Internet Security
Perhaps one of the best things about having a PC is the ability to access and share information. Much of this is made possible through the internet, and quite likely at some stage you will probably want to download something from the internet. This and other online activities place you and your computer at risk, what we will attempt to do here, is show you how to minimise that risk as much as possible. It must also be noted that there is no such thing as a 100% guarantee with internet security, in fact even 98% might perhaps be a generous figure. You must routinely use your security software to update and scan regularly, and excersize caution when openning emails or visiting suspect sites.
For Free Antivirus Software Click Here: AVG Free
For Free Antispyware Software Click Here: Spybot Search and Destroy
For Free Antispyware Software Click Here: Spybot Search and Destroy
The Three Rules of Internet Security !
There are three very important things you need and must use in order to help secure your computer. These are basic and essential items that require regular attention. Simply having anitivirus installed is not enough, for optimum protection, there is a little more!
1) A working Firewall that is updated regularly
2) Antivirus and Antispyware Software
3) Vigilence from the User....You!
Firewall
A firewall is not necessarily as the name implies, but its action however plays a vital role in keeping intruders and hackers out of your system. To maintain your online safety and security you need a mechanism that prevents external sources from invading your computer and accessing your files.
This is achieved via the use of a "Firewall", a firewall can be software or hardware or sometimes it is a combination of both. The firewall sits between your computer and the internet.
This is achieved via the use of a "Firewall", a firewall can be software or hardware or sometimes it is a combination of both. The firewall sits between your computer and the internet.
I often use the example of a cruise ship to better explain in layman terms what the firewall is and what it does. Let’s assume for a moment that your computer is a cruise ship with many rooms inside that accommodate many filing cabinets that then contain many files. As you know most cruise ships have many portholes or windows along the side of the ship. Now lets say that we wanted to pass a file from one of our filing cabinets to someone who is outside the ship, (the internet), and the only way we could do this was to open a window or one of those "ports" to accomplish this task.
And now let’s also assume that we need to open the same or another port to receive a file from someone or something that is also outside the ship, (as in downloading from the internet).
This is basically how your firewall works, it opens ports to allow information or data to enter your computer from the internet, every port serves a specific purpose, and for you to receive certain files you must open a certain port. Once the transaction of sending and receiving files via one of these ports is complete, the window or porthole is then closed so no other information can enter through that port. These ports are not physical entities but rather virtual highways that exist between your computer and the internet, therefore ports are software based.
The firewall is basically the traffic controller that handles who and what enters your computer, it opens and closes ports as required to service the needs of programs or applications running on the computer. A good example is email; Outlook Express sends email from port 25 and receives it from port 110. So if this was your ship these windows would be open at the time you send or receive email.
And now let’s also assume that we need to open the same or another port to receive a file from someone or something that is also outside the ship, (as in downloading from the internet).
This is basically how your firewall works, it opens ports to allow information or data to enter your computer from the internet, every port serves a specific purpose, and for you to receive certain files you must open a certain port. Once the transaction of sending and receiving files via one of these ports is complete, the window or porthole is then closed so no other information can enter through that port. These ports are not physical entities but rather virtual highways that exist between your computer and the internet, therefore ports are software based.
The firewall is basically the traffic controller that handles who and what enters your computer, it opens and closes ports as required to service the needs of programs or applications running on the computer. A good example is email; Outlook Express sends email from port 25 and receives it from port 110. So if this was your ship these windows would be open at the time you send or receive email.
Things like Email and web browsing all operate on different ports that are controlled through the firewall. Given the ship scenario, if you leave a port open for long enough and forget to close it, you run the risk of having someone cleverly entering through that port and then gaining access to your files. This opening and closing of ports is automatic and is operated by the firewall.
Hackers make use of these ports when they try and invade your computer to steal or exploit your personal information. Hackers also find new ways of opening ports without your firewall knowing about it, they use different tools and techniques to break in through these ports.
Imagine that you have locks on all of the portholes in the ship and only your firewall has the key for each lock, after a while hackers can replicate a key that will open each port, so to combat this you must keep changing the locks.
This is achieved by updating your firewall, as with the above example, when you update your firewall, you basically put new locks on your ports, especially on specific ports that are more vulnerable.
Hackers make use of these ports when they try and invade your computer to steal or exploit your personal information. Hackers also find new ways of opening ports without your firewall knowing about it, they use different tools and techniques to break in through these ports.
Imagine that you have locks on all of the portholes in the ship and only your firewall has the key for each lock, after a while hackers can replicate a key that will open each port, so to combat this you must keep changing the locks.
This is achieved by updating your firewall, as with the above example, when you update your firewall, you basically put new locks on your ports, especially on specific ports that are more vulnerable.
