1: Antivirus
This may seem basic but you would be surprised how many people do not update their anti-virus or use it effectively. First you need to choose a good anti-virus software that is right for you. I have used several, some good and some bad. To get started, if you are looking for something that is relatively simple, I would suggest researching Avast OR AVG. The most important thing is that you keep the AV up to date and scan your system regularly. One nice feature that Avast offers is a smart scan, which detects weak passwords, viruses, network issues, browser extensions and outdated software all in one simple scan.
2: Anti-malware
Most people know that they need an anti-virus software but many people don’t realize that isn’t enough. On several occasions, I have seen malware on computers that wasn’t picked up by the anti-virus even after doing a full system scan. This is why I suggest pairing an anti-malware with your anti-virus. One program I have had a lot of success with is Malwarebytes. This is not the only option but I have seen this program pick up dozens of threats on “protected” computers. If you are experiencing issues with your PC and your AV came up with nothing, give this program a try.
3: Scan downloads
One feature of both most anti-virus and Malwarebytes that many people don’t use is the ability to scan individual files. This is perhaps one of the easiest and best practices to incorporate into your computer security routine. Before you open any file that you have downloaded on the internet, right click the file and choose “scan with Malwarebytes” or “scan with (antivirus)”. This provides an additional layer of security in an area that is easily exploited.
4: Encryption
The whole point of keeping your computer safe is to protect your information. You need to keep your PC safe from both online threats and physical threats. Keeping your PC password protected is great and will stop the casual snooper, but if you want to take your security to the next level, you can encrypt your hard drive. There are a variety of programs that will do this but some popular options include TrueCrypt and Bit Locker. If you do not want to go through the time and hassle of encrypting your entire drive you can encrypt specific files and folders. Using Microsoft Office, you can encrypt and password protect files. Keep in mind that the encryption they use can be broken by any Digital Forensic Investigator worth their salt. Another great option is to buy an encrypted flash drive like Iron Key and using it to easily store private information.
5: Be smart!
You can have the most advanced and expensive computer security products in the world, but nothing can save you from bad decisions. Here are a few simple rules to follow to protect you from yourself!
Don’t click on ads
Don’t download files from unknown websites
If something sounds too good to be true it probably is
Don’t open or download anything in a sketchy email
(No you are not actually going to get 1 million dollars from a Nigerian Prince)
When doing financial transactions check to see in the search bar that you have a HTTPS connection.
It's a wonder so many people do the exact things in section 5. Thanks for the clear and concise overview! It will help a lot to those that are new to securing their computer.
No problem, thanks for reading!
Great post! What do you think about running Windows as a Standard account rather than Administrator? It creates more work, but since we switched my wife and daughter can't break their machines.
Haha, managing permissions and user access is a pretty fundamental part of computer security. CompSec is all about compromising ease of use with security. It may be a little extra work but not enough that it isn't worth it. Thanks for reading!
Good tips. You forgot another way...Linux.
Thank you! Yes, similar concept to running Mac OS, most viruses and malware are written for windows. There is malware written for Linux but it is much more rare.
Best way is to disconnect your ethernet cable.100% secure.
Just kidding..good post. :)
Haha,
step 1. Dig Hole
step2. Bury computer
All safe ;)
Thanks!
very good. I like
Thank you :)
Nice post @digicrypt!
I was not aware of the encryption options for hard drives or individual files. I'll be looking into BitLocker.
Are you familiar with the Sentinel project from McAfee?
I wasn't familiar with that specific project but it reminds me a bit of Fire Eye.
Fire Eye is a very expensive computer security and anti malware system that has been used by many corporations and government agencies.
I don't know if you remember the large breach into Target a few years ago???
Several months before the intrusion target had purchased and setup FireEye for nearly 2 million dollars if I remember correctly.
FireEye works by “creating a parallel computer network on virtual machines. Before data from the internet reaches Target, they pass through FireEye’s technology, where the hackers’ tools, fooled into thinking they’re in real computers, go to work. The technology spots the attack before it happens, then warns the customer. Unlike antivirus systems, which flag malware from past breaches, FireEye’s isn’t as easily tricked.”
FireEye is designed to automatically neutralize threats, however in the Target breach this feature was manually turned off by Target Security personnel. This is why number 5 is so important! If they hadn't ignored and turned off the alert and response the breach would have been stopped cold.
Any system is only as good as the person using it...
Interesting... I am familiar with the Target breach but not with Fire Eye.
You're right, we still have to be alert and utilize what we have.
Btw, I am working through Fides et ratio. Wow, my mind is being stretched, haha.
Unfortunately most security breaches are as a result of human error or bad decisions, that is why education is really the most important tool!
Thats great! I commend you for giving it a shot, there is certainly a lot to unpack lol.
"Only within this horizon of truth will people understand their freedom in its fullness and their call to know and love God as the supreme realization of their true self."
I could spend a whole day just pondering that one sentence...lol
It is when reading writings like this or from our good friend Chesterton, that I am extremely humbled ;)
I certainly am interested to hear your thoughts!