Triona's Tech Tips

Computer infections go by many names: viruses, Trojan horses, malware. But there is a particular class of infections that is not only malicious but nearly invisible in nature.

Keyloggers are virus-like programs that capture everything you type on your computer. Because they sit between your applications and the software than drives your keyboard, they are difficult to detect and harder to remove. They are often invited by viruses that have already infected your computer. There are even hardware keyloggers that can be secretly installed between the keyboard cable and your computer.

Keyloggers are seen in conjunction with rootkits, software designed to capture control of your computer. Anti-rootkit tools can help keep keyloggers at bay. Although these tools are not yet part of standard security suites, in the future I anticipate we’ll see more commercial protections against keyloggers and rootkits.

In the meantime, how do you protect yourself? The usual recommendations apply: run a strong security program, avoid clicking on links, and make sure all of your software is up to date. It’s far easier to avoid keyloggers and rootkits than it is to remove them.

Subscribe free to Tech Tips and receive bonus tips, tricks and product reviews. Click here to subscribe or send email to techtips-request-at-guidryconsulting-dot-com, subject “subscribe”.

If you’re still wondering why securing your computer matters, you might be interested in this recent article. Hacking is not limited to Russia and as the article notes, cyber attacks are increasingly being used to achieve political as well as financial gain.

Your computer may well be part of the “cyber-criminal ecosystem,” if it is has become a zombie controlled by rogue software. Protecting our computers now affects others in real-life ways.

Don’t forget our four legs of the computer security chair, and be sure to sign up for the email version of Triona’s Tech Tips for the latest computer bulletins. And have a happy and safe New Year!

Not long ago, the simple, anonymous thrill of exposing chinks in American software was enough of a payoff for a Russian hacker. Today it’s cash. And almost all the targets are in the United States and Europe, where Russia’s notorious hackers pilfer online bank accounts, swipe social security numbers, steal credit card data and peek at e-mail log-ins and passwords as part of what some estimate to be a $100 billion-a-year global cyber-crime business.

…

Yevgeny Kaspersky, chief executive of Moscow-based Kaspersky Lab, one of the world’s leading computer security firms, says Russian hacking flourishes as “a cyber-criminal ecosystem” of spammers, identity thieves and “botnets,” vast networks of infected computers controlled remotely and used to spread spam, denial-of-service attacks or other malicious programs. A denial-of-service attack floods a Web site with inquiries, forcing its shutdown.

If the cybercrime situation is so dire, what can an average person do about it? I present the four-legged chair of computer security. Without all four legs, your computer’s defenses could collapse.

• Antivirus software
  You know this; what you may not know is that antivirus alone does not catch every threat.
• Anti-spyware software
  Spyware is software you don’t want, similar to viruses but using different tactics. Adware, malware, keyloggers, Trojan horses, they all fit into the category of spyware.
• Firewall
  Just like a fire door in a hospital, a firewall keeps out Internet nasties that try to sneak under the radar of antivirus and anti-spyware software.
• Regular updates (“patches”)
  Every program has bugs, and these bugs can be used by viruses to manipulate your computer. Harden your security defenses by keeping your software up-to-date.

At home, you’re your own computer security czar. Run a full-fledged security suite, and install a firewall for extra protection. (See the sidebar, right, for suggestions.) Remember, you must purchase security software yearly, and update it every few days. And don’t forget those patches! For Windows I like a combination of Microsoft Update plus Secunia’s Personal Software Inspector. Mac users, be sure to check for new patches via Apple’s Software Updates, Adobe Updater and the other update features of your software.

If you have a company-owned computer, talk to your IT department about the protections that are installed. Find out if your corporate network prevents laptops from logging on unless the laptop has updated security. You can also explore one-time password systems, or biometric options like the fingerprint scanners now built in to most laptops.

Do you have questions about protecting yourself from cybercrime? Ask them here (click Comments below any article), and be sure to sign up for the email version of Tech Tips for bonus tips and product reviews.

Imagine there’s a knock at your door. “Police,” they say. “You’re under arrest for child pornography.”

Are you a computer criminal? You could be a thief, a spammer, a spyware sender… and you could get arrested for it, all without knowing.

Take the case of substitute teacher Julie Amero. She was given a classroom computer that, according to reports, was completely unprotected, and when the machine displayed pornographic popups, she was arrested for child endangerment. Another article tells the story of a state employee arrested for having child porn on his work-provided laptop, which did not have functional antivirus software.

Most people have no idea whether their computers are truly protected from Internet threats. We pay token attention to antivirus, or trust that our company-owned computers are defended. Computer makers leave it up to the consumer to figure out how to install and maintain security software. What can you do to ensure you’re not the next victim?

You don’t have to be a tech expert, and it doesn’t take much time. See this month’s Tech Tip on How To Protect From Cybercrime.

And if you are ever in doubt, feel free to post your computer questions here (click Comments below any article) and I’ll do my best to answer them.

[This article is reprinted from the February 2007 issue of Triona's Tech Tips. I continue to see many zombied computers on my daily rounds, so be sure to keep your antivirus and other protections updated. See the sidebar (below right) for Windows and Mac security options.]

It seems a strange time of year to think about monsters, but there could be a zombie lurking right in front of you. Your computer is a prime target in the botnet wars, waged by criminals making money at your expense.

Zombies are compromised computers, organized into so-called botnets and offered to the highest bidder. Advertising, spam, spyware–most of it comes from zombied computers, their owners blissfully unaware. Security experts estimate there are up to 3.5 million zombies active worldwide, and at least 250,000 are added daily. Fifty percent of the targets are home computers, and new attack variants are up 536% from last year (according to Ciphertrust). The statistics alone are scary.

If that weren’t enough, it’s hard to tell the good guys from the bad. I almost flipped the first time I saw one of those commercials on TV, offering to “stop computer viruses”. It was from a company that has been known to distribute spyware! How is the average consumer supposed to know whom to trust? It’s hard enough for an IT pro like me to keep up.

So let me tell you how you can protect yourself and your computers from this nightmare. The best defense is prevention. Once your computer is infected, the only sure way to disinfect it is to reinstall from scratch. The standard safety rules apply: use a firewall, and keep your protection software up-to-date. As I’ve mentioned, you should avoid opening attachments from people you don’t know, or that you’re not expecting. You’ll want to curb your enthusiasm for e-cards and those cute PowerPoint presentations that make the rounds on any given holiday.

Know who makes the software and services you use. Symantec and McAfee may have their quirks, but they’re not going to install spyware on your computer. (Or if they do, a la the Sony BMG fiasco a while back, people are sure to find out!) Just because a company has a slick website or a special offer, does not make its product reliable. You should know that there are some nefarious companies out there masquerading as their legitimate counterparts, down to copying the same logos and color scheme. They sometimes use Web addresses that are misspelled versions of the true address. This happens with banks, too, and it’s called phishing, a term you’ve probably heard. Such ploys can be very convincing. When in doubt, you are always wise to type your destination manually, instead of clicking a link.

Please be careful when using public network connections, such as WiFi hotspots or Internet-cafe computers. Your data could easily be captured in transit. I would particularly avoid using a credit card number on any public system. There are programs called keyloggers that record every key you type, and they’re waiting for such juicy morsels. Your own computer could be infected with a keylogger, too, if you wind up with one of the nastier spyware versions out there.

How do you know if you’re faced with a zombie? The most common symptoms are slow performance, and tons of pop-up ads. If this sounds familiar, it’s time to update your software and run some scans. Zombies can be notoriously difficult to destroy, so you may need to call upon a professional exterminator like yours truly to be fully rid of them.