Video coming soon
Physical Security Basics
Visual · physical_security_laptop
A laptop sitting alone on a cafe table, with its screen unlocked, displaying sensitive financial charts.
The Hardware Bypass
You can implement 20-character passwords, complex biometric systems, hardware MFA keys, and zero-trust VPN networks. But if an attacker can physically pick up your unlocked laptop and walk out the door, every single digital defense you built is instantly rendered completely useless. Physical security is the foundation of digital security.
1. The Unattended Screen
Leaving a device unlocked while grabbing a coffee or going to the restroom takes exactly 15 seconds. It takes an attacker exactly 10 seconds to sit down, plug a malicious "Rubber Ducky" USB drive into your laptop, and inject a script that opens a permanent backdoor into your machine. Rule #1: Build muscle memory. Windows Key + L (or Cmd + Ctrl + Q on Mac) to lock your screen every single time you stand up, even if you are just turning around.
2. Shoulder Surfing
Not all hackers write code. "Shoulder Surfing" is the act of simply observing someone type their password or reading sensitive data off their screen in a public place, like an airplane or a cafe. Applying a physical "Privacy Filter" screen protector to your laptop makes the screen look completely black to anyone sitting beside you.
Pro-Tip: Full Disk Encryption (FDE)
If your laptop is stolen out of your car, the thief can simply remove the hard drive, plug it into their own computer, and bypass your Windows/Mac login password entirely. You must enable Full Disk Encryption (BitLocker for Windows, FileVault for Mac). FDE ensures that even if the physical drive is stolen, the data remains scrambled and unreadable without your master password.
Knowledge Check
What built-in operating system feature prevents a thief from removing your laptop's hard drive and reading the files directly from another computer?\n\nA) An Antivirus scanner\nB) Full Disk Encryption (BitLocker / FileVault)\nC) A BIOS password