Security Awareness - Stop, Think, Connect

Posted Friday, October 29, 2010 4:50 PM by hwaldron

Webroot shares an excellent newsletter related to National Cyber Security Awareness for the month of October.  I've also seen the phrase "Think before you click" which denotes that our own actions can get us in trouble if we let curiousity override the need for safety in the dangerous

Security Awareness - Stop, Think, Connect
http://blog.webroot.com/2010/10/04/five-reasons-you-should-always-stop-think-connect-2/

Stop, Think, Connect
http://safetyandsecuritymessaging.org/

QUOTE: The army of criminals who commit fraud and theft over the Internet have several tricks up their sleeves. They disguise themselves and rely on you to not stop, not think, and to click links or open files immediately. That's how most people infect themselves. Luckily, you can prevent most of these infections yourself, simply by exercising a little restraint.

In my case, they’re preaching to the choir. For years, I’ve advocated that people treat everything they see online critically, and to scrutinize information before acting on it. That’s because the army of criminals who commit fraud and theft over the Internet on a daily basis rely on you to not stop, not think, and to click links or open files immediately, without regard to the consequences of your actions. That’s how most people infect themselves. If you stop and think before you connect, you can prevent most of these infections yourself, simply by exercising a little restraint.

TOP THREE SCAMS CIRCULATING TODAY

Scam #1: Your computer is infected!  The biggest criminal enterprise is the rogue antivirus product. It tries to convince you that your computer is infected so you hand over money for "antivirus protection" - which is not actually protection at all. The minute you see a fake alert, stop everything you're doing, kill the browser, and perform a full scan with the legitimate antivirus product of your choice.

Scam #2: Check out this cool link! Your friend's email or Facebook account is hijacked, and you receive a brief message with a short URL to watch a video or check out something equally "cool." The link actually leads to a malicious page with a malware download. Most shortlink services have a feature that lets you preview where the shortlink will go; use it. If you've never heard of the Web site, check the true destination domain against a reputation service, such as Webroot's Brightcloud. And don't be the first one among your friends to click a link.

Scam #3: John Doe wants to be your friend. In this one, the scammers usually duplicate the message format of popular social network sites. Instead of linking to "friend request," it takes you to a malicious page instead. To avoid this one, without clicking anything, move the mouse over the link in your email message, then look at the Status Bar to see exactly where the link leads. If the message claims to come from one company, but the URL points to a domain you've never heard of, don't click the link.

Below are the top 5 latest threats identified by Webroot

1. Rogue Security Products
2. Worm-Koobface
3. Virtumonde
4. Trojan-Backdoor-Progdav(Zbot)
5. Trojan-Agent-TDSS

Comments

No Comments