Fwiw,
-Hide your network SSID so no one ‘sees’ your network.
-Change the default name & password of your wifi router AND use a difficult password!
-Set up a firewall, like the one that comes built in from Microsoft with Windows Defender. Also, most routers these days have built in hardware firewalls. Or, use the one in your security software.
-If you desire more features than Windows Defender delivers, then consider a separate security software product. You can also use a freeware product, just know that they aren’t typically as fully featured. Read the reviews from reputable publications/organizations (see below) for help in your selection.
-I also use a separate VPN product which protects all of my networked devices anywhere I am. Including when connected to unsecured public networks (like say at Starbuck’s or a big box store). So, even if you managed to hack into my network, any data you might see is encrypted with a 256 bit algorithm, almost impossible to crack.
-The security software I use also has features specifically for protecting web cams, and other IOT devices.
Also, it sometimes matters what brand router you have. I use a Netgear Orbi mesh router which has specific features enabled only by certain software, which helped to dictate my selection.
Remember, no matter how malware/viruses get inside your network/devices, once it’s there it may be too late. Spend the money & lock it down, realizing that there is no real way to win. So, keep it all up to date regularly.
The best internet security suites for PCs, Macs and mobile devices
www.techradar.com