This then brings us to the question, "how do I update my firewall”? The answer lies in Updates. If you use Norton Antivirus Firewall or Zone Alarm or some other personal firewall software, you will need to update it for the best protection. As you probably guessed this article relates more specifically to those of us running Windows XP or XP Pro and those that use the Windows firewall. You can download and install updates from the Microsoft website by clicking the link below:
Windows Updates
You will need to read and follow the install instructions carefully, we also recommend that you create a restore point before attempting to install any updates that may reconfigure some Windows components. This provides you with an opportunity to restore your computer back to its previous settings if you do not like the changes made after updates have been installed.To create a Restore Point click this link: Creating a Restore Point
Lastly it must be said that all of the above is only effective if you have an active firewall that is turned on. If you use the Windows firewall you can check this by doing the following:
1) Click Start.
2) Click Control Panel.
3) Click the Windows Firewall icon.
4) Make sure the radio button next to "On (recommended)" is ticked.
5) Click OK !
Windows Updates
You will need to read and follow the install instructions carefully, we also recommend that you create a restore point before attempting to install any updates that may reconfigure some Windows components. This provides you with an opportunity to restore your computer back to its previous settings if you do not like the changes made after updates have been installed.To create a Restore Point click this link: Creating a Restore Point
Lastly it must be said that all of the above is only effective if you have an active firewall that is turned on. If you use the Windows firewall you can check this by doing the following:
1) Click Start.
2) Click Control Panel.
3) Click the Windows Firewall icon.
4) Make sure the radio button next to "On (recommended)" is ticked.
5) Click OK !
Antivirus and Antispyware Software
Antivirus and Antispyware software are programs designed to protect your computer from viruses and spyware. They both certainly have their place in building defences against network attacks and unwanted malware that can bring your computer crashing to a halt. My goal here is to improve your knowledge, skills and ability and hopefully provide you with the basic tools required to enhance your online safety. I will begin by elaborating a little on viruses and also how Antivirus software works.
Computer Virus
So what is a computer virus, well they come in many shapes and forms, some even possess a morphology that changes with time while others cleverly disguise themselves hiding from their predator the “Antivirus”.
Antivirus
Virus
Computer Viruses occupy four different and very basic categories, these range from Viruses to Worms, Trojan Horses and Logic Bombs. Each has their own specific purpose as do their symptoms and also their ability to inflict damage upon your data. Their evolution is fast paced and one latest report indicated that possibly more than 100 to 2500 new viruses are made each day. This number will perhaps increase and as such, so should our vigilence and diligence both with online activity and email.
Two very nasty and common infestations are the Worm and the Trojan Horse. A worm is not so much a virus, but a self-replicating net nasty that will infect your computer and explore your email address book, it then uses it to send on a copy of itself to all of your address book contacts. From there it will re-assert itself over and over, so the process is carried from your computer to another and another and so on. Eventually this can jam up the internet or more in particular a specific server, its like overloading and old exchange where you have the exchange operator struggling to cue and forward the calls.
So the worm is essentially designed to create a traffic backlog within the network. This traffic jam will overload the network service, so when you intend to open a web page that lives on a jammed-up server, you will be denied service because of the traffic overload.
Spam Mail
The worm is also self-replicating (much like biological viruses), in that it will create a new copy of itself with every computer it infects, and thus it eventually migrates to such massive proportions that networks are unable to cope. They often arrive in the form of email attachments, this is why you should never open an email or attachment if the sender is unknown. Spam can also be delivered in a similar way.
Now that we have digested a little on worms, and the sour note leaves us feeling sick, let's take a look at the Trojan Horse. This phenonema is not a horse species nor is it a virus, but it can and often does cause unwarrented grief should you strike one. !!
This kind of intruder is actually welcomed by Windows, believing that it is a friendly entrant in the "welcome to my Windows" game show. The truth is that while Windows sees this entity as friendly and gives it a free pass to cruise on in and do what it pleases, it is actually an enemy in disguise.
These kind of infections carry what is known as a payload, and just like the old airplanes of war armed with bombs, they deploy their “payload” at a certain time to cause damage. In this respect they are also a dormant virus, they might remain hidden in a file that windows thinks is friendly and then at a predetermined time and date (Friday the 13th) for example, they unleash their deadly payload. "Bomb's away".!!
So the trojan horse also known as “Trojans” are nasty little suckers in that they can sneak up on you and then when you least expect it, they wave that big fat ugly banner that says, "hello I am here". Usually this is also a time when it may be too late to do anything about it. So in the obvious pretext, prevention is better than cure with trojans.
They are so dangerous in fact, that certain elements of them can send information about you and your financial details back to a hacker. They can install small programs on your computer in the form of tracking cookies etc, and then send that information back to a computer loaded with software ready to exploit your bank account or personal details.
