Save Your PC From Cyber Extortion

Tech Analyst Larry Magid Offers Tips To Protect Your PC

(CBS)  Freund describes his company’s FireWall-1 GX with the integrated SmartDefense service as “an intelligent firewall that looks for anything out of the ordinary and automatically stops it. Instead of saying 'I know a specific vulnerability,' it says 'this doesn’t like look normal activity.'”

When evaluating firewall software, be sure that it has an auto-update feature to automatically update the software to protect against new threats as they are discovered.

Freund says DOS attacks “are notoriously hard to defend against.” But the good news is that a denial of service attack, which can slow down or even prevent access to your site, rarely puts you in serious jeopardy because they tend not to last very long.

Of course not all companies run their own server. Most small businesses rely on Internet Service Providers (ISPs) to host their Web site. If that’s the case, be sure to have a talk with your ISP to find out what they are doing to help secure your system. A common vulnerability is user scripts that run on ISPs servers. Scripts are pieces of software that can be used to customize your site to provide services such as surveys, customer feedback forms or web-based email.

While such scripts can be enormously useful, it is possible that they could have a vulnerability that can be exploited by a hacker. Discuss all your scripts with your ISP’s tech support department to be sure that they are considered safe and that you are using them in a safe manner.

Again, be sure that all software on your server, including scripts, are up-to-date. Out-of-date programs are notoriously vulnerable. It’s not uncommon for companies to issue new versions of programs to protect against security problems but to take advantage of those fixes; you have to install “patches” or the latest version.

Hackers have access to software that scans the net looking for vulnerable servers. If your server has software or scripts that are known routes for hackers to gain access, you’re a sitting duck.

Protecting the server is essential but it’s only part of the battle. Even if the server is well protected, there could be other sources of vulnerability, including the desktop or laptop computers of people inside or outside the company who might have legitimate access to the server.

For example, if the PC of an employee who accesses the server is hacked or compromised by a virus, worm or Trojan horse, it might be possible for someone with to obtain the usernames and passwords to get into the server and do virtually anything including shutting it down, defacing it or stealing data.

That’s why it’s important for everyone associated with the company to practice safe computing on all PCs and other devices that they use. That means using a firewall program on each PC as well as anti-virus software and software that protects against “spyware.” Spyware programs, like viruses, are malicious programs can be configured to do virtually anything to a PC ranging from popping up ads to logging all keystrokes, making it easy for the attacker to gather data that can be used to attack other systems.

As with servers, it’s important that all PCs with access to a server have up to date software. It’s especially critical for Microsoft Windows users to have the most recent security patches that can be found at windowsupdate.microsoft.com and it’s a very good idea to configure Windows to automatically update itself.

When doing a security audit, don’t forget consultants and designers who may work outside the company. If they have access to your server, you have a right to insist that they, too, practice safe computing practices including using different passwords for your server than they use for their own email or other programs.

One solution for PCs is an Internet security suite such as ZoneAlarm Security Suite (from Check Point subsidiary Zone Labs). Other major players include Symantec, Trend Micro, McAfee and Panda Software. Some of these programs protect against all of the known threats but not all, for example, include spyware protection so you might have supplement the software with additional programs such as free (user supported) Spybot Search and Destroy or a leading commercial program like Spy Sweeper from Webroot Software.

It may seem obvious but one of the most common vulnerabilities is simply insecure passwords. Don’t post your password on a sticky note on your monitor. Don’t give it out and never give it out to someone who calls you on the phone with a seemingly legitimate reason to know it. The IRS recently did a study where they had people call employees claiming to be from the IT department and an alarming percentage of people gave the person their password on the phone. If you get a call like that from your IT department or ISP, call them back. Never give it out to someone who calls you.

People have a tendency to use passwords that are easy to guess. Never use your name, street or anything relatively obvious as a password and always include letters or symbols or a combination of upper and lower case letters. One easy way to create a password that you – and only you – can remember is to think of a phrase such as “I dated John when I was 22” and build a password around those initials that like “IdJwIw22.” That password will be as easy to remember as your relationship and, hopefully, even John won’t figure it out.

Finally, if you do think you have a problem, know where to call. Have the phone numbers of your IT staff or ISP handy and, if worse comes to worse, contact the appropriate officials. You can learn more about computer security at the Homeland Security Administration’s United States Computer Security Readiness Team Web site at www.us-cert.gov.