CCSG inc.

As I am out in the field a lot, it is a common question that I get asked, especially since most people that get infected already have some sort of security software.

It was only recently that I could say not to open suspicious attachments, or go to websites you’re not supposed to be going to at work (such as porn sites, gambling sites, or even social networking sites).  These days, I can’t say that anymore.  To add further insult to injury, I can’t say that your anti-virus or firewall software is going to provide you with the full protection.

Well, why?

The answer isn’t simple.  Much of it has to do with the ever-evolving tactics malware writers use, along with good old-fashioned user behavior.

Most new infections now come across from infected sites, malicious advertising, and bait sites (sites that look legit in regards to what you are looking for at the time, but as soon as you click on the link within the search result, you’re infected).

For instance, you’re doing a search on the hottest item on the web.  Using a recent example, we’ll say the video of that ESPN sports reporter who was videotaped in her hotel room.  Well, guys are going to want to see it, so they’ll search for it.  Among the top results, you’ll see innocent-looking links to the video.  However, you click on the link, and you’re now getting a warning that you’re infected, along with a legit-looking anti-virus program that runs, then asks you to pay $40 or $50 to remove the items.  You not only have a drive-by download (where software immediately downloads and installs upon visiting a web page), but you also have a case where social engineering succeeded… preying on the behavior of guys who are searching for video of a naked sports reporter to wreak havoc.  That is where anti-virus software fails… the human factor.

Well, how can we prevent ourselves from getting infected?

• Use current anti-virus software, one that not only helps detect and remove viruses, but also spyware and rootkits.  We recommend AVG Anti-Virus (or AVG Anti-Virus Business Edition for networks with servers), both of which are available from us, since we are an Authorized AVG reseller.  Contact us for a quote for your PCs — available in one or two year licenses for as little as one PC or multiple computers.
• DO NOT use any free anti-virus software, including AVG Free, Avast!, Avira, or PC Tools Anti-Virus.  For one, it is illegal to use in business environments.  Second, they only provide basic protection, and don’t prevent infection as well as the paid versions.  That is because they are designed for those who may get on the Internet once in a blue moon for a few minutes.  Furthermore, we cannot support free anti-virus software… if we have to remove it for some reason, we can’t reinstall it.
• Keep your computer up-to-date with the latest security patches from Microsoft.  One of the things I hear is that “it’s bad to update your computer” and blah blah blah.  An update that causes problems may be easy to roll back.  A virus may not be.  Plus, the reality is that Windows updates cause problems in only a tiny fraction of the computers that install them.  The rest have no issues, and may even run better than before.
• If you have a Mac or are running Linux… you’re still vulnerable.  Virus writers, fully knowing how Mac users run without any kind of protection, are starting to write viruses that are either Mac-specific, or will run on any computer (taking advantage of security flaws in programs such as Adobe Flash).
• Update your other pieces of software.  This includes, but isn’t limited to… Adobe Flash, Adobe Reader, iTunes, Quicktime, Firefox, Safari, Google Chrome browser, and other software and plugins.
• In addition to having good Anti-Virus software, use some of the browser security add-ons available…
  • For Firefox, Internet Explorer, and Google Chrome (as beta): Web of Trust – a free add-on where users rate sites and provide a clear idea of how good or bad a site may be, and allows you to contribute feedback on how much you trust a website.  I use this both at work and at home.
  • For all major browsers: Check and see if your anti-virus provides an integration with your browser to help prevent surfing to malicious sites.  AVG provides a safe-search plug-in, along with an optional toolbar.
  • Consider ad-blocking software or add-ons.  For Firefox, there’s Adblock Plus.  If you have Internet Explorer 8, you can use InPrivate filtering to help accomplish this to some extent.
• Most of all, and this is something for which I can’t recommend any software… use common sense and caution when surfing the web.  The worst thing anyone can do is rely on technology to keep us safe.  You can ask yourself whether or not you really need to see the hottest thing on the web, play games on the web, and so on.  In other words, don’t use your business PC as you would  your home PC.  Keep it business-oriented.  Now, if you’re going to get last night’s sports score, check your email very quickly, or catch up on the news, that’s one thing.  If you’re playing games, trying to dig up the latest dirt on Tiger Woods, hanging out on MySpace or Facebook (not just bringing it up for a minute), or need to look at that forward your relative sent you, do it at home.  If you can’t do that, just don’t do any personal stuff at all.

If you happen to be on a business site (like a vendor’s site), and that is the only site you are on.  Yet,  you get infected… be sure to contact them and let them know they need to clean up their website.

Also, if you do get infected, be sure to either shut down the computer, or at the very least, disconnect it from the network.  Not only will it make it easier to clean up, but it decreases the risk that other computers will get infected, and that your own infection won’t get worse.  More than likely, you’ll have to have an IT person remove it (such as myself).  If the above steps are followed, you’ll be making my job, along with other techs, a lot easier.