Cyberspace Protection Tips
You can never have enough protection when surfing the Web as online criminals increasingly turn to malware to attack systems and unearth sensitive information such as passwords and account information.
Just last week, hackers attempted to make off with $450,000 after stealing login credentials associated with bank accounts run by the city of Carson, Calif. It is very likely that the password for the general fund account was stolen after cyber thieves planted key-logging spyware onto a PC used by city treasurer Karen Avilla.
This key-logging malware works undetected inside the operating system's kernel, the component that links the system to the computer's hardware. Traditional malware acts like a regular application that runs on top of the operating system.
"This is just the beginning of the damage that this type of malware can lead too," said Patrick Hinojosa, CTO of CyberDefender Corp. "It can operate with the same privileges and share all the same resources as the operating system itself, and compete with any security solutions protecting the system's integrity against any malicious activities."
To help consumers protect themselves from malware, scams, and identity theft all year round, CyberDefender offers some suggestions.
- Don't add friends you don't actually know when using social networking sites. Often the "free" code available in social networking sites, such as MySpace and Facebook is spyware and will track your activity or even display unwanted ads.
- Do not give out personal information on your social networking site profile, such as your address, telephone number, work address or telephone number, or the name and location of your school.
- Never get together with someone you "meet" on a Web site, they may not be who they say they are. If for some reason you still choose to meet the person, they should discuss it with their parents first, and arrange the meeting in a public place and bring some friends.
- Don't shop online while using an unencrypted or open wireless network. Hackers and thieves can use your open/unencrypted or a store's wireless network to break into your computer and capture your financial information.
- Secure your computer with latest security software and updates. Before connecting to the Internet, take the following three core precautions: 1) Install anti-virus and anti-spyware programs and keep them up to date. 2) Install a firewall. 3) Regularly update operating software.
- Don't give away your financial information to unsecured Web sites. Make sure when providing payment information, the beginning of the Web site URL address changes from http to https, indicating that the purchase is encrypted or secured.
- Protect personal information with common sense and technology. Be suspicious if someone unexpectedly asks for personal information. Identity thieves send out bogus emails about problems with consumers' accounts to lure them into divulging personal information. Consider using multi-factor authentication services when offered by online retailers as a way to secure your information.
- Confirm e-mail correspondences from your financial institution directly. If you receive an e-mail from your bank or other institution that you are unsure of, simply call the bank directly to confirm they need the information requested. Don't just reply with the information without checking first.
- If you are not familiar with the seller or the Web site, do some research. You can contact the Better Business Bureau in the state where the company is located (by telephone or at http://bbb.com), and investigate the number and nature of complaints against the seller. Sometimes, a basic Internet search will reveal an actual chat room or web site (commonly called "gripe-sites") on which civic-minded fellow consumers have posted complaints warning of a company's practices.