These kind of infections carry what is known as a payload, and just like the old airplanes of war armed with bombs, they deploy their “payload” at a certain time to cause damage. In this respect they are also a dormant virus, they might remain hidden in a file that windows thinks is friendly and then at a predetermined time and date (Friday the 13th) for example, they unleash their deadly payload. "Bomb's away".!!
So the trojan horse also known as “Trojans” are nasty little suckers in that they can sneak up on you and then when you least expect it, they wave that big fat ugly banner that says, "hello I am here". Usually this is also a time when it may be too late to do anything about it. So in the obvious pretext, prevention is better than cure with trojans.
They are so dangerous in fact, that certain elements of them can send information about you and your financial details back to a hacker. They can install small programs on your computer in the form of tracking cookies etc, and then send that information back to a computer loaded with software ready to exploit your bank account or personal details.
Hacker
Antivirus and Antispyware companies are trying hard to stay ahead of the game, producing updates for your software that will combat these trojans as quickly as possible. It is literally a game of cat and mouse, but more likely in this case, it is the dog chasing its tale.
Chasing
My
Tail !!
Crazy
In the chicken and egg scenario, the egg is hatched and we are left with a crazed chook programmed and "hell-bent on destruction", either way your data, computer and possibly personal and financial information are ready for the trojan chopping block.
Again the Trojan Horse much like the worm is not so much a virus but an entity that will wreak havoc and destruction when it sees an opportunity to do so, it does not always replicate like a virus and usually needs a form of transport to take itself from one computer to another.
This is also why trojan horses are often found in email attachments and file downloads. In most cases your best defense is to use Antivirus and Antispyware Software, be sure to establish regular habits in updating and scanning as often as possible. Also never open an email or attachment from and unknown sender, or even a known sender with nothing in the subject field. This could be a trojan embedded in an email when the sender has no idea and their computer is basically working as a "zombie" (more on this later) and sends the emial on autopilot.
This is also why trojan horses are often found in email attachments and file downloads. In most cases your best defense is to use Antivirus and Antispyware Software, be sure to establish regular habits in updating and scanning as often as possible. Also never open an email or attachment from and unknown sender, or even a known sender with nothing in the subject field. This could be a trojan embedded in an email when the sender has no idea and their computer is basically working as a "zombie" (more on this later) and sends the emial on autopilot.
So the Trojan can sneak in under the radar disguised as friendly inbound !!
Ah an email !!
Gotcha !!
Then next thing you know, “Bang” you have been infected with a trojan horse.
So now we know Trojans are nasty and we need to avoid them, but what about viruses, so far worms and trojans have been regarded as dangerous but not necessarily viruses. And why, do I hear you ask.. ?
Well put simply almost all forms of computer malware, spyware, viruses, trojans and the like are basically small programs running on the computer with the intention of completing the task they were designed to do, (usually something destructive, or annoying at the very least.)
So they are actually software, albeit nasty software, but still software. And how do you defeat software, well, yep you no doubt already guessed..!!, you use software.
You could say that it is like fighting “fire with fire”, as the old saying would have it. To this end we have on one hand the antivirus companies writing new software everyday to counteract the virus software that is written daily on the other hand by the pesky virus writers.
The software the antivirus companies write is updated daily for the best protection, they write what is known as “signatures” and these are small pieces of software or program code that allow your AV software to recognize what new viruses and so forth are lurking on the horizon.
The idea behind this is that your AV software then uses these signatures during a computer scan to cross-reference files etc, in the hope it will find and delete any nasty and compromising code or virus.
Much like the aforementioned “cat and mouse scenario”, it is an on going battle between these giants of internet security (Norton, McAfee, AVG, etc) and security compromise (virus writters). In the end, no one person, group or company can really ever 100% predict what new viruses are being written and how best to combat them. Antivirus is a past-tenths game, we are literally dealing with history most of the time, since we are reacting to threats, rather than predicting them.
Well put simply almost all forms of computer malware, spyware, viruses, trojans and the like are basically small programs running on the computer with the intention of completing the task they were designed to do, (usually something destructive, or annoying at the very least.)
So they are actually software, albeit nasty software, but still software. And how do you defeat software, well, yep you no doubt already guessed..!!, you use software.
You could say that it is like fighting “fire with fire”, as the old saying would have it. To this end we have on one hand the antivirus companies writing new software everyday to counteract the virus software that is written daily on the other hand by the pesky virus writers.
The software the antivirus companies write is updated daily for the best protection, they write what is known as “signatures” and these are small pieces of software or program code that allow your AV software to recognize what new viruses and so forth are lurking on the horizon.
The idea behind this is that your AV software then uses these signatures during a computer scan to cross-reference files etc, in the hope it will find and delete any nasty and compromising code or virus.
