| Problem & Solution |
| |
|
|
| Admin |
|
We appreciate you looking at one of our tips. However, to assure that you have the latest version in front of you, please always click the link above to visit the website, because small changes are made without e-mailing the tips out again.
Please share this information with your colleagues, because they will appreciate it very much.
You can receive these tips directly in your e-mail in-box - subscribe now - you will be glad you did |
|
| |
|
|
| What does it mean to me? Am I vulnerable? |
|
| So why should you care about the multi-layered security? Because: With little effort you can make your Internet and surfing experience safer.
- The Threat may come in a variety of forms, including malicious code exploiting a known vulnerability (see also below).
- Vulnerability is that if the system is not properly protected, or unnecessary options (e.g., printer and file sharing) may be turned on, this exposes your machine to risks that exacerbate the danger that you may be victimized by the actions of a malicious user.
- Impact is severe if the malicious user gains access to one's operating system. Other problems can arise that software no longer functions properly considering that Windows Operating Systems crash 30 billion times, or confidential data may be stolen from your computer.
==> So you want to avoid experiencing a malfunctioning PC or other mishaps. A little protection and prevention goes a long way - read on and get a few hands-on tips on how to improve your PCs protection.
|
|
| |
|
|
If I fix the problem - will it help me?
How |
|
| Yes, it will reduce the risks you face when not using multi-layered security |
|
| |
|
|
| How can one describe the solution? |
|
| The solution is quite simple, instead of using one way to protect your computer and information, you use several. In turn, if one fails to protect you, the others kick in.
Incidentally, reading the license agreement before installing software is a must, remember the rootkit that Sony installed since Summer 2004 to some of its customers' machines who wanted to play DVDs and CDs on their PCs:
|
|
| |
|
|
| Does Microsoft offer me a solution? |
|
| Microsft offers you various options but it cannot provide you with a turn-key solution. However, asking for something like this would not be fair. Instead, Microsoft offers you information that is very valuable which brings us to:
|
|
| |
|
|
| Where can I get more help? |
|
| Think about your car that needs regular service and tune-ups to guarantee cool and smooth running. The same principle applies to your computer or PDA, BlackBerry. We provide you with the tips and tricks to tune-up your PC with practical hints and tools:
|
|
| |
| What is the solution to this problem ? |
| |
|
|
| Tip 1 |
|
- Rule 2: Use strong passwords and store them encrypted only - whenever you must use a password, such as for online banking purposes or for getting access to a Website, you should make the password hard to guess and crack. The suggestions might be trivial but follow the guidelines below when making up passwords use:
- both lower and upper case letters,
- some non-alphanumeric characters as well such as / & % ,
- please if possible, refrain from using a password that can be found in a dictionary, represents a date or a name (e.g., city),
- make your password at least 6 characters in length, longer is better, and
- use different passwords for different places.
You might ask yourself now how you can create secure passwords that you can remember as well? Don't worry, we have a:
- one page brief that will tell you how to come up with a password that is difficult to crack but relatively easy to remember (you have to sign in to get access - if you are not a member, register for free - create a new account, and
- free program that will allow you to store your passwords encrypted on your hard-disk - neat and easy to use and very handy indeed
.
|
| |
|
|
| Tip 2 |
|
- Rule 3: If in doubt, tell your firewall to disallow the action. It can surprise you how many 'people out there' want to know for no apparent reason what you are doing on the web. Why should they know if your server or PC is online or not. Your firewall acts like a traffic cop and sometimes will ask you if you will give permission for a particular activity to take place such as:
- Someone from PBUL-CHUMAK-NET.rosprint.net [212.176.49.56], port 30386 wants to connect to port 1080 owned by 'Firefox' on your computer. Details about application g:\firefox\firefox.exe
Permit Deny
Please click on deny and REFRAIN FROM MARKING
x 'Create appropriate filter rule and don't ask me again'
So it is smart to just say NO and to refrain from asking the firewall to create a rule for denying or permitting such traffic. If worst comes to worst the next time you start your machine again, you will have the option to permit the action if it is absolutely needed to get the services you want to get.
Incidentlly, if you need a good firewall, download CyTRAP's Choice firewall -- it's a real gem. |
| |
|
|
| Tip 3 |
|
- Rule 4: Use a good anti-virus and spyware program
Incidentlly, if you need a good:
|
| |
| Take another 2 minutes - More tricks to safeguard your information better |
| |
|
|
| Tidbit 1 |
|
- Rule 5: Be vigilant and cautious. Don't open any attachments being sent via e-mail to you unless you expect them and yes, not even one that you received from your lover
Please check first if he or she sent you the attachment before clicking on it.... otherwise you are acting like somebody who jumpts down a hole without making sure how deep it is beforehand.... would you ever do this? NOT. |
| Tidbit 2 |
|
- Rule 6: Use an intrusion detection software (IDS) or program. These programs detect malware products by their behavior rather than by looking for a characteristic signature. You can compare this to a detective catching a thief using his modus operandi rather than his fingerprint. But sometimes the former is easier to come by than the latter, especially if the malicious user is really clever.
