diff --git a/docs.wrm/concepts/security/index.wrm b/docs.wrm/concepts/security/index.wrm
index 3d1c2a431..5e5ee62aa 100644
--- a/docs.wrm/concepts/security/index.wrm
+++ b/docs.wrm/concepts/security/index.wrm
@@ -39,7 +39,7 @@ steal the funds from that account.
 There are also many debugging tools and systems designed to
 assist developers inspect the memory contents of JavaScript
 programs. In these cases, any //private key// or //mnemonic//
-siting in memory may be visible to other users on the system,
+sitting in memory may be visible to other users on the system,
 or malicious scripts.
 
 _heading: Timing Attack
@@ -67,7 +67,7 @@ or complex path was taken.
 
 Advanced timing attacks are very difficult to mitigate in any
 garbage-collection-based language. Most libraries where this
-matters will hopefully mitigated this for you as much as possible,
+matters will hopefully mitigate this for you as much as possible,
 but it is still good to be aware of.
 
 _heading: General Concerns
@@ -128,7 +128,7 @@ progress callback which will be periodically called with a number between
 In general a progress bar makes the experience feel faster, as well as
 more comfortable since there is a clear indication how much (relative) time
 is remaining. Additionally, using language like //"decrypting..."// in
-a progress bar makes a user feel like there time is not being //needlessly//
+a progress bar makes a user feel like their time is not being //needlessly//
 wasted.
 
 _heading: Work-Arounds (not recommended)