Much like the aforementioned “cat and mouse scenario”, it is an on going battle between these giants of internet security (Norton, McAfee, AVG, etc) and security compromise (virus writters). In the end, no one person, group or company can really ever 100% predict what new viruses are being written and how best to combat them. Antivirus is a past-tenths game, we are literally dealing with history most of the time, since we are reacting to threats, rather than predicting them.
So as you can see, it’s like a poker game, and who knows what will be next !!
This is also another reason why we are never ever really 100% safe with internet security.
This is also another reason why we are never ever really 100% safe with internet security.
Virus Alert !!
Computer virus occupy many forms and to address all of them would take more than a few paragraphs so I will give you a condensed version addressing what they do and how we can best counteract them.
Viruses use the verbs in computer code, these are the “doing instructions” that offer an action or potential to a program or device. This is what is known as executable code and this code is embedded in files that have file extensions. So what are file extensions?
Well they are the suffixes you see after file names, for example, the startup file that tells a program how to start when you double click an icon, this tells your computer to look for the startup.exe file associated with that particular program, which then gives instructions on launching the program. It is like starting your car, “key in, push clutch in, turn key, release key after ingnigtion etc.” Then car starts and away you go.
Viruses use the verbs in computer code, these are the “doing instructions” that offer an action or potential to a program or device. This is what is known as executable code and this code is embedded in files that have file extensions. So what are file extensions?
Well they are the suffixes you see after file names, for example, the startup file that tells a program how to start when you double click an icon, this tells your computer to look for the startup.exe file associated with that particular program, which then gives instructions on launching the program. It is like starting your car, “key in, push clutch in, turn key, release key after ingnigtion etc.” Then car starts and away you go.
So you can see that files ending or “suffixed” with “.exe” are the ones that give instructions, the .exe means the file is an executable file containing instruction code. Other files viruses enjoy and can be found in are commonly suffixed with .bat, .xml, .vsb, .inf, .msi etc. Basically there are many extensions most of which contain instruction code, when this code is corrupted or infected, detrimental action results. Based on this you can see how some viruses work, virus writters re-write the instruction code so programs then behave differently.
V-Marker
When a viruses infect files, they leave behind a trail of bread crumbs that we call “V-markers,” or virus markers, these markers then become the target of your antivirus software. As viruses change, so do their footprint or V-markers, your AV then needs to download new signatures that allow it to detect these new V-markers.
These V-markers as well as file sizes are the instrument your AV uses to source and delete the virus. Your AV software updates its signature files with updates so it can look for new V-markers. Viruses change the way they hide from your AV by changing their markers. This is also why it is so important that you regularly update your AV software. During a scan, antivirus software can not detect what is does not know to look for.
A good anallergy I often use goes something like this, imagine you have a security guard at your front door, and this guard has a photo album of everyone passing through the front door.
Let's assume for a momment that the people coming in are the equilivalent of the data entering your computer.
In his album he has photos or "mug shots" (signatures) of all of the good and bad people. Now let's say that he receives new photos everyday (antivirus updates), and these also contain the photos of the bad people or viruses. So when he recognises a bad person, he throws them out, (deletes them) or does not let them enter, "preventing a virus attack".
A good anallergy I often use goes something like this, imagine you have a security guard at your front door, and this guard has a photo album of everyone passing through the front door.
Let's assume for a momment that the people coming in are the equilivalent of the data entering your computer.
In his album he has photos or "mug shots" (signatures) of all of the good and bad people. Now let's say that he receives new photos everyday (antivirus updates), and these also contain the photos of the bad people or viruses. So when he recognises a bad person, he throws them out, (deletes them) or does not let them enter, "preventing a virus attack".
The big problem here however is that when your AV detects a virus, it will usually either simply delete it or attempt to remove the virus and then repair the file. This becomes a problem because many files use different code and because viruses are “corrupt code” embedded in your files, it makes it very difficult to remove the virus code without destroying the file.
Virus writers are well aware of this fact and exploit it by taking advantage of any flaws they may find in programming. Some viruses called "macro viruses" hide in document files, these nasty little critters are often found in email attachments, they use that part of the file a word program uses to open and execute the file. So when you open an infected file the macro virus escapes its literary tomb to inflick damage upon your data.
Virus writers are well aware of this fact and exploit it by taking advantage of any flaws they may find in programming. Some viruses called "macro viruses" hide in document files, these nasty little critters are often found in email attachments, they use that part of the file a word program uses to open and execute the file. So when you open an infected file the macro virus escapes its literary tomb to inflick damage upon your data.
