Surfing the web is just like going downtown, you have to take care of your safety as the police watchdogs will not be in time to rescue you should anything happen to you. Therefore, before going on a trip to the net, one have to make sure he is equip with the necessary softwares to protect himself before unsuspecting attacks are upon him.
Internet attack can be generally categorize into 3 types:
- Virus/Trojan/Worm/Rootkit/Keylogger attacks
- Phising attacks
- Spyware attacks
Virus, trojan, worms, rootkits, keyloggers form the most common attacks on unsuspecting victims. They are normally distributed together in emails/files. They may look legitimate to you, and you may also run the file correctly. However, upon executing that file, you could have just run a virus hidden inside the program unintentionally.
Effects of virus, worm, rootkit, keylogger attacks vary from minor corruption of files to a major lost of data
- Worms normally replicates itself in the memory, eating up memory/bandwidth or behave nastily by duplicating files on your hard drive or locking up certain features in your operating system.
- Keyloggers are small programs designed to record key stroke pressing of a user without permission. They are more often used to steal passwords or personal information.
- Virus on the other hand puts a more serious punch into your computer. Once executed, they can cause damages such as stealing personal information, corrupting the operating system. Viruses normally exploits security holes of a operating access to cause havoc and will turn a victim’s computer as a virus distribution point to other potential victims.
- Trojans are programs specifically written to infiltrate a victim’s computer and place a backdoor in his computer. This backdoor will allow unauthorize access to the creator of the trojan to gain access into the computer of the victim and from then gain full access to it. This kind of attack can potentially allow one attacker to delete the entire hard disk without the victim’s permission, and should be treated as critical threat.
- Rootkit poses the most serious headache to one user as the level of threat is of highly critical. It has the potential to hide files, network connections, memory addresses, or registry entries from the eyes of security detection softwares, system administrator. Normally it will disguise itself as genuine kernel module, or as hardware drivers. Rootkit is more often use conceal keyloggers or trojans while attacking a computer.
Phising attacks, also known as website forging attacks, are done by directing users to a fake website disguising as a genuine website to steal confidential information about a user.
Most victims fall to these attacks by responding to emails, messages sent over instant messenging network. As a result of fallen into a phising attack, one will mostly substain financial lost, or credit card being used by unknown parties.
Spyware attacks often attacks user by intercepting or take partial control over the user’s interaction with the computer, usually the internet browser without the users permission.
Spywares often bombards users with lots of pop-ups, redirecting users to a certain websites used for marketing purposes, changing of internet browser settings without permission and stealing of confidential information. They are often bundled together with other softwares, and claim to be a software that brings benefit to the users.
Prevention is Better than Curing
With many attacks out there waiting for victims to fall into the trap one by one, it would be smart to be proactive in keeping yourself updated with the trend of internet security. Here are some steps in preventing yourself from being the next victim of Internet attacks:
- Use Firefox and turn on the Anti-Phising option by going to Tools -> Options -> Security
- If you insist on using Internet Explorer, make sure you are using Internet Explorer 7 and Turn On Phising Filter by going to Tools -> Internet Option -> Advanced . Choose Turn on automatic website checking for Phising Filter.
- Use an antivirus software. We recommend Kaspersky Internet Security for they can detect the most viruses. However any other antivirus such as Nod 32, AVG, Mcafee, Norton Antivirus will also work.
- Use a spyware/adaware software to protect yourself from spyware attacks. We recommend LavaSoft Adaware.
- Update your antivirus/anti-spyware software frequently. You are still vulnerable to attack if you do not update them to the latest definition files.
- Update your Windows regularly. Windows are known to have lots of security bugs, and it’s highly recommended for you to update your windows regularly to avoid being a target of a security exploit.
- Practice safe browsing. Always remember not to open unknown emails. A common practice is not to reveal your password or PIN codes to anyone. Remember, Banks will never ask for your passwords, they don’t need it if they were to steal your money.
Leave a Reply