Computer Technology Tip

The Top Security Threats for 2008

Last year Rootkits were a major security threat. They still are. Rootkits are a type of malware program that resides in your computer at the system core level making removal extremely difficult. They enter via Trojans but they can be blocked by up-to-date antivirus programs. Several computers were attacked successfully by Rootkits last year in the Mill.

What's in store for this year? Security analysts think that more effort will go into malware programs that steal personal information from your computer. Passwords, user names, bank account numbers, credit card numbers, and the like will be the new targets for 2008. Those of you that use your computer for on-line credit card purchases and on-line banking will be specifically targeted this year. The concern is that the malware writers will employ a new tactic. Instead of trying to infect millions of computers they will be attacking in smaller numbers. That almost sounds like good news. Well it isn't. The reason is, attacking in smaller numbers means it will take longer for anti-virus companies to recognize and react to an infection. From the time malware is first released on the Internet to the time anti-virus companies release an anti-virus signature or definition, is known as the Zero Day threat. Look for the malware writers to exploit this period of time. They want to stay below "radar" detection and they may be able to do it.

Present day anti-virus/anti-spyware programs employ some defense against the Zero Day threats. Typically this is referred to as heuristic technology and HIPS (Host Intrusion Prevention System). Basically they will examine incoming files for virus like activity. However, they are only partly effective compared to definition-based protection. If you have followed my previous recommendations of installing Avast (www.avast.com) and Spyware Terminator (www.spywareterminator.com), 2 excellent free programs to protect you, they should be adequate. Avast covers incoming e-mail with heuristic technology. To increase your protection using heuristics, right click the Avast tray icon, click On-Access Protection Control, and click the details button so you can see Internet Mail. Click Internet Mail and move the slider to High and OK the window. Then right click the Spyware Terminator tray icon and make sure there's check next to HIPS in the menu. That's it. HIPS is very good at looking at anything that goes on inside your computer. It will even flag innocent goings on to the point it may annoy you. After you click Allow several times it builds a database and it will quiet down and only flag outside threats. When you see a Spyware Terminator warning or alert and you caused it by starting a new safe program, simply put a check in "Remember this action" and click Allow. If you are doing normal Web surfing and not knowingly downloading or installing anything I would click Block.

One other program or better described as an Add-on for Internet Explorer is Site Advisor from McAfee. Site Advisor combs through all Internet Web sites looking for sites that distribute malware. This is a great way to avoid malicious sites and make less work for Avast and Spyware Terminator. You can download this program at www.siteadvisor.com. Download the free version. After it's installed click the little down arrow in the SiteAdvisor bar and click Settings. Put a check in the following 2 boxes - Participate in Product Improvement Program and Highlight Search Result Links. Leave the others blank and click OK. Red indicates a malicious site, yellow indicates the site may try to send you e-mails, and green indicates it's safe.

As new security programs become available that are stable and don't take away valuable computer resources that slow the computer I'll pass my recommendations on to you. For now the previously mentioned programs are worth your while to use. Make a New Year's resolution to make sure you have anti-virus/anti-spyware programs installed on your computer that are up to date. Many of you ignore this area of your computer and assume it takes care of itself. Nothing is further from the truth! In fact before you put this article aside, go to your computer and start checking the status of your security programs. To do this open your security programs and check the update date and the last time it was scanned for malicious programs. Scans should be done twice a month; updates are usually done daily and are automatic. NOTE: Norton and McAfee are often supplied on computers by the manufacturer. Of course my recommendation has been to uninstall any of these products and install Avast and Spyware Terminator.

For helping sorting out this information and answering your questions about security please visit our monthly PC Club meeting that meets the second Tuesday at 7:00 pm upstairs in Winfield Hall.

Don Trauger

To get answers to your questions about computers, please come to the PC Club meeting. The computer club meets the second Tuesday of each month at 7:00 PM in Winfield Hall.

On this website Calendar has a week's view of activities and events similar to the month's guide.