Tuesday, August 29, 2006
The 10 Biggest Security risks that you don't know about....
1. Zombie PC Armies: Web bots not known to anti-virus programs infect your PC through email or spoof websites. The botnet ranks in money through spam, spyware and denial-of-service attacks. Defense: Avoid unknown websites and don't click on unknown attachments
2. Your stolen data is posted on a unsecure FTP site: Keylogging programs that infect PC's steal data which is sent to thieves who then post your private data on the web. Defense: Cycle your passwords... for more tips, find.pcworld.com/54020
3. Phishers set up legitimate Websites: Your computer is infected with Malware which redirects your browser request to the fake site where cyber criminals can ask for whatever information they want. Defense: Use a anti-phishing toolbar find.pcworld.com/53738
4. Human security hole: Cyber thiefs get more clever by using legitimate email addresses; for example, your co-workers email address to get you to click a website address or click attachments. Defense: Subscribe to security RSS feed like F-Secure. Corporate users, let's hope your IT Department is keeping up to date with its security best practices.
5. Cyber thiefs redirect browser to their spoof site: According to the SANS institute more than 75% of DNS servers around the world need to update their DNS server software as they are vulnerable to any number of attacks such as 'cache poisoning' and 'DOS' attacks. Defense: See find.pcworld.com/53972
6. Rootkits and Viruses partner on your PC: A trojan horse and rootkit software infect a PC through a download (watch what you download) and then it hides deep within your PC where the antivirus can not clean it. The malware can pull keyloggers and spyware onto the infected PC. Defense: Keep antivirus up to date and get a rootkit cleaner such as find.pcworld.com/53734
7. Cell phone virus: Malware infects your bluetooth enabled phone if [you accept the requests] where a browser runs up your SMS text. Defense: Monitor your cell bill, and use a mobile antivirus such as F-secure, Kasperkey, McAfee, or TrendMicro
8. Malware on your RFID Passport: Although the likelyhood of this is low, experts suggests that RFID passports could become infected with a virus if the technology running the RFID backend is not secure. Defense: Keep your RFID passport or any other ID device in a metal enclosure
9. Your private Data held ransom: You visit a spoofed site (see the items 1-8 above to find out how) and the trojan horse and rootkit infect your PC and automatically zips of your personal folders. When you try to access the folder in question a dialog box provides details about how to unzip your folders and provides further purchase details about how to retrieve your data via an online store. Scary! Defense: Call the Cops. Write the details from the ransom note. See find.pcworld.com/53976
10. Threats plague all platforms and OS: According to IT-Security firm Secunia, Windows XP Home , Windows XP Pro, and Windwows 2000 all have 1 unfixed vulnerbility that has not been fixed as 5/22/2006. Linux2.6 has 1 unfixed vulnerbility that has not been fixed as 5/22/2006. As of 5/22/2006, all Mac OS X vulnerbilities have been patched.