HouseCall Computer Services
Internet Security
It’s no secret that internet threats have increased exponentially in the last few years. With viruses, worms, spyware, spam, pop-ups, and intrusions running rampant, simple virus protection is not enough anymore, especially for computers running the latest operating systems on cable or DSL internet connections. For a basic overview of this topic, please reference the article I wrote on the subject for 50 Plus Lifestyle Magazine: Link to Internet Security Article
Threat Info
Terms: To find out what a worm is or learn the difference between spyware and viruses, click to see this on-line dictionary: Internet Threat Terms
Latest Threats: To get the latest information on internet threats, go to: Symantec Threat List
Developing a Security Strategy
Here is a basic Windows XP internet security checklist (earlier versions of Windows would vary):
1. Update to Windows XP Service Pack 2.
2. Install a full internet security software suite, like Trend Micro's PC-Cillin Internet Security (see link below).
3. Download and install at least one other anti-spyware program (see the links below).
4. Know your update settings for both the internet security programs and the operating system (XP).
5. Occasionally run manual updates and scans with all security programs to make sure they are working.
Protection
Although getting more information about current threats can be useful, computer owners need to be primarily concerned with how to protect their systems and personal information. Antivirus protection alone is not enough anymore. Most commercially available security packages do a good job of protecting computers from basic virus and intrusion threats. Where they still seem to struggle is in protecting against spyware. And infection by seemingly benign spyware can lead to other infections, kind of like sets of falling dominos.
Comprehensive Internet Security Suites
Which internet security program should I use?
The answer depends on a variety of factors, including hardware configuration, operating system, and internet service connection. Unfortunately, the answer to this question is also something of a moving target as new technologies are being developed every day on both sides of this high-stakes battle. For example, many internet service providers are beginning to supply internet security tools as part of their high-speed service, but not all of them are effective enough yet to bother downloading and installing. To make the best-informed decision, contact me and we’ll discuss your options.
Here are some comprehensive internet security programs I have some experience with (click on the underlined links for more info):
Considered the 800 pound gorilla of internet security, NIS is probably the easiest for the average user to install and configure correctly. It does not, however, run very well on older systems with limited processing speed and power. I used to recommend this product religiously for new computers that had enough processor. In the last couple of months, however, I have been in front of too many computers running this program that have become infected with spyware, and/or the internet security program files are all way out of date (in spite of automatic update settings).
McAfee Internet Security Suite
I find it hard to recommend this product as it is the most confusing and complex to install and configure correctly, and, if you believe the reviews, not as effective at protecting systems from common internet threats.
Trend Micro PC-cillin Internet Security
Another program getting good reviews lately, PC-cillin Internet Security is trim, effective, less expensive and not as much of a resource hog as Norton (so it runs better on older PC's), but it does require a little awareness to install and configure correctly. A number of my clients have been using this program for a while now. By all indications, it is doing a better job than the others at preventing all threats, including spyware.
Some systems may be best served with a different internet security strategy altogether.
Free Downloadable Programs
For those interested in lacing together their own internet security tools, click on the following links for antivirus, anti-spyware, and other security program downloads. Remember: do NOT run more than one antivirus program on your computer as they will actually clash with each other. More than one anti-spyware program, however, can run together on the same computer at the same time.
Considering it is a free download, AVG Free is a pretty effective antivirus program.
Adaware is a good free spyware scanning tool. It is a passive program that you have to open in order to manually run scans. You can also send them some money for an active version that monitors processes in real time.
Microsoft Windows Defender (Beta)
Although Microsoft has had this program out for a couple of years, they still call it a "beta", which means it is still in development and hasn't been officially released. My experience with it is mixed. It does seem to be easy to install and use, and includes both passive scanning and active real-time protection. It will only work on Windows XP (Service Pack 2) machines. The old version expired on 12/31/05, so those who had it installed and running on their computers before then will need to download and install the new one for continued protection. In fact, the newest version requires "validation", which seems to be Microsoft's way of ferreting out illegal copies of Windows XP. Effectiveness? The jury is still out, but it did not find spyware on some computers that other programs found.
Spybot is a great free antispyware tool that can scan your hard drive for infections and protect your machine from those same infections in the future. I use it to periodically check-up on the effectiveness of the main internet security package. You do need to make sure that the definition file update and "immunization" is done manually, because there is nothing automatic about it.
ZoneAlarm is a good free downloadable firewall program, which you would not need if you are running XP Service Pack 2 or any one of the big three internet security suites listed above.
In addition to several other useful features, the Google Toolbar (Internet Explorer plugin) has a built-in pop-up blocker.
For help with any of these, please contact me.
Spyware
One of the most illusive topics in the world of internet security is what to do about spyware. All of the internet security software suites claim to protect computers against spyware, but most eventually let some in, even if the computer user hasn't knowingly visited risky sites or clicked on any stray email links. So it is usually a good practice to have more than one antispyware program running, whether it is actively protecting against spyware infections or simply a passive scanning tool.
Three of the more popular free downloadable anti-spyware tools are listed above. In the interest of making the most informed decision about which anti-spyware program to use, I have listed a summary (below) of what the editors at download.com have to say about many of the other available programs, free or otherwise.
And I quote:
"Webroot's
Spy Sweeper is well known for being one of the better spyware detection and
removal programs. Version 4.5 offers improved speed during system scans while
still supporting an impressive list of advanced features and options. A 30-day
free trial is available, however, it will not remove any spyware it detects;
for that, you'll need to purchase the product.
http://www.download.com/Webroot-Spy-Sweeper/3000-8022_4-10405877.html?tag=tab_pub
SpywareBlaster doesn't
scan for and clean spyware--it prevents it from being installed in the first
place. SpywareBlaster prevents the installation of ActiveX-based spyware,
adware, dialers, browser hijackers, and other potentially unwanted programs.
