The Basics About DNSChanger, The Virus That Could Knock You Off The Internet

Posted on July 8, 2012 Written by Leave a Comment

Everyone’s talking about this virus that’s going to hit on Monday, July 9, 2012, but a lot of the articles are too technical. Here are the bare-bones basics you need to know.

What is DNSChanger?
A particularly obnoxious virus that affects Windows and Mac computers, and can be transmitted by other types of computers and mobile devices. It can also affect routers.

What does it do?
Changes your Internet settings so cybercriminals can serve you ads, steal your login information, and monitor everything you do online.

Gruesome technical details (optional)
DNSChanger alters your computer’s DNS settings. DNS servers translate ugly network numbers like 127.0.0.1 into nice human-friendly addresses like www.sophos.com. Normally your computer looks to your Internet provider’s DNS servers for these translations. DNSChanger redirects your computer to cybercriminal DNS servers, so everything you do on the Internet silently passes through their servers en route to its actual destination.

What could happen on July 9, 2012?
If your computer is infected with the DNSChanger virus, as of Monday, July 9, 2012, you may not be able to access the Internet. Because of the severity of DNSChanger, Internet providers worldwide decreed that July 9, 2012 was the last day the hacker servers would be allowed to stay online. After that, they pull the plug. If you’re infected and can’t get online, it’s probably because your Internet provider is blocking your computer as a public safety measure.

What do I need to do?

1. Check to see if you are infected.
Visit the DNSChanger Working Group (DCWG) website to see if you are infected. If you are, continue below.

2. Remove the virus from your computer
Most popular antivirus programs will remove DNSChanger. Be sure you are using legitimate antivirus and not lookalike scamwareDCWG has tips on what to do if you are infected.

These Tech Tips articles may also help:

Additional Resources

Image: FreeDigitalPhotos.net

Filed Under: alerts, antivirus, apple, beginners, business, computer help, consumers, cybercrime, Internet, Internet providers, mac, malware, microsoft, pc, security, small business, social engineering, spyware, viruses, web, windows

How To Recognize An Email Scam

Posted on June 18, 2012 Written by Leave a Comment

Email scams are inundating our inboxes. From fake Facebook links to phony software programs, cybercriminals use email as the bait for their hooks. And many people fall for it.

Rule #1: Never click on email links. You should always go to your Web browser and type the site name directly. Links are easily forged, and clicking bad links allows viruses to bypass your security and silently install themselves on your computer. Remember our motto: Think Before You Click.

We’re going to dissect three of the most common email scams: fake social-media messages, phony antivirus warnings, and counterfeit account statements. But first, let’s talk about how these scams work. All of them bear similarities: use of real logos, colors, and addresses; realistic-sounding language; and links that look like they lead one place when they actually go somewhere else.

Don’t rely on poor grammar or punctuation to tell a scam from the real deal. Some scams may be amateur efforts, but others are so convincing that it’s almost impossible to detect them. It’s best to err on the side of caution and never click links in any email messages.

(Click the screenshots below to enlarge them and see how these email scams try to trick you.)

The Facebook Fake-Out
What It Is: False messages from popular social media sites like Facebook, LinkedIn, and Twitter are a popular way to harvest passwords and sneak viruses onto your computer. People are used to getting email from these sites, so they will click without a second thought. As a result, social media has become the top method of computer virus infection.

How To Avoid It: Never click on links in email. Go directly to Facebook, LinkedIn, Twitter, and other social media sites by typing the site addresses into your Web browser. Don’t try to reset your password via instructions or links in email – and shame on LinkedIn for encouraging people to do exactly that in their recent password breach. See, even real companies get security wrong sometimes, so don’t listen to bad advice no matter who it’s from.

The Phony Antivirus Program
What It Is: Rogue antivirus is fake software that tricks you into installing it, usually by displaying phony infection warnings or upgrade notices. I’ve discussed rogue antivirus before; you can read about it here and here. Once a rogue antivirus program commandeers your computer it will disable legitimate antivirus, regenerate itself if deleted, and even hold your data for ransom.

