Community Newsletter: Q&A forum: 3/04/05 New broadband subscribers: do's and don'ts

****Honorable mentions****

Answer:

Regarding Norton antivirus I say continue to use it if you feel it is doing the job. If you are unsure there are other programs out there that can do the job. McAfee, Trend Micro-PC-cillin are just a few well know programs. A web search of antivirus programs should bring up a list of manufacturers offering antivirus protection. Also, a large majority of these companies offers an entire suite of products which may include some or all of the following.
Firewall
Antivirus
ID & Privacy Protection
Email Security
Web Content Filtering
Anti-Phishing Protection
Spam Blocker

To protect your machine from hackers I recommend you look at some of the manufacturers listed above and also do a web search. Zone Alarm is the program I use and I am quite satisfied with it. Once again let me emphasize that there are a host of products out there that may offer a singular solution (antivirus protection only) or an entire suite of solutions for you.

Now lets speak about personal protection regarding divulging personal information over the internet. There are many phishing types out there. Below is a dictionary definition of phishing.

(fishing) (n.) The act of sending an e-mail to a user falsely claiming to be an established legitimate enterprise in an attempt to scam the user into surrendering private information that will be used for identity theft. The e-mail directs the user to visit a Web site where they are asked to update personal information, such as passwords and credit card, social security, and bank account numbers, that the legitimate organization already has. The Web site, however, is bogus and set up only to steal the users information. For example, 2003 saw the proliferation of a phishing scam in which users received e-mails supposedly from eBay claiming that the users account was about to be suspended unless he clicked on the provided link and updated the credit card information that the genuine eBay already had. Because it is relatively simple to make a Web site look like a legitimate organizations site by mimicking the HTML code, the scam counted on people being tricked into thinking they were actually being contacted by eBay and were subsequently going to eBays site to update their account information. By spamming large groups of people, the phisher counted on the e-mail being read by a percentage of people who actually had listed credit card numbers with eBay legitimately.

Some methods to help protect yourself against fraud and malicious attacks on your PC:

1) Never click on a link within an email
If you are unsure of the source of the email, you should not click on hyperlinks within emails that are apparently from a legitimate company. Instead, directly type in the URL in the Internet browser address bar, or call the company on a contact number previously verified or known to be genuine.

2) Use anti-spam software
This will help reduce the number of fraudulent emails you may receive.

3) Use Anti-Virus software
This will protect against trojan and worm attacks and can detect and delete problems before they contaminate your machine.

4) Set Up A Personal Firewall
Firewall's can monitor both incoming and outgoing Internet traffic from a computer. This can protect
the computer from being compromised, block virus entry and unauthorized entry into your computer.

5) Above All, Keep Your Software Updated (Antivirus, Firewall, etc.)
This is tantamount to ensuring you have done all you can to protect your system.

6) Always look for "https" and a padlock on a site that requests personal information
When submitting financial and personal information on the internet look for the locked padlock
On the internet browsers status bar or https:// at the start of the URL in the address bar. This does not guarantee that the site is secure but the lack of this is a definite indicator that web site is definitely not secure.
7) Keep your computer free of Spyware and Adware There are programs out there that can run against your system to search for spyware and Adware and remove it. Spyware and Adware are placed on your system and enable the intruder to monitor your internet activity. You dont want this happening as it may cause you to be swamped with pop-up advertisements, etc.
8) Keep Yourself Educated About Fraudulent Activity on the Internet
This site may offer some assistance: http://www.usdoj.gov/fraud.htm
Hopefully this has helped clarify some of your concerns regarding internet security and protection. The first and foremost thing you should remember is protect yourself. If you receive an email and dont know who it is from and it contains a link do not click on the link. Always remember the saying it is always better to be safe then sorry. Enjoy ADSL and your computer.
Submitted by: JoeV. of Highland, New York

***************************************************************************
Answer:

Welcome to the wonderful world of broadband!

First of all, I would recommend ditching Norton ASAP. While it's a well known brand and often comes with many computers (usually as a 30 or 90 day "trial" offer), Norton is a resource hog that has the bad habit of slowing the fastest machines to a crawl. I would recommend Panda Platinum Internet Security 2005. Panda tends to play nicer with many applications and catches and blocks anything the 'bad guys' would throw at you. Panda also updates at least once a day, often times more than once so you're always covered.

It also has a software based firewall similar to the one that comes with Windows XP, only IMO it's a better product. It's easy to configure and stops connection attempts in their tracks.