Macro Virus
Another kind of virus known as a “Boot Sector Virus” has the ability to stop Windows from booting. This virus lives in the MBR (Master Boot Record) that contains instructions on starting Windows, it destroys components of the MBR so it is rendered useless. Most new computer systems have a prevention for this that takes advantage of hardware related strategies that inhibit a virus from corrupting the MBR.
Corrupt MBR
Logic Bomb
There are other viruses known as Logic Bombs, these guys sit quite laying dormant untill a specified time and then explode releasing their payload. April fool’s day has been the destination for many logic bombs, they sneak in and silently wait for their cue. Tick tick tick tick tick tick BOOM !!!
Viruses are very clever at disguising themselves and often choose to hide in places where your antivirus software cannot detect them. One such place is in the system restore folder, this acts as a safe haven because antivirus software does not always scan this folder. It is like a “safe” under lock and key, the only way to open this safe and let your antivirus take a peak is to turn off your system restore. This then opens the door allowing your AV to scan.
The only drawback here resides in the fact that you will loose all of your restore points. Ironic as it is, one of the first things you can do when you have a virus, is restore your computer to a time before the virus was present. Sometimes but not always, this has been a short cut for eliminating viruses.
The only drawback here resides in the fact that you will loose all of your restore points. Ironic as it is, one of the first things you can do when you have a virus, is restore your computer to a time before the virus was present. Sometimes but not always, this has been a short cut for eliminating viruses.
To turn off system restore click the start button, click Control Panel, click System and then click the System Restore tab. Now simply tick the box and then click Apply and OK. Remember that you will loose all of your restore points so there is no going back once you do this!
Once you have turned off system restore commence a scan, always remember for your AV software to be most effective, update first and then scan. Give your security guard all the latest mug shots!!
If your antivirus finds a virus, you will be prompted to either delete or quarantine the virus depending on what AV you use. Sometimes the antivirus will fix the problem automatically, many of them ask you for instructions first when they detect a virus.
Antivirus software is only as good as its last update, so be vigilant in updating and remember to scan regularly, at least once a week is sufficient for most home users, the more the better!! This software is of no use if you do not use it. I have seen people who believe you just install it and then it does the rest, this is not the case, you must play your part in securing your computer and network. Our customers use AVG free and you can get it on the following link:
AVG free Antivirus
If your antivirus finds a virus, you will be prompted to either delete or quarantine the virus depending on what AV you use. Sometimes the antivirus will fix the problem automatically, many of them ask you for instructions first when they detect a virus.
Antivirus software is only as good as its last update, so be vigilant in updating and remember to scan regularly, at least once a week is sufficient for most home users, the more the better!! This software is of no use if you do not use it. I have seen people who believe you just install it and then it does the rest, this is not the case, you must play your part in securing your computer and network. Our customers use AVG free and you can get it on the following link:
AVG free Antivirus
Antispyware
Antispyware does pretty much what it says, it stops other people from spying on you. Programs for this are numerous and many free, in some cases your antivirus software may have an antispyware component built-in.
When it is installed separately from your antivirus software it forms an integral part of your security package, we know that antivirus deals with viruses, antispyware deals with hackers and those that want to exploit our security vulnerabilities. Together with AV software and an active firewall these systems form the big guns in security.
When it is installed separately from your antivirus software it forms an integral part of your security package, we know that antivirus deals with viruses, antispyware deals with hackers and those that want to exploit our security vulnerabilities. Together with AV software and an active firewall these systems form the big guns in security.
The Big Guns !!
Antispyware covers several different categories of spyware. The term spyware loosely refers to programs designed to self-install and then send data about you and your computer back to someone or something very interested in your personal information. These programs are usually secretly installed without the users knowledge or consent. In some cases you may acquire them from a web page infected with spyware or a downloaded program or it may arrive in an email attachment. Many sites that boast “freeware”(free software) or shareware (shared software) and file-sharing sites can be infected with spyware. Hackers typically target these zones because they know people will use them for free downloads.
Spyware once installed adopts the role of big brother and records your online activity and surfing habits, it takes note of all the websites you visit and then sends this information back to a server which then uses it to send you adds based on your browsing habits.
Spyware once installed adopts the role of big brother and records your online activity and surfing habits, it takes note of all the websites you visit and then sends this information back to a server which then uses it to send you adds based on your browsing habits.
Big Brother is Watching !!!
This is how spyware builds a profile of you and your online behavior, sometimes hackers will sell these profiles to web merchants.
Adware is that kind of spyware that continually places adds on your screen also known as “pop-ups”. These are designed mostly to entice you to view advertising and in some cases they may re-direct your browser to a sponsor’s website. You will most probably have to click these off to get rid of them, every time you click, it sends a message back to the sponsor and from this they make money.
Some for You !!
Malware is software with malicious intent, this stuff can be harmful to your computer and has the potential to lure viruses, this form of spyware is often found in downloads. It is a cousin to the trojan horse and works very much the same way.
