Guaranteed Repair or you don’t pay! 719 266-8822     
877 434-8822     
HomeCompany Button Text Button Text Button Text
 
Articles

Computer Clarity in the News

Hackers Use Web Cams
To Spy On You

Read and Watch the
KRDO News Story

Managed Services
Individual Services
Other Services
Computer Clarity on the Internet
  • YouTube
  • Facebook
  • Twitter
  • MerchantCircle
  • Articles
  • DexKnows
  • Computer Clarity LLC on LinkedIn
IT Instruction
  Helpful Articles  
 
Phishing - The "Catch" of the Day
By Nicole Shandrew  | January 29, 2010

It is the beginning of the "Phishing" season with taxes just months ahead of us. Catching and releasing financial information may garner some very big trophy money in the end. The Phish market stands to make hundreds of millions of dollars. We have seen world events such as Haiti's Earthquake spawn many malware sites top ranking on Google that were designed to capture donations and personal information. These fake websites are almost identical to the legitimate ones and are becoming increasingly more difficult to detect.

The most common phishing bait can be found embedded in email messages or instant messages. General salutations, such as Dear Valued Customer or Dear Client should be immediately flagged. All banking institutions have your exact name as shown on your account in their database. When misspelled words appear in the email they should be another indicator that the email is a scam. Once a recipient takes the bait by clicking on the link embedded in the email or IM to the fake website the phishing expedition begins.

Phishers' use several "catch and release" techniques by disguising fake URLs. It has become increasingly difficult to detect the bait because the security certificate on a trusted website can be hidden in a multimedia object on a flash-based website. Other techniques to disguise malicious URLs include URL redirectors on the websites of trusted organizations. Fake URL redirectors can be "miss-spelled" domains or by merging a (.com) and a (.net) website to a convincingly reproduced website. Capturing log in and personal details bring in big prize money.

Some phishing expeditions include hooks, lines and sinkers. "Sinking" and embedding a corrupted (.reg) entry or file into the Windows Registry File will replace the legitimate (.reg) file. "Hooking" the corrupted file with a malicious application will ultimately reroute the "lines" of personal information and consumers' credentials to the Phishers' website.

To combat phishing attempts is to pay attention and to simply modify browsing habits. If an account needs to be "verified", contact the company from which the email originates to see if it is legitimate and rather than trusting the links in the email, type the company's genuine website into the browser's address bar. Finally, your computer should always have up to date anti-virus software that includes spam filters.

The damage caused by world-wide phishing can be estimated in the billions per year. This lucrative phishing industry will evolve with more attractive lures and mouthwatering baits disguised as information from your financial institutions, your planned events and unforeseen cataclysms. Remember to be diligent no matter how enticing an email, IM, or website can be. Don't take the bait.


Preventing Viral Infections - How to Not Get a Computer Virus
By Tray Leatherwood | January 5, 2010
  
 

Three Rules to Prevent Computer Virus Infections

First Rule: Read Your Computer Screens.

Read the window that pops up on your computer screen before you hit "Okay", "Cancel", "Run", "Yes", "No", or even "Maybe"! People are like monkeys. Any monkey can be trained to hit a button to get what it wants. We have been trained with a Pavlovian response to hit a button, get something out of our face, and then we get what we want. Every virus writer knows this! Most viruses don't get you because of sophisticated programming code. They get you with social engineering. They get you because they know that most humans don't think. Like monkeys, most humans will hit the button until we get what we want, regardless of what that button really does. So, many of the viruses I am hired at expensive rates to remove, are installed by the user because they were tricked into hitting a button without reading the screen. But the really insidious part of this scenario is that one screen is often a EULA (End User License agreement). This is a legally binding contract that, by hitting the "Okay" button, affirms your agreement to the terms and conditions of proceeding with the installation. In other words, even if you know the person who did this to you and you had them in court in front of a judge, you could not hold them liable for the damage to your computer system because you legally agreed to the installation that caused the damage. They screwed ya, and you legally asked for it. You must read your screens!

Second Rule: Google Everything.

Now, this doesn't mean that you must use Google, any search engine will do. But, anything that you don't understand... Google It! This can apply to anything of life's issues in today's world, but in this context, if you read your screens and you come across a company you don't know, a program you don't recognize, or a message that just don't make any sense to you... GOOGLE IT! If the company, its software, or its messages are legitimate, your Google search will reveal information supporting its legitimacy. If it is a fake trying to trick you into a disaster, you will see thousands of websites all saying how bad it is and all of the problems it causes. You don't need to read any further; in a heartbeat, you know to close every window before this thing really gets you into trouble.

Third Rule: Maintain, Trust, and use YOUR Antivirus Properly.

This involves a few things. First, just like the lock on your front door, if it isn't installed properly, maintained properly, and used properly, it won't keep bad guys out. Installed properly is fairly obvious. If there is an error during installation, it ain't workin. Remove the antivirus, reinstall it, or pick a different one. Second, maintaining the security system properly. If the subscription runs out or the software stops updating, it is not properly maintained. Just like the lock on your front door, if the screws are hanging out, it ain't protecting you. Fix it or you will have an intrusion. Second, you have a security system. This is like your computers security guarding company. If your house is guarded by Brink's Home Security, you wouldn't trust a guy from ACME Security Systems to come and fix a security problem, but this is exactly what happens. Some fake antivirus warning pops in front of your face warning you of all of these infections, but if it is not YOUR antivirus, RUN!!! Third, Use Your Security System Properly. If you have a lock on your front door that you never lock and you invite anyone who knocks to "come on in", no lock can protect you. Using your antivirus properly means that you do not invite everyone in and that you scan everything that you download before you run it. If you don't use your antivirus properly, you will get infected and your computer will die. Just like the lock on your front door, it’s only a matter of time until a bad guy tries to open it.

These are the three rules to avoid getting a virus on your computer. These are the three rules that, if everybody followed, I would lose 80% of my computer repair business overnight. But these are the three rules that so few people follow, so, my job is secure. Keep breaking these rules and, as a computer repair technician, I'll always have work. But, if you can follow these rules, I can finally stop that insanity and do something I really like. So, be smart, be careful, and be virus free.

  
 
Is your Computer Secure?
Computer Clarity
Security Report
Computer Security Report Download Your
Free copy
 
Your Name*
Your Email Address*
Blog Updates
 
 
 
 
Making Computers Clear for You
The Clarity Shield Protection Program

Copyright © 2010  Computer Clarity

Colorado Springs, Colorado  719 266.8822