How To Avoid It: Don’t install software on your computer unless you know where it’s from. When in doubt buy a packaged program from a store. Go directly to security software makers’ sites to buy and download software rather than relying on links in email.

The False Billing Statement
What It Is: Counterfeit billing statements attempt to harvest your password and account credentials. This information can be used to gain access to other accounts including your bank accounts and credit cards.

How To Avoid It: If you receive electronic statements, don’t click links in them. Visit the site directly to enter your account information. Never believe a password reset email or instructions to “verify” your account.

These are not the only scams in town. Fake package delivery notices, marketing surveys, and other scams abound on the Internet. It’s up to you to learn how to recognize and avoid them, but hopefully this has given you a head start.

Filed Under: antivirus, apple, beginners, computer help, consumers, cybercrime, email, facebook, Internet, linkedin, mac, malware, microsoft, norton, passwords, pc, phishing, scams, scareware, security, small business, social engineering, social media, spam, spyware, twitter, viruses, web, windows

How To Avoid Malware On Mobile Devices

Posted on May 29, 2012 Written by Leave a Comment

Android malware rose 1,200% last year. Android represents 59% of smartphones shipped in 2012 Q1. This does not bode well.

Mobile device security is not on the average person’s radar, yet we’re toting these devices everywhere and using them for just about everything. Clearly we can’t afford to be lax.

Here is an easy primer on how you can protect your mobile devices from malware, whether you use an Android, iPhone, iPad, or other device.

Only buy apps from approved stores
Android users in particular are getting kicked in the butt over installing apps from non-Google marketplaces. Perhaps you think you’d never do that, but poisoned search engine results and malicious web pages can trick you into thinking you’re using Google’s marketplace when you’re not. Be careful when installing apps.

Don’t jailbreak your phone
Jailbreaking means working around the manufacturer’s lockouts so you can have more freedom to play with the configuration. It also can brick your phone – as in, turn it into a useless brick – and opens a greater possibility of malware infection. So unless you are a professional geek, don’t do it.

Install antivirus
Mobile antivirus may be rudimentary, but you still want it. Here are some choices:

Apply computer security to mobile devices
You know all those things I keep saying about not clicking links in email, avoiding Facebook scams, and so forth? They apply to your mobile devices, too. That’s the other way mobile malware is spreading, via social media and drive-by download.

Tell your friends
Let the people around you know about the importance of securing their mobile devices. Why not start by forwarding them a link to this article?

How are you protecting your mobile devices? Share in the comments!

Image(s): FreeDigitalPhotos.net

Filed Under: android, antivirus, apple, ios, ipad, iphone, ipod, malware, microsoft, mobile computing, norton, security, smart phones, software, spyware, symbian, viruses, web, windows phone

What You Need To Know About Mac Viruses

Posted on May 11, 2012 Written by Leave a Comment

In today’s The Northwest Herald article “What You Need To Know About Mac Viruses“, I talk a bit more about the Flashback virus and how Mac users can protect themselves. From the article:

First, it helps to understand the history behind Mac security. Contrary to popular belief, Macs have never lacked for viruses. The myth that Macs are invulnerable has made it harder to convince Mac users that security is a necessary and vital part of computer ownership. Every once in a while we get a virus like Flashback that catches peopleʼs attention, but eventually we fall back into old patterns. Complacency is a Mac userʼs greatest danger.

Here are several of my Tech Tips articles that will help you get up to speed on Mac security.

Besides installing antivirus, the best thing you can do for your Mac is to keep its software updated. Run Software Updates under the Apple menu on a regular basis, but remember your other software needs to be updated too. Just this week I sent out several warnings via Twitter about emergency Microsoft and Adobe updates that need to be installed ASAP. Don’t forget that security warnings often apply to Mac users as well as Windows ones.

