “Apply” or “Save” button which will disconnect your devices and then reconnect using the new password.

Once you’ve accessed your router’s IP Address view “Properties” and navigate to the section labeled “Wireless”, “Wi Fi,” or “Status” to find your security type. Look for WPA or Wi-Fi Protected Access. WPA is a security protocol that protects against unauthorized access by encrypting data and authenticating users. Use the most secure WPA available.

1. WPA3 Personal: The most secure, latest standard.
2. WPA2/WPA3 Transitional: A hybrid mode allowing both, which is secure and compatible.
3. WPA2 Personal (AES): Very common and secure for most homes.
4. Weak Security: If you see this warning, it means your router uses outdated WPA or WEP encryption and should be updated.

Most sites suggest every 3-5 years, but the key is to determine if your router is still supported or nearing its end of life. Search the manufacturer of your router (with the model and revision number listed on the bottom of your router). 

If it needs to be replaced, beware that the FCC has recently (April 2026) banned routers produced in foreign countries (FAQs on Recent Updates to FCC Covered List Regarding Routers Produced in Foreign Countries).

Why? Developers or others often discover vulnerabilities, or weaknesses, in a computer’s operating system (OS) or applications. These vulnerabilities provide hackers an opportunity to create malicious software (e.g., viruses, ransomware, bots, adware, worms, Trojans, etc.) that can infect your computer and steal your personal information. To counteract this, a security update (also called a “patch”) is created to fix these vulnerabilities in computer software code. So, it’s important to keep your OS and security patches up to date. Simply running an antivirus program is not enough.

How do I keep my computer updated?

It’s easy to configure your computer to automatically download and install security updates so that you don’t have to remember to do it manually. In most cases, the updates will install in the background, and you will not be asked to download and install anything. Once set up, it should be easy to ignore those fake updates or pop-up notifications generated by hackers.

Windows: Get Windows updates as soon as they are available
Mac: Keep your Mac up to date

A firewall is software that runs directly on a computer and protects it against attack from the network by controlling incoming and/or outgoing network traffic. Most operating systems have built-in firewalls, but you need to make sure they are turned on.

Windows: Firewall and Network Protection in the Windows Security App
Mac: Block connections to your Mac with a firewall

Install only one antivirus program on your computer. Having multiple antivirus programs on one computer can cause conflicts.

Always uninstall the antivirus software that came on your computer before installing the University’s recommended antivirus (uninstalling your antivirus software on your Windows PC will automatically enable Windows Defender).

Faculty or staff:

• For personal Windows devices: UW–Madison recommends you use Windows Defender. Windows Defender is a built-in antivirus app which is automatically installed on Windows devices.
• For personal macOS devices: Use Trend Micro 

Students or emeritus:

• For personal Windows devices: UW–Madison recommends you use Windows Defender. Windows Defender is a built-in antivirus app which is automatically installed on Windows devices.
• For personal macOS devices: Use freely available antivirus software

What do I need to do?

• Check if Windows Defender is enabled at Windows Defender – Enabling Antivirus Threat Protection & Windows Firewall 
• Get instructions for Trend Micro – Installing Trend Micro AV on Your Personally Owned macOS Device 
• Install only one antivirus program on your computer. Having multiple antivirus programs on one computer can cause conflicts.
• Always uninstall the antivirus software that came on your computer before installing the University’s recommended antivirus (uninstalling your antivirus software on your Windows PC will automatically enable Windows Defender).

Passwords are like passports or a blank check; if lost or stolen, they give hackers a world of opportunity by providing access to your personal, financial or work data. The campus IT Credentials Policy and Password Standard FAQs helps you select strong passwords and manage them so you can protect your identity and University resources. Once you’ve read and understood the policy, update any campus passwords that do not meet the standards. If needed, go to change your NetID password  .

To help manage your passwords securely, consider using a password manager. Learn more about a free one available to campus members at Password Manager – 1Password

A few don’ts

• Never share your password or multi-factor authentication credentials with anyone, not your boss, not your family, not your co-workers. Doing so is against UW System Acceptable Use of Information Technology Resources Policy and violating it could result in suspension or criminal prosecution.
• Never use your NetID password on any other website. If you have done so, immediately change your NetID password
• Don’t reveal a password in an email message.
• Don’t talk about a password in front of others.
• Don’t hint at the format of a password (e.g., “my family name”).
• Don’t reveal a password on questionnaires or security forms.
• Avoid writing passwords down, but if you must, store them in a secure place (e.g., a locked file cabinet).
• Passwords should never be stored unencrypted online.
• Do not use the “Remember Password” feature of applications (e.g., Firefox, Chrome, Safari, etc.).
• Don’t use the default password if one is provided (hackers can locate a default password easily). Change it immediately to a new, stronger password.
• Don’t reuse old passwords. NetID passwords cannot be reused within a 12-month period, and passwords cannot be changed to any of the previous three passwords.

Many personal accounts (such as financial institutions, credit cards, social media, shopping sites, etc.) offer the option of using multi-factor authentication (MFA) to help prevent hackers from getting into your account. MFA-Duo, which is required to use on campus, can also be used for adding your personal accounts. Enabling MFA on your accounts adds another unique layer of protection. A person trying to break into your account would need your user name, password, AND one of your devices/fob in their possession.

WiscVPN software encrypts internet traffic between a home/remote personal or work computer and the campus network, allowing you to use the internet securely on open networks. It’s offered free to UW–Madison faculty, staff, and students. Learn about WiscVPN GlobalProtect (All OS) – Installing, Connecting, and Uninstalling.

If you download a dangerous extension, you could inadvertently download malware, adware, and viruses.

What should you look for before downloading an extension?

1. Check out the developers website to see if it’s a legitimate extension and not a different version offered by an unvetted source.
2. Read the description of the extension. Watch for things that may be questionable, like tracking or data sharing.
3. Read the reviews. Look for complaints of unusual glitches, or folks speculating that their data is being taken, or for any thing that strikes you as odd.
4. Be picky and only download extensions that come from a trusted source and offer useful benefits.

Firefox users: click the three horizontal bars next to the address bar, then “Add-ons,” then “Extensions.”

Google Chrome users: click the three dots to the right of the address bar, selecting “More tools,” then “Extensions.”

Microsoft Edge users: click the gear menu at the top-right corner and select Manage add-ons. Browser plug-ins are displayed under the Toolbars and Extensions category, along with any browser toolbars and other types of ActiveX add-ons installed.

Safari users: click Preferences, then on the Extensions tab. All extensions enabled will have a check mark in the box to the left of the icon in the sidebar.

Many personal accounts (such as financial institutions, credit cards, social media, shopping sites, etc.) offer notifications to help track the actions on your accounts. For example, you can set up notifications for actions such as purchases made with your credit card, account balance, minimum payment due, payment posted, password updated, user ID updated, etc. These notifications alert you to activities on your account and help to alert you to fraudulent activities.

You can also use computer notifications for account protection here’s how:

Windows: Notifications and Do Not Disturb in Windows
Mac: Change Notifications preferences on Mac

Computer backup is a process that copies all your files, data, and information to create another version. Backups protect against human errors, hardware failure, virus attacks, power failure, and natural disasters. Backups can help save time and money if these failures occur.

Find out how at Computing at UW – backing up your personal data