Cybersecurity for ages 11+ — the most important mission in the Academy

Lock down a network the same way professional security engineers do.

If a parent picks one mission to do alongside their child, this is the one. Tyler walks them through the OWASP Top 10, phishing, XSS, SQL injection, two-factor authentication, and what attackers actually look for. It is taught as a 30-minute story, not a checklist.

Difficulty: Advanced   Time: 30 min   Reward: 400 XP

What your child will learn

• Recognise a phishing email in five seconds
• Understand what XSS and SQL injection actually do (and why they still happen)
• Set up two-factor authentication and understand why it matters
• Think like an attacker for ten minutes — then like a defender for the rest of life
• Know which security advice on the internet is real and which is panic

What parents should know

• Age: 11+ (we strongly recommend doing this one alongside your child)
• Time: About 30 minutes
• Difficulty: Advanced
• Prerequisites: Helpful but not required: Network Packets first.
• Safety: All attack scenarios are simulated and educational. Tyler is a fixed character. We deliberately avoid showing dangerous techniques in copy-paste form.

Parent FAQ

Is it safe to teach a kid about hacking?

We teach defence, not offence. Every attack we describe, we also show how to prevent. We never teach a copy-pasteable exploit.

Will this scare them?

It is realistic but not horror. The tone is 'here is how to be safe', not 'be afraid'.

Is this enough security training for a teenager?

It's a strong foundation. We pair it with our parent blog post on cybersecurity habits by age 13.

Why is this the most important mission?

Because every other skill in the Academy assumes the player can keep their account, their data, and their family safe online. Security comes first.

Start Cybersecurity →

See all 12 missions