Pinellas Computer Club

This article assumes you have read and understand the following articles first:
Computers 101 - #1 - Hardware & Software Basics
Computers 101 - #2 - Windows Basics
Computers 101 - #3 - Internet & Email Basics

But... “I don't do anything naughty on the Internet so I don't worry about security.”

Yea, right! But seriously, even if you only play Solitaire and read the newspaper from back home, you will become a victim. I'd bet you an hour of labor on it. So if you don't care about security for yourself (are you nuts?), do it for the rest of us. If everyone kept their stuff clean, Internet security would most likely not be the huge problem it is today.

This is one of the worst lies ever perpetrated on the general public. Any - I repeat - any computer can be the victim of security attacks. There is no magic machine that will guarantee your safety, period. Think of a Mac as a child's tricycle. When you grow up (not old) and enter the real world, you need a real computer and real skill. Linux & Unix are excellent and we actually build Linux-based PCs. But make no mistake; all computers require security protection and all users should develop good habits.

The Internet is essentially an informational representation of human society, and it's critical for it to remain free and open to everyone. However, that means it can contain all that humans have to offer, good or evil, for better or worse. You would not walk the streets of a big city alone without any protection or knowledge of the risks. Well, surfing the Internet with little or no understanding of proper security measures is just as dangerous and will certainly lead to disaster. Don't be paranoid; just stay informed and keep security in mind.

Aw, now come on... How bad can it really be?

Never underestimate what criminals and scammers are willing to do or say. Many victims are surprised at how bold and obnoxious they are. I hear things like “isn't that illegal” and “how do they get away with that?” They will lie, cheat, steal and yes, even kill (it has happened) to infect your computer, steal your information, steal your money, steal your identity and make your life miserable. Information security - on both the good side and the bad - is quite literally a multi-billion dollar industry. At least 80% of our business is cleaning infections. I wish it were teaching.

Knowledge is power. The MOST IMPORTANT thing is to EDUCATE YOURSELF. Reading this is a great first step. Nothing you put on your PC can make up for bad habits. Most users know you can get viruses from email, but these days that risk is quite insignificant when compared to some newer threats. The more you know about your system in general, the safer you will be. Even if you have no intention of being a computer geek, consider learning about security as the bare minimum you can get away with.

Familiarize yourself with what is “normal”.

Get to know your preferred security software well, so that you can easily recognize it should there be a problem. Learn the difference between webpage popups, program boxes, Windows alerts, etc.. If you see something you don't recognize, you will know to be extra cautious.

Beware of free downloads & other stuff.

Don't get me wrong; we love free stuff. Just be very suspicious of everything you download and/or install, free or otherwise. Most free stuff comes with something you don't want. Whenever downloading anything, always scan it for viruses and malware immediately. Whenever installing anything, choose the "advanced" or "custom" install options to un-check the stuff you don't want and didn't ask for. Read each window carefully to be sure of what you are getting. Be especially mindful of the “EULA” or “End User License Agreement”. That is legally required to tell you what the software will do and what it's for. Sometimes, even the EULA cannot be trusted. When in doubt, ask us.

Websites that require downloads to view them.

Remember that anyone can create a website... anyone. Watch out for sites that require you to install some kind of plug-in or add-on in order to play games or access some content like movies, music, pictures, icons, screensavers, themes, special information or other content. Most online media is handled just fine by the normal plug-ins like Shockwave/Flash, Windows Media Player, Adobe Acrobat/PDF and Quick Time. Chances are, if they tell you to install something else, it's malware. Look for a bar that appears at the top of your browser. It might say something about an "Active X" Control (very dangerous) or perhaps a file to download. If you are not sure of what it is, don't allow it. Ask yourself “why don't other sites require it?” When in doubt, ask us.

Fake or “rouge” security software and alerts.

This is where it gets really ugly. Some of the software out there that is supposed to clean your PC will actually infect it! Web pages can put almost anything on your screen and make it look like something you might trust. They might make it look just like a security alert or critical update. It may say something like "Your computer is infected! Click here to scan and clean your system now!". If it's not your own security software, DON'T DO IT! When in doubt, ask us.

But this popup says that my computer is infected!

You should know and trust the software you already use. Try to find out what put that message on your screen. If it is inside a web page, you can usually ignore it completely. If it is a separate window on your system that keeps coming up even when you are not surfing the web, then perhaps there is something to look into. If you ever think you are infected, disconnect physically from the network (unplug the modem & router) and run a full set of scans using your own tools. When in doubt, ask us.

P2P File Sharing and Instant Messaging File Transfers.

If you use P2P (Peer to Peer) programs of any kind, like file sharing (Kazaa, LimeWire, etc.) or Instant Messengers (like AOL's AIM, Yahoo's YIM, MySpaceIM, Skype, etc.), you need to know that you are directly connected to another individual's computer just like your own. That means you really have no idea what you might get or if it is safe. Always keep your antivirus running and scan each file completely. This means that you must know where those files are going. You should check the program's options to see where files are being stored. Look for “shared” or “library” folders. Because they directly connect you to other users (and to their problems), P2P programs are frequently the source of some really nasty buggers. That doesn't mean you shouldn't use them, just pay close attention and SCAN EVERYTHING. Oh, and keep your shared folders clear of any copyrighted songs or other stuff so the RIAA Nazis doesn't see the cool free music you've downloaded.

Fight the good fight, everybody! Protect yourself, your family, and your stuff.