Computer security, am I just being too paranoid?

In my experience is what you can afford. Freeware has a tendency to work just as well for most home applications, but paid programs can have automation options that are quite convenient.

Being able to specifically track a given intrusion has as much to do with your attention to detail as well as detailed knowledge of operations. The only things I would suggest is to add a personal firewall layer to what you have described, and be most attentive to where you go and who you transact with.

Beyond that, if someone is specifically targeting you, there's really not much you can do but clean up the aftermath and learn the lesson. The real issue is whether you are being targeted individually or just as a bulk effort.

Happy 'Netting!

L-8-R-b.

Please don't take this wrong. One thing you have to understand is, are you worth the crook's effort and/or would you be someone whom a concerted crook would target. Most of the time, as L8 alludes to, the "attacks" that people experience are 'bulk' bots. They are designed to sequentially probe computers to see if they can find totally unprotected computers. Again as L8 said, most commercial 'firewall' applications will be enough to cause the bots to move on. If on the other hand, you are a tempting target and someone makes a concerted effort to attack your system, then there isn't much you can do easily. If you are such a target, then you can build a complex system that could include a standalone firewall coupled with the protective software. Some really blizzare ideas involve a hardware firewall connected to a computer that has nothing on it but an operating system then that connects wirelessly (through a secure router) to your primary computer which has a great software firewall/antimalware package as a front end. However, if you are such an important target that the NSA or the other three letter agencies want you, there is pretty much nothing you can do.

I've found that I have very little trouble overall, I use free av software and keep it up to date. I run a scan every night and I'm careful about what sites I look at. I never open an email without a subject and generally only from people I know. I've had a couple of low level attacks but easily handled..

windy

I also do online banking and I used to also used to run Quicken. It does get scarey once in awhile. Here are some things I do for computer security at home and at work:

1) Remember that "security" is usually diametrically opposed to ease of use and convenience. Chances are, if your computer is not a pain-in-the-you-know-what, it probably isn't safe. Well, it's that way it is at work. At least is gives you the illusion of being safer.

2) Never put something that you don't want everyone to see up on the Internet somewhere. Someone WILL see it. Always read the terms of service and privacy statements to any site where you will be doing business or making tranactions. Don't just assume a site is safe or not safe just because they are a BIG company. Especially if their main business is "advertising" or you get their services for free. "Free" doesn't pay stockholders, employees or for technical things such as networks and servers.

3) Avoid keeping account numbers or credit card numbers on your computer unless they are well-encrypted. Consider full disk encryption for laptops and portable devices.

4) If you have a choice to keep credit card numbers on major online stores, do that if you are going to be a frequent shopper there. Remember, the odds are that the website won't get hacked and your data is probably encrypted on the site, but, if you keep typing the credit card information in to a website, eventually malware on your computerwill see your keystrokes. It is whatever makes you feel better but always look at the pros and cons of doing anything one way or the other way.

As for software on your PC, you can choose any OS that you are comfortable with but, NEVER assume that a particular type of OS is immune from malware. If you are making a choice, do some research on a malware site and look at NIST to see what the truth is. Don't listen to Fanbois as they are predjudice and don't read the right unbiased opinions. (I'll probably catch hell for saying this, watch).

For anti-malware software, take your time when choosing. Make sure ithe software is something you understand and feel comfortable. Read uop on what the software does, what the software doesn't do, and what the software is good at and what it is weak on. "Free" sound good, but is it really? Why would people and/or companies PAY for anti-malware software if it is free? One answer could be support. The other is because it may only work well in one area but not others. At work, we stick with Symantec and/or McAfee. Still, I don't think they do spyware as well as "Spybot Search and Destroy" and, for your own use, it is free but it is not a substitute for a/v software.

4) Make sure you have your "bases" covered! Anti-Virus? (Should also handle trojans and other things). Spyware? Run scans often with something good at spyware. Phishing? Avoid anything that mentions banks you don't do business with, especially those in Nigeria. Be wary of Princes and Chancellors contacting you. Even if you think an email from your financial institution looks VERY REAL, avoid replies unless the subject matter addresses YOU personally and shows some signs that it knows your account number. Even then, be careful! Do not click on an email "link" to login to your account. One way I test these, sometimes, when I'm in the mood is to click the link and put in incorrect information, just to see what happens.