Want more on Mac security? Subscribe to Tech Tips free by email, and don’t forget to follow me on Twitter @trionaguidry for breaking computer news and other geeky stuff.

Filed Under: adobe, antivirus, apple, articles, emergency, mac, malware, microsoft, microsoft office, microsoft word, northwest herald, scams, scareware, security, social engineering, software, spyware, viruses

How To Remove A Virus From Your Mac

Posted on May 1, 2012 Written by Leave a Comment

With the Flashback virus and its variants on the loose, there’s been a welcome focus on Mac security. But most of the instructions you’ll find for removing a virus are written for Windows. Here is how to remove a virus from a Mac.

First, you’ll want to read this article I wrote on What To Do If Your Computer Is Hacked, because much of the same advice applies here. Then…

Step 0: Install Mac Antivirus
The best protection is prevention, and antivirus software is as mandatory for Macs as it is for PCs. Apple’s built-in defenses are not enough. Here are my recommendations on Mac antivirus. My two favorites are Sophos and Intego. The freebies are fine but honestly, a solid security software suite is one of the best investments you can make for your computer.

Freebies:

Paid:

Step 1: Scan For Viruses
Use your antivirus program to scan your Mac for viruses. Be sure to include any external hard drives or other volumes. If you are sharing drives from other Macs, it’s much faster to scan on the local Mac than scanning across the network.

Remember, it’s not just Mac viruses you’re worried about. Macs can’t be infected by PC viruses, but they can and will transmit them, to the displeasure of your Windows friends. Please be a kind neighbor and make sure your own house is tidy.

Step 2: Do A Second Scan
It’s always a good idea to get a second opinion by scanning with a different program. Select an alternate from above, but don’t try to run both at the same time or they’ll step on each other’s toes.

Step 3: Remove Viruses
In What To Do If Your Computer Is Hacked I wrote:

Your computer could have been infiltrated by a virus, a worm, a Trojan horse, a keylogger, a rootkit, scareware, malware, adware… These are all different types of attacks with different purposes, meaning there are greater and lesser degrees of infection.

Same thing applies to your Mac. Some viruses are just junky adware and easily removed. Others are nefarious keyloggers that embed themselves deep down in your system where no one will find them. Of course you don’t want any viruses on your computer, but some are worse than others.

Use your antivirus tool(s) for removal. Macs tend to clean up quite a bit better than PCs after infection, so in my experience reinstall isn’t required nearly as often. But be careful if you do a Web search for removal tools for specific viruses. Thanks to poisoned search engine results, a search for “Flashback removal tool” returns links to the virus itself!

Step 4: Secure Your Mac
If you’ve gotten this far, in all likelihood the viruses are gone. However, there’s no way to guarantee that. As I wrote in the same article

There is no way to confirm if a computer is free of viruses. I don’t care what any virus removal tool says. You can be 99% confident, but not 100%. When in doubt, reformat. It’s a pain but better than having a computer that keeps reinfecting itself. Remember, a virus can regenerate if even the tiniest portion of itself is left behind.

Assuming you’d rather not go through all that again, go back to Step 0 and make sure your Mac has proper antivirus installed. Then move on to Step 5…

Step 5: Follow Good Security Rules
The best software in the world won’t protect you if a wily cybercriminal can trick you into clicking something you shouldn’t. All that good advice about Windows security applies just as much to you, so watch out for Facebook scams, phishing emails, phony login pages and all the rest of it. If the idea of that daunts you, don’t worry. Just follow Tech Tips via email, Web and Twitter, and I’ll keep you in the know.

Some related Tech Tips articles you might find useful:

Questions about Mac security? Ask in the comments!

Filed Under: antivirus, apple, ipad, iphone, ipod, keyloggers, mac, malware, rootkits, security, social engineering, spyware, viruses

Five Things That Annoy Me About The iPad

Posted on April 19, 2012 Written by 7 Comments

For the most part I like my iPad, but there are a couple of things about it that drive me nuts. We always hear about how great the iPad is. I want to share with you some of the things I can’t stand about it.