Keyloggers or keyboard sniffers are small programs installed on your computer that will record every key stroke you make. They will log and send this information directly to a hacker who can then use it to decipher passwords, login information etc. They can also use this to rob your bank account or steal your personal information resulting in identity theft.
Rootkits are another form of spyware that hide acting as genuine Windows program components, they create a “back door” (back door trojan) into your computer where a hacker can enter. From here the hacker can install further spyware like keyloggers and trojans.
Cookies are tiny programs designed to improve web browsing and remember things like usernames and passwords, they make it easy to access sites quickly and generally stay on your hard drive. They are automatically installed on your computer every time you visit a web page. There are good and bad cookies, the good ones “as described above” are actually helpful, while the bad ones make notes on your browsing habits, online purchases, etc and collect information that is relevant and useful to both hackers and web merchants. The cookies that track your online activity are known as “tracking cookies”. You may see these displayed in the deleted items list after your antispyware completes its scan.
I want Cookies !!
Antispyware works very similar to antivirus software in that it uses “signatures” to identify spyware, just like AV software you also need to regularly update the signatures in order for your program to detect the latest threats. Another thing antispyware does is create a backup copy of the registry. What’s the registry you ask ? Well it is a kind of diary that registers all of the setup and configuration information on your computer. When spyware makes changes to the registry it has the ability to change Windows settings and even sometimes turn off your antispyware and antivirus. These and other actions allow hackers greater control of your computer, they can in sometimes even disable your firewall.
Because there is a backup of the registry, antispyware programs use this to compare changes that may have been made and then attempt to remove any corrupt entries that will exploit your security.
Just like viruses new spyware is made every day and so are new signatures that enable your program to detect them, this is also why it is important to update and scan regularly. Many people sometimes use two antispyware programs, this is not a bad idea because what one program may miss the other might catch. There are many free ones available, some of these also have "payware" versions of the same thing that have added functions etc. The two free programs we use and recommend are Ad-Aware Plus and Spybot Search and Destroy.
You can download them on following links:
Ad-Aware Plus
Spybot Search and Destroy
Because there is a backup of the registry, antispyware programs use this to compare changes that may have been made and then attempt to remove any corrupt entries that will exploit your security.
Just like viruses new spyware is made every day and so are new signatures that enable your program to detect them, this is also why it is important to update and scan regularly. Many people sometimes use two antispyware programs, this is not a bad idea because what one program may miss the other might catch. There are many free ones available, some of these also have "payware" versions of the same thing that have added functions etc. The two free programs we use and recommend are Ad-Aware Plus and Spybot Search and Destroy.
You can download them on following links:
Ad-Aware Plus
Spybot Search and Destroy
Security Threats
Besides viruses and spyware there exists other internet and online threats that are and can be just as dangerous. These threats are scams and are usually delivered to you personified with all the genuine hallmarks so they look and feel like the real deal. These scams are disguised to fool us and the people who make them prey on your computing vulnerabilities believing we are all that naïve.
Phishing
Phishing is one such scam, it sounds like fishing and that’s because scammers that build these scams are actually “fishing“ for your personal information.
These “phisher’s” make fake websites that masquerade as the real website from which they copied, they then send you an email telling you that your bank or some other institution needs to verify your details. They expect that you will read the email believing it is legitimate and request that you update or verify your account details etc. Usually the email will contain a link that you can click on which then directs your browser to a web page very much resembling that of your bank.
Once here you will be prompted to login and even perhaps give information on credit cards, accounts, account details, tax file numbers, usernames and passwords etc.
All the while you go about your business happily typing away the scammers are at the other end soaking up all the details you just gave them. So you can probably guess what happens next. !
Say tootles to your money and even worse possibly your identity. !!
Banks and financial institutions do not email their customers for account details due to security reasons, should you ever receive an email that looks like something from your bank, simply “DELETE” it and if you have concerns ring your bank. These kind of institutions are well aware of phishing scams and almost always send you information via the postal service.
Postal Delivery
Phishing scams are also targeted toward identity theft, in fact ID theft is on the rise and you must exercise vigilance when responding to emails. Phisher’s make these bogus websites and emails look so authentic that they almost have us believing they are real. They prey on our gullibility hoping to snag some poor innocent individual and then rob them blind of either their funds or worse their identity.
So the golden rule of thumb here is, be vigilant, delete any suspect emails and be very weary of suspect or “spoofed” websites. Thankfully many browsers have anti-pishing programs built-in.
Spoofing
McSpoof
Spoofing is basically a tern contrived by the IT world that represents a bogus website or a forgery of one. Usually pushers make them but the idea is the same as above, they want you to enter a username password, bank account details and so on.