5) Passwords and security questions: We have already beaten these topics to death but I would suggest using a STRONG password (sometimes they make you use one anyway) and change it when you feel "edgy". Security questions for major financial institutions do not ask you for your mother's maiden name because they want to know the answer or that your first hamster's name was "fluffy". This is to help identify you when you forget your password. If you get to choose your question and you worry about family members hacking your account, try to pick something they won't know the answer to and LIE about the answer (but keep the lies straight somehow). You don't even have to put in an answer that makes sense. For both passwords and security questions don't pick something that is in a dictionary or an encyclopedia or some book on babies names. You can always add numbers and/or special characters most of the time. Remember, though. You do trust YOUR BANK with your money and they probably have a lot of information on you from Google,... I mean , from your account application.

6) Be careful with what you say online. If you do your biography online, someone can find out your mother's maiden name, your first pet's name and what you do for a living and can even guess as to how much money you have when talking about your age and your job.

Routers and Network devices: NEVER use a default user ID or password that comes with a router or device. Always change it. It might be nice to administer your router remotely. Unless you have an extraodinary need, avoid the temptation. Don't let access to your router be seen from the Internet. Turn on WiFi security! Never leave a router insecure because some neighbor or someone driving by WILL find it and KNOW that it is not secure. Use the tightest security you can. Not only can someone USE your internet connection, but they might also see your other devices and be able to see computers. Yes, that means if you invite someone over, they will need a password to get in. Don't forget to change passwords.

7) There is NO SUCH THING as privacy. Everything you type in will be seen by someone. Don't think a chat is ever private. If you do something "illegal", you may see a complete transcript of your chat or tweet in a court of law (no, not saying you would say or do anything illegal). We still all know the story about two young Britons who were having private tweets about their upcoming trip to America (this conversation is happening in England, no less). When the got to the U.S. the Dept. of Homeland Security already had them wisked away and produced copies of their private tweets. Unfortunately, they used Brittish slang and said they were going to "destroy" America and that they were going to "dig up" Marilyn Monroe's grave. (DHS looked through their stuff trying to find a shovel). So, watch what you say because anyone could be looking. Especially if what you are saying can be interpretted more than one way. Kind of takes the fun out of it, doesn't it. So, if you are a member of some website like Google, Twitter, Facebook or anywhere else that you login to, read their privacy policies and terms of service.

Also, for your online banking: when you have time, login to your account. At this point "PRETEND" to be someone who has just hacked in and see what it is you can actually do. Can you see bank balances? Yes. Maybe no big deal to you. Can they move money back and forth between accounts (Savings vs. checking vs. MasterCard)? Yes. Can they send money to themselves. Maybe. Maybe not. Bill Pay? Maybe. You'll need to see what it is you can do and think hard before signing up with specific services. Then test out the security. Convenience can cause lack of sleep, you know.

So here are things I use on my machines.

Laptop: (Actually, a NetBook). I try to be careful what information I keep on there, especially work-related. Not all data is really YOURS. Some of it belongs to others. (Including pictures of boyfriend/girlfriends and your grandmother). I try to keep the laptop fairly clean of anything. Encryption: If you have to keep things that make you nervous about on a laptop, at least create an encrypted folder. There is software around to do that. Also, I use Truecrypt (that's a dot org) to encrypt the entire C: drive with the exception of the utility partition. Passwords: I have Roboform so, on my laptop, I use RoboformTo Go (portable).

Since I don't have a lot of anything on my laptop, I use a free product, AVG Free. If I suspect anything, I can always add more later.

Home PC (Desktop): OK, here I use, right now, McAfee, Spybot and IOBIT software. The McAfee was free from my ISP but, I am really considering putting in a suite from McAfee or Symantec, which I will have to pay for. It is not that expensive but you have to pay every year, these days. May catch it on sale somewhere.

By the way, don't run multiple anti-virus products as they can step on one another. Try to keep seperate functions, seperate.