Saving files
Who’s the genius who came up with this? To save a file from an iPad you have to “share and print” it to iTunes, then sync the iPad to your computer… then MANUALLY copy it onto your hard drive? I’m having a flashback to my old TRS-80 days, saving data onto cassette tapes – a process that was a lot more straightforward.

Most people aren’t even going to find this setting. In iTunes, go to your iPad, then Apps. There’s a section at the bottom that lists the apps that can handle files (not all can). Select the app, select the file, save it to your hard drive. Yeah, like that was intuitive.

I’m a full-time writer. I write on my iPad – a lot. Saving files is a pain. This process means I have multiple versions of various documents lying around, and have to rely on modify date to tell which one is most recent.

And no, Apple, I do NOT want to use your spiffy new iCloud service to make this easier (see below). I just want to sync a basic text file from the device in my hand to the computer less than two inches away. How hard is that?

Cameras
I don’t need two cameras. I don’t even need one camera. But if there’s going to be a camera I want a physical way to turn it off, like a lens cap or a mechanical shutter. There are viruses that can turn on your camera without your knowledge and I want some control over that beyond antivirus.

At the moment, the cameras on my iPad are secured via the highly technical method of taping Post-It Notes over them.

Newsstand
This is the future of periodicals? I am not impressed. I wanted one device upon which to read all my stuff: books, newspapers, magazines, the Internet. Works great for the first and last, but my periodicals are scattered all over the place. Some have their own apps, others come in via Zinio or Newsstand. And that’s just the standard periodicals, never mind the comic books. It’s a jumble.

As a side note: I wish all magazines would give print subscribers the option of logging into digital content. If I’m paying for a magazine to be physically delivered, I should be able to get that same magazine digitally delivered.

iCloud
Look, Apple, I don’t want to sync my entire life to a device, okay? I like the fact that I can choose to do so, but I don’t like being nagged every five seconds to change that choice. (Ping, I’m looking at you too.)

And I know I’ll probably be forced to use iCloud eventually if I want to take advantage of new features. Apple will make the choice for me because it’s easier for them, in much the same way I had to embrace Google Reader to use a halfway decent RSS app.

Antivirus
Antivirus for mobile devices reminds me of the old DOS command-line scanners. This is partly because of the stupidity of the file-saving process. Antivirus for iPad only scans files in certain places, like your iTunes save files or an FTP account. It’s not necessarily going to warn you if some sneaky new Trojan is burrowing into your iPad in real time. And, like any antivirus, it’s not going to prevent someone from tricking you into clicking on something you shouldn’t.

Being an iPad owner isn’t all fun and games. What annoys you about Apple’s ubiquitous tablet?

 

Filed Under: antivirus, apple, cloud computing, consumers, file sharing, hardware, ipad, itunes, mobile computing, privacy, security, viruses

What To Do If Your Computer Is Hacked

Posted on April 16, 2012 Written by 1 Comment

A hacked computer is an IT nightmare come to life. What would you do if your computer was hacked? What should you do?

Step 0: Is Your Computer Really Hacked?
This article describes what to do if your computer is hacked – infiltrated by a virus or overcome by scam software. But it might not be your computer that was hacked.

  • If people are getting weird emails from you, then your email is hacked. Here’s what to do if your email account is hijacked.
  • If you can’t get into a certain account (email, Facebook, Twitter) then either there’s something wrong with your password, or possibly that account has been hacked – see above.
  • If your computer is misbehaving, it may simply be having a temper tantrum. (They do. Trust me.) That’s not a hack attempt, it’s a tech support problem. Here are some suggestions.

Let’s assume it really is your computer that’s been hacked. Now what?