One good way to tell if a site is “spoofed” is to come up with some bogus things of your own, let’s say it asks for your email address, well give it a bogus one and then if it does its thing believing your address is real, you have just scammed the scammers.. !!
If you had entered your real email address, you may have opened yet another channel for spam or junk mail. Pishers and the like use these sites and others to trawl the internet searching for email address stored on servers etc.
They sometimes sell these email addresses to spammers and the end result is massive amounts of spam. This clogs up the internet and network servers choking them with gigabytes of unwanted junk mail.
One good way to tell if a site is “spoofed” is to come up with some bogus things of your own, let’s say it asks for your email address, well give it a bogus one and then if it does its thing believing your address is real, you have just scammed the scammers.. !!
If you had entered your real email address, you may have opened yet another channel for spam or junk mail. Pishers and the like use these sites and others to trawl the internet searching for email address stored on servers etc.
They sometimes sell these email addresses to spammers and the end result is massive amounts of spam. This clogs up the internet and network servers choking them with gigabytes of unwanted junk mail.
Spam
So what is it, well spam is web-based advertising, it’s the same as junk mail. The difference is that instead of having a letter box out front, you have an electronic version of one on your computer called and “inbox”.
Spammers attempt to file your inbox with as much junk mail as possible hoping you will be enticed buy the items or products they promote. Many of these emails will have attachments which can harbor Trojans, worms, spyware and viruses. It is not uncommon to see spammers pushing things like pharmaceutical products or body enhancing surgery and even scams promising you millions etc etc.
Most email software programs have spam filtering that help eliminate junk mail, you can adjust this and other security settings to help combat spam. Perhaps the best way of avoiding spam is to again exercise vigilance with emails, if it looks suspicious, delete it immediately, and never give out your email address to anyone or anything unless you know them. Posting your email address all over the internet is like giving every post office in the world your real street address, and then you will have a mail box inundated with junk mail. To learn more about spam and ways to prevent it, see: Dealing with Spam
Spammers attempt to file your inbox with as much junk mail as possible hoping you will be enticed buy the items or products they promote. Many of these emails will have attachments which can harbor Trojans, worms, spyware and viruses. It is not uncommon to see spammers pushing things like pharmaceutical products or body enhancing surgery and even scams promising you millions etc etc.
Most email software programs have spam filtering that help eliminate junk mail, you can adjust this and other security settings to help combat spam. Perhaps the best way of avoiding spam is to again exercise vigilance with emails, if it looks suspicious, delete it immediately, and never give out your email address to anyone or anything unless you know them. Posting your email address all over the internet is like giving every post office in the world your real street address, and then you will have a mail box inundated with junk mail. To learn more about spam and ways to prevent it, see: Dealing with Spam
Scams, Frauds and Hoaxes
Scams and frauds and hoaxes pretty much cover all of the above, over the years there have been some very successful scams like the Nigerian 419 scam.
The Nigerian 419 preyed on people’s gullibility fooling them into believing they would make a fortune if they offered some financial help to a third party. The returns for your small investment were far to enticing for some people that fell victim to this scam.
Frauds work very much like scams but only these fraudster’s setup bogus websites “spoofed websites” and then have you make a purchase on that site. Many auction sites are targeted by fraudulent net scammers.
Hoaxes are again something intended for the gullible nature of people, we usually receive hoaxes in email and others on webpages planted via spyware. Besides the "get rich quick scams", they mostly make reference to your computer being infected with a virus or some kind of spyware and you will have to click a link or do something that to fix the problem. When your computer actualy has no virus or spyware, it is a "hoax". Remember your antivirus software takes care of viruses, not stuff that pop’s up on your screen or arrives in email.
The Nigerian 419 preyed on people’s gullibility fooling them into believing they would make a fortune if they offered some financial help to a third party. The returns for your small investment were far to enticing for some people that fell victim to this scam.
Frauds work very much like scams but only these fraudster’s setup bogus websites “spoofed websites” and then have you make a purchase on that site. Many auction sites are targeted by fraudulent net scammers.
Hoaxes are again something intended for the gullible nature of people, we usually receive hoaxes in email and others on webpages planted via spyware. Besides the "get rich quick scams", they mostly make reference to your computer being infected with a virus or some kind of spyware and you will have to click a link or do something that to fix the problem. When your computer actualy has no virus or spyware, it is a "hoax". Remember your antivirus software takes care of viruses, not stuff that pop’s up on your screen or arrives in email.
For more information on Antispyware and Internet Threats click the following link:
www.scamwatch.gov.au
www.scamwatch.gov.au
Banking Online
As mentioned previously, we are not always 100% safe with internet security, given that there are so many and vast reasons for this, I will attempt to provide more extensive information on this subject as this website develops.