Now then, there's the question of adding a hardware based firewall/router between the PC and your DSL connection. It's generally a good idea to install one, but it's not mandatory. There generally are other benefits to adding a router/firewall to your system besides the protection factor. Many of them offer wireless access points as well as extra ethernet ports in case you get a 2nd computer or a friend drops by with his laptop and needs access. It might be a good idea if you plan on "roaming" around the house with a laptop to include one of these. DLink has some decent gear that's relatively inexpensive - around $50 USD.

Of course, your DSL provider may have a special "home networking" kit available. I find these to be decent (most of the time) and they generally provide decent support for their product. I've only had ONE less than satisfactory experience - and that was with the Earthlink home networking kit. The long and short of it - their support center is in India and communication was damn near impossible. Not to mention their menu system kept routing me to the wrong people. But that's a whole rant unto itself.

That generally should cover you from 99.9999% of external threats. The ones that are not covered are threats via e-mail or phishing/pharming scams or otherwise crooked sites. And this brings us to your 2nd question.

Unless you're in the process of purchasing something on the Internet, you should NEVER, EVER, EVER, EVER be required to give out a credit card number or other sensetive personal information. And if the site in question insists on getting that information from you, chances are fairly good there's something rotten in Denmark - and it's NOT the cheese. Chances are also fairly good that you can find at least 10 other sites that offer the same sort of content and won't be trying to borrow your identity or credit card number(s).

Many moons ago, there were several operators of "adult" sites that required credit cards as validation for a "free" trial access to their site. The argument was that in order to have plastic, you had to be at least 18 years old. And you can tell that to the guy who's dog got a platinum card. The reality of it is that it made it VERY easy for the porn site operators to start billing that card especially if the visitor didn't properly cancel his "trial" subscription. Of course, this makes a mess that some phone calls to the credit card company, to dispute the charge and have it removed.

MOST legit sites will NOT be asking you for your mother's maiden name, Social Security #, and credit card number(s) for validation purposes. Not even banking sites generally request that kind of information during inital setup.

Phishing is a technique that criminals use to try and rip you off by faking a bank's web site and having you log in under the pretext of "confirming your account" or some such jibberish. NO BANK in their right or left mind would ever have you do anything of the sort. The most obvious ones are those from banks you don't even have an account with. If, for instance, you bank with Bank of America and get a note from Citibank or some such, you're being phished. Your best bet is to report the incident to the bank/financial institution's fraud unit. They'll be happy to assist you.

"Pharming" is a relatively new technique that's a bit harder to spot.
Pharming is a technique where the bandits subvert DNS servers (the machines that direct www. mybanksite.com to "192.168.2.13"). They change the IP address to a server of their own where they can then gather your sensetive information so they can log into the legitimate site and rob you blind.

For what it's worth, Internet banking is cool and convenient - until something goes horribly wrong. Use it at your own risk.

More security recommendations:

1.) Get a "throwaway" freebie e-mail account - such as a Yahoo, Hotmail or G-mail account. Whenever you visit sites that are not really important and they need your e-mail address, give out the "throwaway" address. My regular e-mail account gets maybe two pieces of spam and other unwanted garbage per week but my throwaway gets a LOT of action that gets deleted.

2.) Get Firefox. It's more secure than IE. And it's not a bad little browser. Most sites you visit will show up just fine. However, on a positive note, most spyware won't find it's way onto your system.

3.) Read CNet and ZDNet often to be up to speed on things. Subscribe to newsletters if you don't already do so. Usually, if and when some new threat comes down the proverbial pike, you'll hear about it there first. Being informed is your best defense.

4.) If you want to buy something on the web, buy from a legitimate, known vendor. Go with a vendor that has a good reputation - such as Amazon.com and by all means use www.bbb.org - the Better Business Bureau's web site liberally to research a vendor you're doing business with before you click on the "commit" button. A little research ahead of time can save a LOT of headaches and heartaches down the road.

Submitted by: Pete Z.

***************************************************************************


Answer:

Steven:
Yours is a very good question for many people making the move to broadband. First understand that going to broadband means that your computer will continuously be attached to the internet so there are several things you need to do that are not necessary with dial-up. The first thing you can do to protect yourself, and many people don't think of this as protection, but turn off your computer whenever you are not using it. A computer not on is a computer not compromised.

I would take the following steps in this order:
1) Buy a good hardware firewall. A hardware firewall will keep outsiders from attacking your computer and can keep your computer from being a part of an attack on another computer system if you happen to pick up a trojan or a worm. You can buy just the firewall alone, or many units come in combinations of firewall and routers, which allow you to use several computers with one internet connection. When you set it up, take some time to change the default settings. Many people do not and that makes it vulnerable to attack. Change the IP address to something other than the default. Change the username and password to something other than the default.

