🚨 You Left Your Screen Unlocked. 🚨

This page has been open since ..., for a total of 0 seconds.

This is the ... time this computer has been found unlocked, for a total of ....

In that time, here's a glimpse of what a malicious actor could have done on your computer:

hacker@your-computer:~$

Why This Is a Big Deal

Leaving your computer unlocked is like leaving the front door of your house wide open. An unattended, logged-in session is a goldmine for anyone with malicious intent. In just a few moments, someone could:

Send emails from your account to your colleagues or friends.
Access your saved passwords in your browser.
Install malware, spyware, or a keylogger.
Copy sensitive personal or company files to a USB drive.
Post inappropriate content on your social media accounts.

The consequences range from personal embarrassment to serious data breaches for your employer. The good news is that preventing this is simple.

How to Lock Your Screen

Locking your screen is quick and should be a habit every time you step away. Here are the keyboard shortcuts for major operating systems:

Windows

Press Windows Key + L

macOS

Press Control + Command + Q

Linux

Press Super Key + L

(The Super Key is usually the Windows key. This shortcut is common on environments like GNOME/Ubuntu. Others may use Ctrl+Alt+L.)

Real-World Consequences

These scenarios are not just theoretical. Unlocked screens have led to significant real-world security breaches, embarrassment, and financial loss. Here are a few examples of what can happen:

Healthcare Data Breach: The HIPAA Security Rule requires healthcare providers to implement technical safeguards to protect patient data, including access controls for workstations. As seen in numerous multi-million dollar settlements, failure to secure systems—the most basic of which is locking a screen—can lead to massive fines and legal action.
Business Email Compromise (BEC): The FBI identifies BEC as a multi-billion dollar scam where criminals gain access to a corporate email account to impersonate employees and request fraudulent payments. An unlocked, unattended computer is a perfect opportunity for an attacker to execute such a scam from a trusted account.
Insider Threat & Data Sabotage: The U.S. Cybersecurity & Infrastructure Security Agency (CISA) defines an insider threat as the risk an insider will use their authorized access to do harm. An unlocked screen grants any passerby the full authorized access of the logged-in user, making it trivial to steal data, install malware, or sabotage company systems.

These incidents highlight how a simple habit—locking your screen—is one of the most effective security measures you can take.

Play the Game, Spread the Lesson

Found a coworker's or friend's computer unlocked? You can teach them this important lesson in a harmless and memorable way. It's simple:

Find an unlocked, unattended computer.
Open their web browser.
Go to youleftyourscreenunlocked.com
Walk away and let the page do the talking.

It's a friendly prank that reinforces a critical security habit. By "YLYSU-ing" your colleagues, you help make everyone, and the entire organization, more secure.