Step 1: How Badly Were You Hacked?
Define “hacked.” Your computer could have been infiltrated by a virus, a worm, a Trojan horse, a keylogger, a rootkit, scareware, malware, adware… These are all different types of attacks with different purposes, meaning there are greater and lesser degrees of infection.

When I see a computer that has a couple of pieces of adware on it, I don’t worry. I clean it up, make sure there’s decent antivirus installed and all the software is current, and call it a good day.

When I see a computer infected by a program that is monitoring every single keystroke, I back up the data, reformat the computer, and start from scratch. I don’t like keyloggers. I don’t like viruses that stealth around in the background. I don’t like unwanted programs that call home with MY data.

Step 2: Damage Control
Run scans, starting with your usual antivirus program. Windows users also want to run free Malwarebytes which can catch anything your antivirus misses. Mac users, give the free Sophos Mac Antivirus a try.

What you do in Step 4 will depend on what your scans find. In the meantime…

Step 3: Find Your Backups
I didn’t say make a backup. It’s too late for that; the backup will be infected. Don’t bother unless you have live data on the infected computer that you absolutely can’t afford to lose. (And if you’re in this unfortunate position, you’ll never fail to have a current backup again.)

Step 4: Removal
By now your scans from Step 2 are done and you have an idea what’s happening. From a UNinfected device, do a Web search on some of the viruses that have been identified. This will tell you where they rank on a scale from minor inconvenience to major calamity.

There is no way to confirm if a computer is free of viruses. I don’t care what any virus removal tool says. You can be 99% confident, but not 100%. When in doubt, reformat. It’s a pain but better than having a computer that keeps reinfecting itself. Remember, a virus can regenerate if even the tiniest portion of itself is left behind.

You can do a Web search if you need a removal tool for a particular virus – but remember, viruses often hide behind malicious links to fake removal tools for those same viruses. Sneaky, huh?

Step 5: Keep Watch
By now you should be relatively confident that your computer isn’t hacked anymore – but you have to keep watch to make sure.

Sometimes computers have problems after being infected, even if the viruses have been removed. Viruses can cause legitimate programs on your computer to crash – after all, it’s not like the virus-writers care if their software is compatible. Viruses often corrupt your system software, another reason why reformatting is often the best option.

If you didn’t reformat but your computer won’t behave, you may have to go through with the refomat after all. It’s the only way to get a clean copy of your operating system.

This same process applies to any hacked device, from servers to iPads: assess the threat, then either choose cleanup or start from scratch.

Ever had your computer hacked? What’s the one thing you wish you had known? Share in the comments!

 

Filed Under: antivirus, apple, computer help, disaster recovery, keyloggers, mac, malware, microsoft, pc, rootkits, scams, scareware, security, spyware, viruses, windows

Why The Flashback Virus Doesn’t Worry Me – But Every Other Mac Virus Does

Posted on April 12, 2012 Written by Leave a Comment

By now you’ve heard of the Flashback virus, which has infiltrated hundreds of thousands of Macs worldwide. There’s a lot of talk about whether the Mac’s reputation for invulnerability is shot and what Flashback might mean for Apple’s business.

I have some news for you. Don’t worry about Flashback.

This happens every few years – a major virus outbreak combined with widespread media coverage. That’s why Flashback doesn’t worry me. It’s gotten enough coverage that there are ample removal tools and instructions on what to do if you’re infected:

It’s all the other Mac viruses out there that worry me.

I’ve been in Mac security a long time – over twenty years. And I see the furor rise now and then over one Mac virus or another. The truth is we need to be thinking about Mac security continuously and not just when one particular virus runs rampant.

Macs have never been invulnerable. They don’t suffer the same problems as Windows, but they definitely have their own issues. One, unfortunately, is user complacency. Most people don’t even run antivirus on their Macs. Look through my Tech Tips archives and see how many times I’ve begged folks to do that. It’s a blind spot in the Macintosh mentality, one that needs to change.