2) Protect yourself from attacks from within your home. Install a software firewall like ZoneAlarm, Norton, Panda, or even use the Windows XP firewall. This will protect you from problems within your home network. Perhaps you have a desktop computer, a laptop, your wife or kids have their own computer. You may have several computers using this internet connection. If you or your wife or children swap or share files with colleagues or co-workers using USB jump drives, CDs, or diskettes, or download music or videos from the internet, worms or trojans can be introduced to your computers through this file sharing. A software firewall can alert you if something is trying to access your computer from any of the other computers in your home. If you have only one computer in your house, this is not so much of a problem, but the Windows XP firewall is free and fairly good, so enable it.

3) Install a good antivirus program and KEEP IT UPDATED! This will give you protection against virus, trojans,and worms that come in through your email or downloads.
The major virus players are McAfee, Symantec, TrendMicro, Panda, ect. that have good virus programs and often offered in combination with software firewalls and spam protection software. Many people have their opinions on which is the best product, but the point is USE ONE.

4) Install a spyware filter or blocker of some type. Lavasoft makes a good one that can be downloaded and installed free of charge called Ad Aware Personal SE. Spybot Search and Destroy is a good one and it is also free. There are others out there. Installing one, keeping it updated, and running it at least once a week will keep your computer free of spyware that can eventually steal personal information and make your computer start to act sluggish.

5) Spam filter. These are software programs that block the majority of spam from cluttering your email box. They can be set to various levels of protection and security. You will need to play with them a little so they don't block emails that you wish to receive, but it won't take long for you to find the proper settings. Installing a spam filter is not a necessity, but certainly there will be some point in time that you will want to use one as your email address gets pasted around to more spammers that salivate to fill your inbox with every conceivable advertisement and special offer. Check with your ISP to see if they already use a spam filter on your emails before they every get to your box. You may then not need to install one on your computer.

This leads me to the second part of your question. NEVER GIVE YOUR PERSONAL INFORMATION OR CREDIT CARD INFORMATION TO ANY EMAIL REQUESTING IT!! No reputable bank or credit card institution will ask you for your personal information via email. Not even if it is supposedly a verification of information they should already have.

I've offered you a summary of things to do to protect youself. Realize that this is only a summary. Each of the above steps is a little more involved but not really all that difficult to accomplish. Take the time to do each of the steps correctly and thoroughly, and you will feel a great sense of accomplishment knowing you did it yourself!

Submitted by: Steve S.

***************************************************************************

Answer:

Dear friend of C-Net,

this answer you will get from multitudes.

It is always good to upgrade to a higher speed.
The problems are always the same, but most people cannot know them because of the old Dial-Up connections. But just to make a point:
I had to spend a couple of thousand USD, not to count the time, because I did get a Virus when I still had Dial-Up. (there was no other connection here at that time).

1. If you get an ADSL you will get (or need) a stand-alone Modem.
Make sure with the supplier that the Modem works as a Hardware Firewall. I don't want to give any brands, as most of them do anyway. Just make sure.

2. Don't be a miser: DO purchase a Firewall-Software (Norton or McAfee, which I use successfully; or check with C-Net) Freeware is not the best.

3. From the same supplier (preferred to avoid mix-ups) get a good AntiVirusProtection. The same suppliers are recommended, as they have automatic updates, which you will not get from Freeware.
The automatic update is of utmost importance.
And do run the VirusScan once a week.

X. A word here about Freeware: The company ComputerAssociates (CA) is certainly a bona fide and good Software-Enterprise.
They offered me their Freeware for Virus-Protection.
That was very nice, but, and here comes the point: as Freeware they did not give automatic updates, and I virtually had to check 2 x a day, if there was a new *.dat - file.
If I did not do that, I would get their "latest" *.dat, but not the ones in between.
Please, see later.
This does not give CA minus-points, but they gave me Freeware, and it was up to me to take care to stay up to date.
I cannot blame them. They are right.

4. Unless you do not care about Spam, do install a SpamKiller (same suppliers).

5. As a matter of fact you can get from NORTON (SYMANTEC) and/or McAfee Packages for about USD 70.-- p.a. including automatic updates and additional features like Privacy Protection etc.
But as said before, choose one, it makes everything easier.
I like McAfee, maybe you prefer Norton, who cares, as long as the product is OK.