It can also block spyware/tracking cookies in IE and Mozilla/Firefox, and
restrict the actions of spyware/ad/tracking sites.
http://www.download.com/SpywareBlaster/3000-8022_4-10486084.html?tag=lst-6-9
HijackThis lists the
contents of key areas of the Registry and hard drive--areas that are used by
both legitimate programmers and hijackers. The program is continually updated
to detect and remove new hijacks. It does not target specific programs and
URLs, only the methods used by hijackers to force you onto their sites. As a
result, false positives are imminent, and unless you're sure about what you're
doing, you always should consult with knowledgable folks before deleting
anything.
http://www.download.com/HijackThis/3000-8022_4-10379544.html?tag=lst-6-4
Along with its solid ability to remove
spyware, CounterSpy includes a few features we don't normally see in a spyware
remover. As with other reputable spyware removers, it includes active
protection which also monitors ActiveX controls. The trial download includes
15 days of definition file updates.
http://www.download.com/CounterSpy/3000-8022_4-10462732.html?tag=tab_pub
Spy-Cleaner Gold
is great for those who want to know exactly how their computer is infected and
the best ways to get rid of particularly nasty spyware components. Spy Cleaner
Gold stands out in the spyware-removal field, but you'll have to pay for the
quality.
http://www.download.com/Spy-Cleaner-Gold/3000-8022_4-10380293.html?tag=lst-6-3
"
I personally don't have much experience with most of these. I do use HijackThis as a diagnostic tool, but don't recommend it for the average computer owner. And although Webroot's program seems to get good reviews, I have been in front of several computers running it that have become infected with spyware. Just shows you how illusive a topic this is. To make matters worse, there are several "rogue" anti-spyware programs out there that masquerade as legitimate software but are in reality spyware themselves. Be careful what you download and install!
Spam
One of the more common questions I get is, "why do I get so much spam?". There can be several answers to this question.
You are more likely to get more spam email if:
1. You have a simple email address, like a common last name with a first initial on the front of it (for example: jsmith@earthlink.net). Spam generating computers would have no trouble with that one, because one of the ways they operate is to take common names or words and try adding combinations of letters or numbers at the front or back, and then tack on a domain (@...). To correct this, consider changing your email address to something more cryptic and complex. The only downside is that you will need to tell everyone to update your information in their address books.
2. You participate in email forwarding. If your email address shows prominently in the "To" field of many group email forwards, eventually a worm-infected computer will find it and send it to a spam generating computer. To help prevent this, only forward email to groups of recipients by putting their addresses in the "Bcc" (blind carbon copy) field instead of the "To" field, and encourage your friends and family to do the same.
3. You participate in internet commerce. Doing business on the internet is very convenient, but it does mean your email address gets listed on a lot of web sites, which increases the chance that you will get more spam. To mitigate this, set up a separate web-based email account (yahoo, hotmail, gmail, etc.) just for the purpose of internet commerce. You can reference that account when buying or selling something online to track a transaction, and then delete everything in the inbox.
To further minimize spam, you can also get spam filtering programs (included with most internet security software suites), but they don't all work with every email program, and they need to be monitored and "trained" to minimize false positives and catch persistent spam. Most internet service providers also have server-based spam filters that will catch some stuff, but you usually need to turn them on and configure them by logging in to your ISP's web site.
Other Words of Wisdom
By now, you all know the basics of deleting email from someone you don’t know and not opening email attachments you were not expecting (even from someone you do know), in addition to having the most up-to-date antivirus and internet security programs installed and running on your system for your specific set of circumstances.
Take a look at what my bank sent me. Good basic rules-of-thumb! And I quote:
“There are currently several phishing scams targeting Washington Mutual, a company that happens to be one of [XX] Credit Union’s vendors. The e-mail might ask you to "update security" or "confirm your account information" in an attempt to trick you into sharing personal or financial information. The e-mail may also provide a link to a fraudulent Web site. Don’t reply to the e-mail or click on the links. Rest assured that your e-mail address has not been compromised. These e-mails are being sent in very large numbers just like other spam.
[XX] Credit Union and any of our vendors would NEVER ask you for personal information in an e-mail. To help keep your information safe, please remember:
-Don't open a file attached to an e-mail unless you are expecting it or know what it contains.
-Don't click on links included with unsolicited e-mails.
-Never forward "virus alert" e-mails. It may be a hoax and could be used to spread a virus.
-When sending personal information, make sure you're on a secure Web server. The Web address should be "https://" rather than just "http://" (no s).
-Don't reply to unsolicited e-mails requesting personal information.
-Don't complete forms sent in the body of an unsolicited e-mail.”
Could not have said it better myself.
A Final Note about Pop-Ups
You are searching the web and all of a sudden a window pops up saying that the security of your computer has been compromised by spyware and you should “click here” to correct the problem. What should you do? What you should NOT do is click anywhere inside that window, even if it looks like a button for closing the window. Don’t click “No” or “Cancel” or anything else inside the pop-up window. Clicking on anything inside a web pop-up window could launch processes on your computer that would compromise its security.
The safest way to close a window that is out in front of any others is by holding down the “Alt” key on your keyboard and then hitting “F-4”. If you get a lot of web pop-ups, you may be a prime candidate for having your system checked for resident spyware and then having your internet security package upgraded. Contact me for more information.
Contacting Me
Email: HouseCall@earthlink.net
Phone: (608) 235-4738