Work: OK, this is easy. I use what they tell me to use BUT, I may throw in something else on top of that if I suspect that something is up. Machine acts funny or some window pops up and then goes away. I use Spybot Search and Destroy once in awhile. If I go to the internet except for a very few sites, I will need to use a user ID and a strong passord. Drives me nuts but there is a lot of data out there that I don't own, so we all put up with it.

Phone, and other portable devices: OK, I don't have a smartphone YET. That may change soon. If looking at software such as Symantec, they have software that will run on your portable equipment (phone, tablet, laptop) that will allow you to do stuff like turn on the camera to see who is using it, get the approximate location of the device, lock the device, put up an :"if found, please call...." message and even remote wipe it.

It all depends on you and what you are comfortable with. You won't be able to eliminate all the bad stuff out there, but you can MINIMIZE the chance that bad things will happen. Maybe if you are willing to forego some ease of use and convenience. Security is really a state of mind. Just remember that you won't be able to rely on anyone but yourself. Remember that banks and credit card companies offer some protection if you are using their sites but other places don't and will not take responsibility for anything that happens.

Howie

Not on Facebook or Twitter

Note: This post was edited by its original author to combine 2 posts into one. on 09/07/2012 at 12:36 PM PT

Hey Al,

I don't think you're being overly paranoid at all. But there are a few realities about using the internet that we all need to come to grips with, and unless you're an accomplished IT Tech, you need to assume that certain elements of your web browsing activities are being watched.

I could go into an overly complicated reason about why, but it wouldn't really make any difference. Let's take Facebook as a good example. When you log onto Facebook, your computer becomes the focus of a special tracking device that is dedicated just for YOU!!! Now don't you feel special? So while you're logged on, every place you go, and everyone you click on, comment to, or any ad you select is tracked. Okay you say, I suppose that if I'm going to use Facebook I should expect that they are paying attention to what I'm doing and where I'm going. But what about after you log off of Facebook?

That's right Al, every site you browse to, every site you view, all of your browsing and shopping habits and everything else that is obtainable, is STILL BEING TRACKED BY FACEBOOK!!! And it's not just Facebook. I wouldn't be at all surprised in CNET didn't have some tracking going on as well. Information is valuable, and in the internet game, the more information you have about a computer user, the more power you have to influence how they use their computer, and how to use their vulnerabilities to exploit them. I realize this all sounds a little like big brother is watching, but the truth is THEY ARE. This same tracking activity provides you almost like magic, with ads for items you've been shopping for. If you've told someone you were single, you may be presented with ads for dating sites. If you've been looking at motorcycle sites, you may be surprised to suddenly see things about motorcycles in other browsing activities. It's not all bad, but it's there and it's not going away.

So you say you don't like that. Well, there's a way to turn off tracking somewhere in that maze of settings on Facebook and other sites, and if you look them up, you may be able to find find them. The bottom line is that most people don't. AVG has a new feature they call "Do Not Track" but I can't honestly say I know if it works, or if it does I don't know how well it works, with which Browsers, or how effective it may be. The point is that they saw the need for such a feature, which makes the whole thing RELEVANT.

Living in a world where everything is electronically "Available" comes at a cost. So here's my advice for what it's worth.

1. Anytime you enter sensitive information on the internet, make sure that your URL Address (that's the WWW address) starts with https:\\. This at least lets you know that the person your giving that information to is located on a secure server, and you are more or less protected regarding the data you send over that communication. If the site starts with only "http:\\" with no "s" -- the site is not a secure site and you should never provide sensitive information over such a connection. Not even your email address.

2. It's a good idea to use a different Browser for your sensitive business type activities and your pleasure or social types of activities. There's a lot less likelihood that your bank's tracking software is going to pose a threat. Fortunately, tracking doesn't cross between Browsers. So you can use one Browser for fun, and another for sensitive information. Of course by Browser, I'm speaking about Internet Explorer, Mozilla Firefox, Goolge Chrome, Safari, and others used to interface with the internet.

3. Never respond to email from sites that you believe to be secure. Hackers are very adept at cloning bank sites, credit card sites, and many others in the attempt to lure you into giving them your passwords and other sensitive information. If the message says there's an issue with your account, log on to that account the same way you always do, through their URL address from your browser. Never from an email link.