6. THESE YOU DO NEED at the moment you are connected through ADSL, as you are always "ON".
Therefore don't delay it.

7. Many people argue about the IE-Browser. They are nerds and only want to make a name for themselves.
The MS IE (always latest version {not beta} and always updated) is perfectly alright, fast enough and if you need more info go to Google, but don't install their Search-Bar, it can drive you crazy.
I have installed from WINFERNO the SECURE IE with PRIVATE IE.
This is a one-time purchase, but you get the settings to block (or allow) Pop-Ups, Flashes, and most important: you can control Active X - Controls. Always individually for each page you visit.
The SIE/PIE has saved me lots of time, and I don't have to watch all the Nudies.
(I am a man, but those things I don't like).
The PRIVATE IE -Part wipes your records, so that even Spyware cannot know, where you have visited.
It also informs you if a Spyware-Intruder tries to lay an egg, and, of course, you can block it.
If the PC is unattended, it does block these automatically.
I am very satisfied with this Appl.

8. Of course, you will have to download immediately the FREEWARE from LAVASOFT-ADAWARE and the SPYBOT.
Both do the same: they check, whether you have DATAMINERS in your system.
C-Net will confirm that it is recommended to use both.
But do not install more. There are hundreds of Freewares, but they only fight with each other.
These two are the Best of the Best, and don't fight.
The new "beta"-version of the MS seems to be quite alright, but it is a "beta"-version, and I would not install it as a beginner in "alwaysON".
I have installed it, and it creates a lot of un-needed hassle.
Stay with ADAWARE and SPYBOT and you are well off.

9. Important is that you keep ALL programs and apps. up to date, especially also the updates from MS-Windows. You can make a setting that you are automatically informed that "critical updates" are available. These should be installed by all means. MS has a very valid reason for that.
On top of that check every week via "Tools"-"Windows-Updates" and do install what is needed.
Not all is needed, but if it is not needed, it will also not be installed, its that easy.

10. THE MOST IMPORTANT TASK:
You have to install the above, or you will be THE VICTIM.
So, after you installed all the above go to a Web-Site www.grc.com
This site is not easy to navigate, but you will eventually come to the page "Port-Checks" or UPI.
Make both checks: i.e. "Common Ports" and "All Ports".
If the result is a) all ports in Stealth and b) all small squares in green you are well protected.
This is a free service, and I do it every two weeks, and to my delight --- all is green.
NOTE: To run these checks you have to dis-engage any "proxy-server". With Cable and/or DSL you usually have a proxy. In IE go to "internet-options" >> Connections >:> LAN.
If you find a proxy-server there, dis-engage it for the Port-checks, after that you can engage it again.

NOTE for C-Net: you should contact "grc" they are really Tops, and they like good counter-parts.

11. As I do not know your Operating System, I cannot know, whether you have this facility.
As I said, I run W2Kprof, and there I have a "Baseline Security Analyzer" which is a no-nonsense (strange for MS) Analyzing Tool.
If you can install it ( it is Freeware but does not come with the basic installation), do so and run it.
You will be surprised what you will see.
But do follow what is suggested, if possible. In Asia not all is available, that's MS again.

Probably other C-Net members were able to make better, or more correctly, shorter suggestions, but I stick to what I said, because it is based on (sometimes bitter) experience.

Keep up the good work, and best regards,

sincerely,
Harm

Submitted by: Frey C.

***************************************************************************

Answer:

Internet security is an important issue. Though dial -up is much slower than than the broadband products such as DSL and cable, the threats are essentially the same. I would think that the first step is prevention. Prevention goes a long way to stop problems from existing in the first place. I would break this into several key components.

1. Treat the websites you go to like strangers at your front door. Don't always except what you see as face value. If it seems to good to be true, it is.

2. Very little is free on the web without bringing a little friend along with it to spy one you or modify your computer.

3. Though firewall software works for the most part, it resides on your computer so stopping threats is occurring in your computer not outside. With the advent of physical firewalls and the fact that you are moving to broadband, gives you the option to install a physical firewall between your computer and the internet. They work pretty much like a security guard at your front door. No ones gets in unless you "say" or "click" with your mouse. A side benefit of this type of device is the ability to share this higher bandwidth to the internet with more than one computer. Few computer users ever consume it all with a single computer and at anyone time.

4. Having anti - virus software that is up to date and a good adware and spyware program will help keep your computer system out of trouble.

