1. Windows Update - Check Windows Update
and regularly. Configure
automatic updates via the control panel click on the Automatic
Updates tab in the System control panel and choose the appropriate
options. We recommend choosing the last option: "Automatically
download the updates, and install them on the schedule
I specify (ie. Every Day, 9:00AM)".
It's important to always keep current with the latest security
fixes from Microsoft.
Install all critical updates available. Since over 90% of
the world PC's are running Windows operating systems, malicious
programmers most likely will be targeting you and your Windows
machines.
2. Anti-Virus Software - Buy anti-virus
software and keep it up to date. If you're not willing to
pay, try Grisoft
AVG Free Edition (www.grisoft.com). Though,
Norton's Anti-virus isn't the top selling software in the
world without reason. Use Live Update to ensure your computer
is safe.
3. Internet Dangers - Be skeptical of things
on the Internet. When browsing the web don't accept any
installations without knowing it is necessary.
Assumptions - Make None
Don't assume that any email that is from even a friend is
truly from that friend. Don't assume that an attachment
is what it says it is. Don't give out your password to
anyone, even if that person claims to be from "support."
Don't say yes to security warnings on the Internet unless
you know what you are doing.
Try running Jason
Levine's Browser Security Tests.
They will provide you with an insight on how vulnerable
you might still be to a number of common exploits.
Turn Off that PC
And lastly, make sure you turn off your PC before leaving
work. Worms can penetrate networks, and hackers typically
do their best work late at night.
4. Firewall Software - Install a personal
firewall. Free firewall's available now are Comodo (www.personalfirewall.comodo.com),
and Zone Alarm (www.zonelabs.com)
offer free versions. Or if you chose not to use a third
party firewall, turn on Microsoft Windows XP built in firewall
that is part of Windows XP SP2.
In addition most routers have basic NAT firewall protection,
use them as the first firewall protection for your broadband
connection. If you have a broadband connection get a router
and/or a software firewall It's not whether you will
get hit, but when you will exposed by a worm, hacker, or
virus.
5. Spy-ware Software
UPDATE: Spyware problems are slowly disappearing as Microsoft has improved Windows so spyware it not so easily loaded, especially if you are running Vista with UAC On or Windows SP2..
In addition many anti-virus products include a level of spyware protection now. If you want to ensure your spyware FREE, chose SpyBot Search & Destroy,
and Ad-Aware to check your system.
SpyBot Search & Destroy (http://safer-networking.org)
Can detect and remove a multitude of adware files and modules from your computer.
Spybot also can clean program and Web-usage tracks from your system. Modules
chosen for removal can be sent directly to the included file shredder, ensuring
complete elimination from your system. The handy online-update feature ensures
that Spybot always has the most current and complete listings of adware,
dialers, and other uninvited system residents.
Ad-Aware (http://lavasoft.com)
Can scan your RAM, registry, hard drives, and external storage devices for
known data-mining, advertising, and tracking components, Ad-aware can easily
clean out your system, allowing you to maintain a higher degree of privacy
while you surf the Web.
Other Spyware Precautions
Start -> Run -> MSCONFIG
And lastly you may wish to look at what software is setup to run when your
PC starts up. Click Start->Run and type in msconfig. Then click the tab
Startup. Disable any entries that you wish to not startup when your PC starts
(don't disable your antivirus or firewall software).
HiJackThis (http://www.spychecker.com/program/hijackthis.html)
HijackThis is a tool, that lists all installed browser add-on, buttons, startup
items and allows you to inspect, and optionally remove selected items. The
program can create a backup of your original settings and also ignore selected
items. A very powerful program to diagnose and help fix problems with spyware
and browser hijacking.
P2P
Many freeware programs, and peer to peer programs
like Grokster, Imesh, Kazaa and others are amongst the most
notorious. They come with an enormous amount of bundled spyware
that will eat system resources, slow down your system, clash
with other installed software, or just plain crash your browser
or even Windows itself. You have been warned!!!
6. Passwords - Use strong passwords and
change them periodically. Passwords should have at least
seven characters; use letters and numbers and have at least
one symbol. A good example would be "u8ntg#kh".
This will make it much harder for anyone to gain access to
your accounts.
7. Email Clients - If you're using Outlook
or Outlook Express, use the current version or one with
the Outlook Security Update installed. This will update
past versions numerous vulnerabilities. Try Outlook 2003
as it has many security features. For example, not
loading external web based images and includes a built in
Spam filter.
8. Disable Windows Pop-Ups - Block pop-up
spam messages in Windows XP, 2000, or NT by disabling the
Windows Messenger service (this is unrelated to the instant
messaging program). Open Control Panel -> Administrative
Tools -> Services and you'll see Messenger. Right-click
and go to Properties. Set Start-up Type to Disabled and press
the Stop button. Bye-bye, spam pop-ups! Any good firewall
will also stop them. If you are not using windows messaging,
disable it too!!!
9. Wireless Security - If you have a wireless
network, turn on the security features: Use MAC filtering,
turn off SSID broadcast, and even use WEP with the biggest
key you can get. Use the strongest possible security, instead of WEP use WPA2.
10. Security Groups - Join a e-mail security
list or newsgroup. You can learn about emerging threats quickly
and can take proper precautions.