4. Remember that there is no amount of security that is impervious to attack and/or being compromised. From the looks of things, you've done well in protecting your computer from unwanted intruders. I'll just caution you to the fact that the most dangerous internet predators out there are the ones you can't see. They don't pop up on your screen and try to sell you anything. They don't claim you have 467 viruses that they can fix. They don't redirect your browser to unwanted sites. Instead, they sit in the background of your computer's file system and slowly and methodically send out information about every site you visit, every email you send, and collect every contact available on your system, and in some cases every keystroke you make and you never knew they were there. These are the predators that can do a lot of damage. Far beyond slowing down your computer, or making your system inoperable, they will wipe out your bank account, max out your credit cards and ruin your credit.

So Al, as the old saying goes, just because you're paranoid doesn't mean no one is after you. Keep your security programs up to date, keep your Windows Updates up to date, keep your firewall on, and never, ever, put anything on the internet that you wouldn't be okay with showing to your 6 year old granddaughter, your wife, or your Mother-in-Law.

Good Luck, and I hope this helps.

First of all unfortunately no computer is 100% safe, if someone is bound and determined to hack your computer they will.
However there are a few things that you can do to discourage them from trying.

First having a GOOD Anti-Virus program and Spyware, and Malware program on your computer is the first step.

Two of the best Anti-Virus programs are AVG internet security and firewall, and ZoneAlarm Anti-Virus and firewall. They both offer free versions which do a good job, but there are things missing in the free versions, or you have to do things manually with the free versions that are automatic in the paid versions. I've been using both of the above mentioned for years, and after using the free versions went on to purchase the full versions.

Another thing is that most Windows OS versions only allow you to have only one Virus program on your computer, it is recommended that you have at least two Spyware programs, and Malware program installed. A lot of the internet security programs say that they take care of all (Virus, Spyware, and Malware) but they don't (I found that out the hard way).

One of the BEST anti Spyware programs is Safer Networking's Spybot Search and Destroy (which is free, although they do ask for donations, and it's worth spending a few dollars.) Unfortunately it's a manual program, as you have to update and scan your computer yourself. Another good Spyware program is Malwarebytes anti -Malware. (Which also offers a free and paid version. There is only a few differences between the two.), and Emsisoft Anti-Malware. This program lets you use it for 30 days so you can decide if you want to spend the money for it, then quits working unless you pay for it. IT IS DEFFENATELY WORTH PAYING FOR!

Another thing you can do to safeguard yourself from getting ripped off is, most on-line stores accept PAY-PAL for payment these days, so go to your bank, and set up an account that you'll only use to purchase things on the internet, and pay bills with. Each month, ONLY put enough money in that account to cover what you are going to spend. Then go to PayPall.com and open an account with them, after you confirm the PP account, make your purchases with PP, as then your purchases and money are covered by PP if something should go wrong.

About the best thing that you can do is BE SMART! Most people that get ripped off are people who open those e-mails that tell you that you won $$$$$ and all you have to do is give them your routing and account number thinking that someone's going to give them a lot of $$$$ for nothing.

Hopefully these suggestions will be of help to you.

Note: This post was edited by its original author to add line breaks posts. on 09/07/2012 at 11:57 AM PT

If you have been hacked and not seen a issue with credit card fraud or identity theft you need to ask yourself what is this hacker after? Do you have a valuable email address book like for a church group or club? Are you a federal employee with access to valuable information or and employee of a bank? The general question is are you someone who is a high profile target that a hacker would be looking for? If you don't fall into being a target by a hacker than worrying about this hacker person is not productive.

Please understand that you are being tracked and your ISP is just one of the trackers. Your online habits are marketing gold so as long as there is information from what you do online you will be tracked as will all the rest of us. Even if you stop using all computers and any devices that connect to the internet, you are still being tracked when you buy something at a store, when you pay your taxes, and when you pay your bills. All these acts generate information that is stored and classified as who you are. This "you" is stored in financial institutions, governmental institutions, marketing companies, and insurance institutions. Your feeling of being paranoid should be based on this but not on the idea that one hacker is after you. Now the intuitions are the real targets of a hacker. That is were the path to gold is.