5. Maintenance - Take the time to keep your computer running well by at least defragging your hard drive.

6. Turn it off - shutting down your computer is a requirement not an election. Despite advances in the hardware area, there are still moving parts. From fans that keep your computer power supply and cpu temp down to hard drives that are spinning constantly.

Finally, consider all the above akin to policemen wearing body armor. While it protects most of you, don't go looking for trouble. You can get hit in the head and be dead. Stay away from Porn sites and websites with those irritating pop ups that tell you anything from free screen savers to your computer has problems. They are just leaders that beckon you into the trouble zone.
Kind Regards,
Submitted by: Bob A.
***************************************************************************

Answer:

Hi Steven,

These are very good questions, and I think that many people are still thinking too lightly about this !

The answer to your first question:
If you plan to upgrade to ADSL, you'll have to invest in a good firewall first! With ADSL you'll be automatically connected to the Internet when your PC is running. So you'll be continuously on-line. The danger in this is that the chance hackers and trackers will find your PC has increased significantly in relation to your previous situation, when you only start dial-up for sending e-mail or short browsing sessions. Hackers and trackers use probing-software that is continuously searching the Internet for 'leaking' computers with no firewall.

Microsoft's Windows XP (with service pack 2) has an internal firewall which is rather good to my opinion. If you're not running Windows XP or if you want to use another firewall, install a 2nd party firewall from Zone Alarm or any other company.

A good anti-virus protection, which is daily updated is vital for protection against viruses. You can choose to invest in the highest protection level and purchase a new anti-virus program, but maybe your Norton Anti-virus is still good enough.

Against malicious spy-ware, ad-ware, scripts (and Trojans and worms, which are not found by your anti-virus program) you might consider to install anti-spy ware programs such as Ad-Aware, Spyware Blaster, Spybot Search&Destroy. Also Update them regularly and run them at least once a week!

Last but not least: very important is to update your Windows at Microsoft's update center. On regular basis Microsoft brings out fixes, patches and service packs for bugs and security problems in there software which are found by users and professionals. So this is very important that you stay up-to-date with this issue! All Windows-versions have an auto-update feature which should be activated somewhere in the Control Panel usually.
Firewalls, anti-virus programs and anti-spyware programs are downloadable at C-Net's www.download.com.

The answer to your second question:

Never, and I mean NEVER give private information such as you address, e-mail, banking or credit card numbers for any purpose to a website which you do not know or do not trust for 100 percent! Better stay away from websites that are offering free stuff and so for filling in their web-form or answer their e-mail. Better stay away from this. This is a way how spam starts, and your e-mail inbox will be flooding with spam soon!

In some cases you can trust websites from companies that have a good reputation. Maybe you can ask your credit card company or VISA what their policy is and if they have al list of legit websites.

I'll hope to have helped you with useful information and good luck.


Submitted by: John V. of Woerden, The Netherlands

***************************************************************************

Answer:

I am not going to give you a long explanation. Just install these programs, most of which are free, and your computer will be pretty much bulletproof to the Internet. They operate together to create a 3-wall defense system:

Level 1:
AVGFree 7.0 Antivirus. www.grisoft.com Much better than Norton.
Zone Alarm Firewall www.zonelabs.com

Level 2 These 2 program are for auto-checking and cleaning any ad or spyare that gets through your firewall.

Spybot http://www.safer-networking.org/en/home/index.html
Adware SE Personal www.lavasoft.com

Level 3: Personal Inspection of what is running on your computer: These 3 programs overlap somewhat in functions, but each one does something different or better than the others. They let you see what your computer is doing so you can identity and remove anything that got by your first 2 levels of defense.

Process Explorer www.sysinternals.com
Win Patrol www.winpatrol.com .
Easy Cleaner http://personal.inet.fi/business/toniarts/ecleane.htm

Now as to your question about sending data to the internet. Here is what I do. I have 2 accounts in the same bank, an internet bank. One is a checking account with Visa debit card and billpay (for sending checks), and the other is a money market account (MMA). I keep about $10 in the checking-Visa account. (My bank does not have a monthly service charge no matter the balance so this doesnt cost me anything.) Because of the low balance, any charge over $10 to that account will bounce. I never use the MMA account for anything: it doesn't have a credit or debit card, and I never send its data out anywhere anytime by any means, and I dont write checks on it. Its only outlet is to the checking account. Thus it is as hidden as it can be.