Apple tends to encourage rather than counter this complacency, probably because it works to their marketing advantage. Not that they ignore security, but it typically takes a back seat. In that respect Flashback is helping by bringing the problem to the foreground.

Mac users need to take matters into their own hands. Here are my best recommendations on Mac security:

(Like this? Subscribe to my Tech Tips email list to get my latest Mac security news and more – no spam, no jargon, just a little computer help from yours truly.)
Filed Under: alerts, antivirus, apple, emergency, keyloggers, mac, malware, rootkits, scams, scareware, security, social engineering, software, spyware, viruses

Five Essentials Every Computer Needs

Posted on April 9, 2012 Written by Leave a Comment

Whether you use your computer at home or work, some essentials are universal. Here are resources for your PC or Mac that can help you out of a crisis.

Related article: Five Essentials Every Computer Needs (The Northwest Herald)

Security

Alternate Web Browser

Easy Backups

Microsoft Office Files

PDF Creation

Don’t forget to subscribe to Tech Tips by email and follow on Facebook. You can also follow @trionaguidry on Twitter.

Filed Under: acrobat, adobe, antivirus, apple, articles, backups, firewalls, google, Internet, internet explorer, mac, malware, microsoft, microsoft office, microsoft word, northwest herald, opera, pc, pdf, safari, scareware, security, software, spyware, viruses, web, windows

Is Your Security Software Everything It Should Be?

Posted on March 15, 2012 Written by Leave a Comment

Security software isn’t just antivirus anymore, and it’s not just for your computer. Today’s security solutions encompass the ever-changing ways in which we use technology. Unfortunately, many people don’t realize the importance of upgrading.

One subscription to rule them all
Companies like Symantec, McAfee, BitDefender and Kaspersky are recognizing consumers’ need to protect their mobile devices by offering subscription-based options. This is the future of security for consumers, in which one subscription covers everything including computers, smart phones and tablets. It’s especially convenient for busy people on the go and families with multiple devices.

Social media support
Integrated support for social media like Facebook and Twitter has become standard. Even so, we still live in a world in which removal tools aren’t crafted until after viruses are already in the wild. To fight that, we’re seeing better detection capabilities and heuristics.

Consumers should replace old versions
Unfortunately, security vendors have made it so easy for consumers to continue the subscriptions for their old programs that people aren’t encouraged to upgrade to the latest versions. The idea was to make sure people didn’t let their antivirus expire, and at the time that made sense. In retrospect I’m wondering if we’re shooting ourselves in the foot.

The difference between renewal and replacement
If you renew your security software you keep the version you have for another year. When you upgrade or replace, you purchase the latest version of the software for a year. Usually the upgrade is slightly more expensive, which is why many people opt for renewal instead. And it’s not always clear why the fifty-dollar antivirus is cheaper than the eighty-dollar antivirus.

It’s confusing because most people look at their subscription date rather than the version date of the program. They see their subscription ends in 2013… but the program itself is dated 2009, and that means it’s not current.

Security vendors need to improve purchase process
I understand why vendors offer the option of renewal. The thought is that basic antivirus is better than nothing, and there’s something to be said for that. But I see a majority of people going for renewal because the purchase process is vague and because renewal is cheaper.

I take security vendors to task for not altering their sales strategy. They need to explain WHY upgrading is so much better than renewal. Maybe we need to discontinue renewal entirely.

If nothing else, make the purchase process crystal-clear. People deserve to know what they’re buying, and I think they will pay the additional cost for an upgrade if they realize the cheapest option is also the least effective.

Subscribe free to Tech Tips, and don’t forget to follow me on Twitter @trionaguidry for breaking computer news and other geeky stuff.

Filed Under: antivirus, consumers, cybercrime, facebook, ipad, iphone, ipod, malware, mobile computing, norton, product reviews, security, social media, software, spyware, twitter, viruses, web
« Older Posts
Newer Posts »