If you need such a system you can try out this one but please read the description on the newsboard carefully, it will take time before the IDS works properly on your PC - patience is the key:
CyTRAP's Choice - intrusion detection system (IDS) for home PC |
| Tidbit 3 |
|
- Rule 7: Disable some Windows defaults that increase your risks. These are, such as:
- Some file extensions are hidden by default in Windows. To get rid of this problem, in turn, being given the file extension - .exe or .dll as default, do as follows:
-
- Start Windows Explorer and click on the Tools Menu,
- Select Folder Options,
- Click on View tab, Hidden Files and Folders,
- Uncheck 'Hide extensions for known file types'
- Autorun is enabled by default and can be turned off using Windows system tools. Nonetheless, a much simpler and easier technique is to do as follows:
- hold down the left Shift key when installing an XCP-protected CD or when putting a CD or DD into your drive, thereby preventing Autorun from being launched without you giving the okay first.
Having the default of Autorun disabled for DVDs/CDs is definitly smart - make sure you remember this command it can prevent you from disaster as the Sony/BMG example has taught us the hard way |
| Watch out |
|
- Rule 8: Make sure that you update your software regularly whenever a CASEScontact alert advises you about a newly discovered vulnerability and the patch that helps fixing this problem is being released. So you should be careful about:
- Using the Windows-update option the effective way
- check if your version is the most recent one, such as in Firefox click on tools > options > advanced > software update > check now
- Rule 9: Turn your modem off, whenever you are not surfing on the Internet or trying to send/receive e-mail. Would you keep your door unlocked whilst going to sleep? Most certainly not but having your computer stay online makes it viewable from the Internet and thereby increases the risk that a hacker comes by alling. In fact turn off your computer of (stand-by is not what we mean burns too much energy) as well, since it helps save energy on top of being another security measure.
Following the 9 rules outlined above will definitely reduce your risk for becoming a victim due to malicious code or a hacking attack, in fact combining:
- an anti-spyware tool, with
- anti-virus one, topping it off with
- a nicely tuned firewall, and, most importantly,
- cautious user behavior (e.g., neither open attachments without checking beforehand nor visiting untrusty websites)
will definitely improve the detection rate against a particularly nasty set of 100 assorted malware products that we downloaded from P2P networks and tested --> beyond 90% for sure.
Finally, you might still want to scan your PC to see what other nasty things could be running on your machine ==> check below, our latest rule.
- Rule 10: Use the Windows Live Safety Center- Find and fix safety and health issues on ==> offers you a complete scan checking for:
- viruses,
- wasted disk space,
- maintenance issues, and
- common open ports
Use Internet Explorer in order to download the free tool and run the test on your PC. Please remember that while this tool might find a virus or an infected file, your anti-virus software may have neutralized it already (i.e. anti-virus software A uses different techniques to clean files than B - enough to say that this can result in program A not understanding how B cleaned a file and flagging it as a virus instead).
Also, an infected file by itself does not justify you getting panicked. For instance, it could be in a directory your anti-virus program put it (e.g., it quarantined it) or you did not open the infected file anyway, because it was a suspicious attachment that arrived with an e-mail.
Please follow the maintenance tips regarding your hard-disk etc. closely, you will be glad you did.
Last Tip for 2005 will either be:
wireless technology - protecting your notebook, or else
how to do safer banking online. |
| |
| Administrative |
| |
|
|
| Author |
|
Urs E. Gattiker - CyTRAP Labs |
| |
|
|
| Revisions |
|
1.0 - 2005-12-08 - First Version
1.1 - 2005-12-15 - Revised Version
|
| Contact details |
|
Web: http://CASEScontact.org
E-mail: support01@CASEScontact.org
Tel: +41(0)76-200-7778 or + 44(0)70-9237-6036
Fax: +44(0)70-9237-6036, dial 3 send fax |
| |
|
--END of ADVISORY - Important Info Below-- |
 |
We recommend that you VERIFY ALL ADVISORIES you receive IMMEDIATELY, by clicking on the link provided at the top of this alert. |
|
NO WARRANTY
Any material furnished by CASEScontact.org is furnished on an 'as is' basis. CASEScontact.org, writers & sponsors make no warranties of any kind, either expressed or implied as to any matter including, but not limited to, warranty of fitness for a particular purpose or merchantability, exclusivity or results obtained from use of the material. |
|
Ride the rollercoaster successfully by subscribing to our alerts, tips, tools and skills training receiving them either via:
1) e-mail
2) RSS feeds, or else, just get a
3) free skills tune-up
|
|
NO WARRANTY
Any material furnished by CASEScontact.org is furnished on an 'as is' basis. CASEScontact.org, writers & sponsors make no warranties of any kind, either expressed or implied as to any matter including, but not limited to, warranty of fitness for a particular purpose or merchantability, exclusivity or results obtained from use of the material. |
|
CASES writers & sponsors do not make any warranty of any kind with respect to freedom from patent, trademark, or copyright infringement.
Full DISCLAIMER notice at: http://www.casescontact.org/terms.php
|
|
UNSUBSCRIBE
If you no longer wish to receive this TIP ADVISORY, please Unsubscribe at:
http://www.casescontact.org/unsubscribe.php
QUESTIONS, comments, ideas? Cheer us up at:Tips-Comments at CASEScontact.org
CASEScontact.org -- Threat Alerts and Security Notices --clear and precise, no compromise -
--currently hosted by Flashcable
|
|
-- END of TIP & Tricks ADVISORY--
Copyright (c) 2007 by CyTRAP labs - Urs E. Gattiker. All rights reserved. |