Whenever I am going to make a payment with the Visa or bill pay, I transfer the required amount from my MMA to the checking. This takes about 3 minutes on the internet. Through this method, I, in effect, authorize each charge to my card by making the transfer. Anybody trying to charge my card will get a charge bounce. My window of vulnerability is usually only an hour or so between my deposit and the authorized charge, and then only up to the amount of the transfer to cover that charge. This system also negates identity theft as they arent going to get any money out of me.


Submitted by: Tom P. of Oaxaca Mexico.

***************************************************************************

Answer:

Answer:
Let me start by saying that to deal with the increasing world of viruses, hackers, spam, spyware and other stuff going around the web you will need to install some specific software that will help to minimize the risks.

The basic security combination recommended by almost all specialists is:
(1) use up-to-date antivirus software to detect and remove virus threats.
(2) have an effective firewall to protect against hackers and stop unwanted intrusions.
(3) have reputable antispyware tools to detect and remove adware, trojans, dialers, and other spyware threats.
(4) insure security patches are always current to insure new patches are installed on your computer before threats can reek havoc
(5) refrain from unsafe browsing habits or risky online behavior. Never" ever downloading anything from an unreliable source or downloading anything that you are not expecting.

On the market you will find a lot of dedicated software that will help you in the process of preventing for being infected or attacked. This software falls into to general categories: freeware and paid software.

You mentioned you are using Norton, but not specifying if you are using Norton Antivirus, Norton SystemsWorks, Norton Internet Security (includes a firewall protection) or all of them. Norton is a top of the list brand and the combination of Norton SystemsWorks (which includes Norton Antivirus) and Norton Internet Security will provide a good basic protection.

But you will need to be protected also against the other stuff. On this matter you will find that Lavasoft's free AdAware tool is a very good alternative. Spybot Search and Destroy is probably one of the most popular 'free' antispyware utilities on the market. Both Spybot S&D as well as AdAware are considered reputable free programs by most cyber security specialists who recommend free programs. Combined they perform a very good job if do not want to pay for detecting spyware software.
If you want to pay for protection on this matter Spysweeper is probably among the best alternatives, providing good protection and being very easy to use.
If you look for a free firewall probably ZoneAlarm is a very well known free firewall. If your OS is Windows XP Pro the firewall included in it is also a very good alternative mainly if you have installed SP 2.

Regarding providing personal information I will personally recommend you to visit www.scambusters.org where you will find of a lot of very good information and advises on this subject. They also issue a weekly free bulletin, sent by e-mail, providing good news about what is happening on the web and the risks a cybernaut is being exposed to. Basically never ever provide personal info unless you need to, if forced to do it look if the browser shows that you are connected to a safe site (watch the s included immediately after http letters, this means you are surfing a protected safe site), also watch that you are directed to the site you want to visit, in case of doubt call to ensure the address is correct and the one you are looking for.

Sorry for being so long.
Hope it works.

Submitted by: Alberto S. of Buenos Aires, Argentina

***************************************************************************

Answer:
Not to be "smart", but, the main thing is to use plain Common Sense !

Firewall and anti-virus programs are an excellent start and a necessity to help keep you safe online. But keep in mind that if you "invite" potential viruses and malicious applications into your computer, they will be a mute point. That includes opening attachments from unknown senders and downloading potential threats from the Internet such as .exe and .zip files.

Also make sure that the settings are correct for your firewall and anti-virus programs. In general, "medium" is good for your firewall - it allows you to surf and access most websites. Take the time to check what each available setting available means. Don't hesitate to click on the help button - Norton / Symantec has a great knowledge base to help you and find answers to your questions.
Most IMPORTANTLY, KEEP THEM UPDATED !!! Run a virus scan at least weekly to check your computer for suspicious items. Download the updates available to keep your protection current. New viruses and malicious programs come out daily ...

Another hazard to consider is spyware / aware that can be loaded onto your PC. There are two Free programs available that are excellent. "Ad-Aware" and "Spybot Search and Destroy". These can be downloaded at the download.com website. Again, keep them updated. ( Think about it, do you usually use products that are past their expiration / use by dates ? - No, you want things as fresh as possible so check if there is a newer version you can obtain ! )

Another valuable resource is the website pcpitstop.com. You can have your computer scanned for problems (FREE). The scan checks your security settings, looks for known spyware / adware, and tells you the general health of your computer. You can / will learn many things from that site.

As for your second question, NEVER give out private information about yourself to websites. If you are making an online purchase, make sure that there is a little padlock on your taskbar. That tells you that it is a secure website. A "https" address in the address bar informs you that it is "safe".