Meanwhile I will offer some valuable pointers that will hopefully keep you as safe as possible and with a special focus on internet transactions where funds are basically transferred from one account to another.
Meanwhile I will offer some valuable pointers that will hopefully keep you as safe as possible and with a special focus on internet transactions where funds are basically transferred from one account to another.
If you will be banking online then at some stage you will require a username and password, this allows you to “login” to your accounts just as a bank teller would at his or her terminal within the bank.
Your username and password should be as obscure as possible leaving no wild guess’s for the cretin’s that would quite easily exploit your personal and sensitive information without a second thought.
Always use as many words, characters and or numbers as possible with passwords, if you can routinely change them as often as possible, and always make them as long as possible. Most institutions will have a minimum of eight characters, others more, the rule of thumb here is the more the better, this way the would be hackers etc will generally find it harder to “crack” your password. You should aim to make your passwords as strong as possible.
Your username and password should be as obscure as possible leaving no wild guess’s for the cretin’s that would quite easily exploit your personal and sensitive information without a second thought.
Always use as many words, characters and or numbers as possible with passwords, if you can routinely change them as often as possible, and always make them as long as possible. Most institutions will have a minimum of eight characters, others more, the rule of thumb here is the more the better, this way the would be hackers etc will generally find it harder to “crack” your password. You should aim to make your passwords as strong as possible.
Password strength is a high priority and the sooner you can rotate or change your password and add obscurity to it, the stronger it is, if you make it something the hacker’s may not guess randomly then the better protected you are.
Most banks these days allow you to change passwords about every six weeks or so, the higher this frequency the better, another consideration when banking online is the time spent during a session.
Try and keep them as short as possible, this way you reduce the possible time your computer or transaction could be possibly intercepted and recorded. When you see your browser (where you type www."whatever" wbesite.com) prefixed with “https” and you see the little “lock” icon at the bottom right of screen, that usually indicates that you are secure. These things may or may not appear depending on what browser you use, however the key here is to keep your online financial transactions as short as possible, reducing the time someone has to exploit your vulnerability.
Many hackers, spyware writers, virus writers etc, all know we are only human and they will specifically target their programs to work on our emotional gullibility. They know we will not always sniff out a scam and that many people may be looking for the “quick fix” whether it be a lottery scam or cheap pharmaceutical medications etc.
Try and keep them as short as possible, this way you reduce the possible time your computer or transaction could be possibly intercepted and recorded. When you see your browser (where you type www."whatever" wbesite.com) prefixed with “https” and you see the little “lock” icon at the bottom right of screen, that usually indicates that you are secure. These things may or may not appear depending on what browser you use, however the key here is to keep your online financial transactions as short as possible, reducing the time someone has to exploit your vulnerability.
Many hackers, spyware writers, virus writers etc, all know we are only human and they will specifically target their programs to work on our emotional gullibility. They know we will not always sniff out a scam and that many people may be looking for the “quick fix” whether it be a lottery scam or cheap pharmaceutical medications etc.
Based on this we will at some stage no doubt fall victim to these and other online frauds and attacks that simply take us for a ride. This is why we must also be incredibly vigilant about popup adds, emails, antispyware and antivirus updates and scanning etc. The internet is as marvelous as it is dangerous, but ultimately you still have a certain level of control and you should exercise this as diligently as possible.
There are and probably never will be any gauranteed absolute safe guards that will offer you 100% protection, perhaps your best bet for now, is to maximize your level of protection by observing the information above and further research.
There are and probably never will be any gauranteed absolute safe guards that will offer you 100% protection, perhaps your best bet for now, is to maximize your level of protection by observing the information above and further research.
There is of course a few other things you can do to help maximise this protection but for the most part home user’s especially may want to explore the above and other avenues for greater security. Many business’s have dedicated IT Pro’s working around the clock in some cases to prevent attacks on infrastructure, these people work tirelessly all hours to ensure safety and even then they cannot always offer the tightest seal on security. If it is man made , it can be broken, well hacked perhaps. !!
The great wall between internet security and hacker vulnerability is and will always be brittle, to date no one person or thing can guarantee total security.
The great wall between internet security and hacker vulnerability is and will always be brittle, to date no one person or thing can guarantee total security.
* * * *
Security Tips
· Never open an email if you do not know the sender
· Never open email attachments from unknown senders
· Never give your real email address to suspect sites
· Never give out your personal details to unsecure sites
· Never download programs linked to pop-up adds
· Always update and scan with AV and Antispyware
· Always use the strongest possible passwords
· For added security routinely change these passwords
· Keep software updated and patched, Internet Explorer
· Keep online banking sessions as short as possible
· Routinely change your banking password
· Make sure your firewall is active and updated
· Form a habit of deleting cookies and offline content
· Set your security settings as high as possible