You can only do so much and if you do the basics you have at least not gone on in ignorance. The basics are use common sense, do the AV thing, check your credit reports, get insurance that helps you during an Identity theft event and get a service to monitor your financials only if you feel you can not cover this area yourself.

If you have reached the point where you are covering the computer in aluminum foil, then it is time for you to get mental help or at least do something relaxing. Our open society lifestyles cause our privacy to be worn away with each new convenience. Openness tends to lead to complacency and some paranoia is a good thing in that you stay alert but do the basics and use common sense. By the way don't forget to put holes in the foil to vent the heat from your computer.

Microsoft has had an implementation, where the National Security Administration has direct access to your computer, and is strictly enforced since Windows 7,

http://www.computerworld.com/s/article/9141105/NSA_helped_with_Windows_7_development

Not a backdoor? Sure. Okay

http://www.tomshardware.com/news/microsoft-windows-7-nsa-backdoor,9130.html

I guess I gave a few things to do but never answered your question. Being a bit paranoid is actually a good thing. It amounts to the emotion "fear" and fer can keep you alive or keep you safe, at times. You are NOT being unjustifiably paranoid. Back in the 1970's we had hackers. The same as now but they were mostly hitting on mainframes with the purpose of having fun and making a big joke well showing off their technical prowess. Then came the virus makers. Most of these would do something bad to your computer like wipe out your hard drive. Michaelangelo virus, anyone? Still these are just major annoyances. Some malware still was a joke like the ones that infected Microsoft Word so it would cause it to tell the user he or she was an idiot.

The Internet has been around a long, long time. It wasn't until we had the World Wide Web and networking technology that having a personal computer really took off. Now we have spam, we have trojans, we have Nigerian Princes and bankers. With online banking. With that, things have gotten serious. We have phishing attempts. We have spying. The current crop is to get the user to part with their money. As someone said, the more money or the bigger phish you are, the more of a concentrated effort will be made to part you from your money. However, most phishing and other criminal intent is more of the automated kind. Just drop a hook and see what bytes. SO, the bad guys don't care if they get $50 from you or $50,000. It is all the same effort.

Does all this mean you should pull the plug on your PC? No. Does it mean you should not do online purchasing or banking? No (unless you are my gf.) It means you should take precautions. Most of the posts here have good advice. You can also talk to people you know. And remember to be a little paranoid as it will help you stay safe. If something appears too good to be true, it probably isn't. If someone you don't know tells you that they picked you to help them get money out of some country, hit the delete key. If someone that you DO know emails you that they are in jail and needs money, be afraid. Be very afraid.

We have come of age so far as computer and IT are concerned. Heartbreaking advances have been made in these areas and I will be surprised if people are still in doubt or fear. This fear or doubt is common and acceptably understood because hackers, dialers, zombies, bots are everywhere and sophisticated. However, there is no need creating a monster where there is none. From your write-up you have done all that has to be done to basically secure your PC and your privacy. You asked whether you had been watching too much TV. The answer is emphatic Y-E-S!!!

Since Windows XP Windows firewall has been adequately robust to ward off any uninvited and unwanted guest. Nonetheless Windows firewall may be configured to add extra meat to its protection. That does not mean that the current settings (which I believe to be the default ones) are not good enough.

What you have to do in addition to what you have is to ensure that
i. the computer is up to date i.e. all the necessary, important and recommend updates from Microsoft in particular and other third party programmes are installed.
ii. the antivirus is up to date.
iii. you run programmes you trust.

Lest I forget, do not forget to scan your PC regularly. In addition, you may install PCTool Firewall Plus, very tiny, free but tough firewall programme which helps you decide which programme you allow or block from gaining access to you PC.

With these suggestions, I believe you can now sleep with both eyes firmly closed.

Joseph ATO-BINEY
IT Pro & Consultant
Winneba, Ghana

Beleive me I repair computers that have viruses and 99% of them are paid subcriptions from these two plus they slow computers down and that is why people bring them to me. "My computer is slow and I don't know why" The other 1% are from people who do not update their Av's. I have used AVG since 2001 but their are others out there you just have to try them yourself. But remember no site is ever secure.