As to " Legit sites " ? Possibly, but you never know. In general would you give out personal information about your credit cards and bank to total stranger ? When in doubt, Don't do it !!!
* A "new" scam is called SPOOFING. You receive an e-mail asking about your bank / credit details with a link to confirm information. If you click the link, it looks Exactly like the site you Think it is ( such as PayPal and Ebay ) but it is NOT the actual site - you are redirected to a "spoof site" -
a twin look-alike that will graciously accept all your details and then have access to your life !
You do not get e-mail from companies asking you to confirm your private information - if you think it might be "real" - do Not use That link, go to the website, login, and if it is real, you got there on your own - not from the rather anonymous link. ( Login & Password is a safeguard for you )

Yes, use common sense when you are online ALWAYS !!! That is your number one protection !


Submitted by: Mary F. of East Chicago, IN

***************************************************************************


Dear Stephen,

You made the first step towards protecting yourself by realizing that Anti-virus software isn't enough. It takes vigilance and multiple processes to protect your computer and your identity while surfing the web. First, before you go out onto the web, activate Window's XP Internet Connection Firewall (assuming you have XP) and make sure that all your security updates have been installed. Make sure your Norton is up to date and run it. Don't go surfing until you do.The next step is understanding malware, what it is and how to protect yourself from each.

Malware are trojans, spyware, viruses and spam. Excellent articles and discussion forums on the differences of each and how to prevent them are available from CNET's sister sites, ZDNet and TechRepublic. Make them your next web sites to visit. The time you spend understanding these and taking steps to protect yourself, the less time you'll spend undoing the horrors that! malware can perpetrate on your computer. Next, check with your ISP. Many will provide free anti-virus scanning for your email, pop-up blockers and other programs that will work well with their system. Use them. If they don't, get a pop-up blocker, Spybot, and Lavasoft's Ad-Aware. The latter two programs are for removing spyware and adware. Ad a spam-blocker to the list. Use them regularly. ZDNet and TechRepublic are also a resource for getting these programs and learning how to use them.

While Norton is a good program, as with any AV software, it's only as good as you are about making sure it's updated. Norton has a suite of programs that includes a firewall, which is your next step. I personally prefer Grisoft's AVG Anti-virus software over Norton since it doesn't slow down your system as much, gives you quite a bit of flexibility and control, costs less, and updates itself daily. I also use ZoneLabs ZoneAlarm Pro ! as my firewall, in addition to XP's firewall. As with any firewall you need to know how to configure it. Read the user's manual. Both AVG and ZoneAlarm have free and pay-for versions.

If your ISP provides you with the ability to have more than one email address. Give yourself an email address for surfing and one just for your family, friends, work, etc. If the surfing one gets compromised by spam or anything else, it's easy to replace it.

The safest way to keep your computer free of malware is to make sure you have your software updated, you are using it, you don't download anything that comes from a pop-up and that you keep yourself up to speed on the latest threats.

With regard to your last question, about giving out information. Both the FTC and the Better Business Bureau will tell you NEVER EVER give your information to any site unless you are purchasing something. No reputable site will ask for ! your Social Security #. And, ONLY purchase something from a reputable and well-known site that uses SSL (when you're buying or providing information you see the little lock at the bottom right of your browser). No reputable bank or institution will ask for personal information over the web. This is where Phishing scams start and how many have their identities stolen. Identity Theft is the number 1 white collar crime in the nation and it's growing. Visit both the BBB and FTC sites to understand and learn how to protect yourself from IDTheft. It's safe to download materials from their sites.

I know this seems like a lot to do, but in the long run the investment of time and education really pays off. My computer has been running fine and malware-free for more than 2 years. You can surf to your hearts content, use e-commerce regularly, and enjoy all the web's great content,,,and be safe. It's up to you.

Submitted by: TJ T. of Cincinnati, OH


[Edited by: admin]

You can also use Mozilla Firefox, a hugely popular open source web browser with tabbed browsing, low memory consumption, pop-up blocking and more! You don't even get spyware trough this browser! This web browser is recommended by many internet security companies.

I am a long time broadband cable customer and I finally switched voer to DSL. The DSL came with a Modem/Router/WiFi hardware. I have always heard how great a "HARDWARE" {physical} firewall was when compared with a Software firewall.
But now I am finding out otherwise!
You see: I was advised from the get-go that I should uninstall my {SW firewall} ZoneAlarm to prevent any conflicts with the HW firewall. DSL provider provides no tech support if both SW+HW firewalls are utilized!
But without using a SW firewall, the DSL-connected computer is provided with ZERO outbound protection (aka; outbound/egress filtering). Short of using a Parental Control software, I am not able to find an alternative solution to a full-bore SW firewall installation.
Any help?

