Call Me Button Updates occur every 720 minutes. Home Page

Security Recommendations

Please call us if you would like help making your computer(s) and network secure.

1) Use antivirus and two-way firewall

Your computer can come into contact with malware from many sources: web sites, email attachments, instant messages, USB flash drives, file sharing, and other computers on the same network (work, home, friend, hotel, airport, coffee shop, etc.). Make sure to keep your antivirus and firewall up-to-date!

If you think your computer may be infected, call and we'll help you remove it!

2) Keep software up-to-date

Keep the Windows operating system and the other software on your computer up-to-date with the latest security updates. Since hackers exploit weaknesses in your programs, applying security updates makes tampering with your computer much more difficult.

Secunia's Personal Software Inspector can help you determine the software on your computer that needs to be updated.

3) Use a safer browser

Use the latest avaiable version of Internet Explorer, Firefox, Opera, or Chrome. When security updates are released for your browser, install them right away. The NoScript extension for Firefox provides an especially flexible way to block potentially hazardous web content on a site-by-site basis, and it also blocks web attacks that use a number of different techniques, such as cross-site scripting (XSS), cross-site request forgery (CSRF), and ClickJacking.

4) Browse safely

Web sites often trick users into installing a virus by claiming a codec or plugin is required and then offering their own download direct from their web site. Download browser plugins only when absolutely necessary and only directly from the plugin's author. For example, the popular Flash player plugin made by Adobe should only be downloaded from http://www.adobe.com.

Avoid opening any kind of file from an untrusted source. Program files (with the .exe extension) are particularly dangerous, but ordinary document files corresponding to applications such as QuickTime, Adobe Reader, or a Microsoft Office application) can also contain viruses. Keep your antivirus and applications up-to-date!

5) Change the password for your modem/router

To prevent serious risk to your entire network, change the default password on all routers and access points and update the firmware.

6) Strong encryption for your private wireless network

The best encryption method currently available for commercial wireless routers is WPA2. Set a strong WPA Key to help prevent your network traffic from being compromised.

7) Avoid using public WiFi hotspots

WiFi hotspots are convenient but they are not secure. Hackers on the same WiFi network can potentially access all of your Internet activity and even your computer!

See a BBC video showing a Gmail account being compromised.

If you must use a public WiFi hotspot, follow these two precautions:

→ Connect only to the official hotspot

Sometimes this may even be impossible! A hacker’s laptop can create a very strong WiFi hotspot signal. Just because the network is the “strongest” does not mean it is the right one!

If there is more than one official-sounding WiFi network, watch out!

→ Encrypt your entire browsing session

Use a properly designed VPN connection whenever possible.

If you are not using a VPN connection, do not log into an account unless SSL encryption is applied to the entire session (not just the sign-in process).

In the above video, the Gmail account was newly created and likely did not have the Gmail setting for SSL encryption switched on. Gmail users should switch on encryption by following these instructions.

8) Web site password security

Use different random passwords for different web sites. You don't need to remember them! Save your passwords in a file. You can then either copy/paste them into your browser or just let your browser remember them.

(Firefox users: The plugin Xmarks can be used to synchronize your passwords between multiple computers. Make sure to use a giant random password for Xmarks since this will help protect your other passwords.)

Avoid logging into your accounts using publicly accessible computers such as hotel computers. It is too likely your passwords and account data will be compromised. Public computers are best used for activities such as checking the weather or news headlines.

If you believe a password has been compromised, change it at the first available opportunity.

9) Back up your data

Make a copy of your critical data at least every week or two just in case the unthinkable happens!

10) Administrator account only for computer configuration

Create a Limited User account (Windows XP) or a Standard User account (Windows Vista, Windows 7) and use it to do most day-to-day activities, such as browing the web and checking email. Use an administrator account only to install new software or update existing software.

11) Separate Limited/Standard account for untrusted documents/sites

In some cases, a document must be opened or a site visited even though there is a chance it is unsafe to do so. In these cases, do so from within a new, non-administrator computer account.

As an example, on February 19, 2009, malicious PDF documents began circulating on the Internet targeting a vulnerability in all versions of Adobe Acrobat and Reader. (See Security Alerts.) Adobe quickly announced a patch to be released on March 11, 2009. However, during the February 19 to March 11 period, the safest way to open PDF files would be to use the above procedure.

Continuing the above example, what if you receive a PDF file by email from a trusted friend or family member during the February 19 to March 11 period. It must be safe, right? No! This is precisely how viruses can spread so rapidly. When a friend or family member's computer is compromised, the virus can send infected files to everyone in the computer's address book, including the trusted friends and family!