All great advice however--- Most DSL ISP's now demand a 1 or 2 year contract for any kind of decent rateso changing is not always an option. ALSO - Call Tech Support? Are you kidding. I use SBC -- and believe me if your problem does not fit the pre written screens the forgien fellow onthe other end will run you in circles. I spent HOURS with these guys only to find out the solution was a smnall Internet Explorer seting change. I figured this out myself after a sleepless night. (I just kew the problem was not thet bad....)

OH -- and SBC continually told me to disconnect my router and connect the DSL modem directly tothe PC. ALSO they said if I were using any software firewall -- ie. Zone Alarm etc. that also would need to be disabled.

Waht a buncjh of yahoo's.

Al Bartos -

You were wrongly informed. You should use both. I use both and have no problems.

Your message could not have come at a better time. I have just moved from a dialup to an ADSL connection 3 days ago!
I really enjoyed your tips, specially those pertaining to spyware and routers. It made great reading and I wish you and CNET more strength.
Jeh C.
India.

Every time you write a check you are giving your bank account numbers and your routing numbers. It has never been a problem for you before, right? Online "theives" can only get what you give them. Evidently you entered your bank account and routing number SOMEWHERE online. (Wal-Mart?) Why would you give your bank account information to Wal-mart.com? Were you buying something using your bank account information? Use only a credit card with fraud protection to purchase online. If you don't have a credit card, they are easy to get.

How to protect yourself? Don't give out any info online that could be used against you and that does not offer fraud protection. What did the bank manager suggest? He should have offered to change your account information at the very least. If not, change banks.

It sounds like you might have some spyware that contains a keylogger. This is probably how the telemarketer got your account information. Just do a search on Google for SPYWARE REMOVAL and install and run a few of the programs. (Ad-Aware, Spybot)
You can protect yourself by getting the spyware software installed and use it.

Also, get a credit card that offers fraud protection instead of giving out your banking information at Wal-Mart.

I'm sure your bank closed your account right away however, there is a safe way to purchase products on line which I use whenever I do on-line purchases. Check with the bank that holds your credit card and ask them about "virtual Account Numbers". If they don't offer this service go to another credit card bank. The program is downloaded to your machine and you access it whenever you need to buy something. It is protected with a password and your user name. They have to be typed in, copy and paste won't work. It generates a "one time use" credit card number which is linked to your credit card. Everything is changed except your name and it will fill in the form for you automatically if you so choose. That is the best that I have found.

The purpose of this (if the site is legitimate) is almost always to show that the user is: Ready to be charged and; Old enough to get a credit card.

Any other purpose would be very suspect.

Sites that you would not want to have your boss or HR person (or the network administrator) see you viewing in your cubicle at work. (READ: PORN)

Closing your browsers has nothing to do with someone accessing your LAN. You need to get a firewall SOFTWARE program to block access. ZoneAlarm works well for me and it is free. You can click the Block button when you leave for the day and it blocks ALL access. Tiny Personal Firewall is also good, but I think it lacks the Block button ease of blocking all traffic.
Hope this helps.

ZA is ok with my WinXP Firewall on. But I did read somewhere that XP firewall shld. be turned off if you have another software firewall installed. But it has caused no problem on my computer. I am leaving it on.

Great answer, or should I say answers. One more thought on spyware. I would move the spyware comment to the top of the priority list, in other words run the spyware before connecting to broadband. Anything that Steven does to prepare for broadband or processing purchases can easily be captured by the 'evil doers'. After removing all spyware then begin to set up and use his DSL connection.

Remember the golden rule in Internet use, "Don't give out any personal or private information and don't participate in (forward) mass mailed emails!"

Broadband Internet is true fulfillment!

I agree with you on the sites that ask for c.card info for verifacation but as for Norton, I use to think they were the best until I found out Norton let the trojan horse in and then told me it was on my machine. I got rid of Norton and use Zone Alarm, they tell me BEFORE the horse gets in that they just blocked it. With Norton I was fighting my fair share of horses but now I have no more battles. I hope that didn't jinx me.
As for credit cards, I use one only for the net, not anywhere else, but I spoke to the bank that issued it and they have "Virtual Account Numbers". They are a one time use number that is linked to your credit card account and the system is automatic when you say go and is protected by your user name and a password. For me it is the only way to shop.

I agree with Lee, great answer. I currently do all of these things and it is good to hear confirmation.
Thanks.