Resources

Over the weekend there was near pandemonium on the AVG free anti-virus software website forum page, as hoards of users rushed to report an error in a publicly issued update. It seemed that a file in the update was corrupt and failing to load properly across the board, regardless of computer type or operating system. Within a few hours there was an official statement on the AVG free forum letting users know that the company was aware of the error, and that steps were being taken to reverse it. The post said that while the update was flawed, users were not at any increased risk and security remained in effect. In far less than 24 hours, AVG had reversed the problem and the update was loading properly, a pretty good turnaround time, really. Still, while this case was solved before Monday morning at the office, the issue makes me wonder, what can we do when updates fail?

In this case, some users provided instructions to get around the error. After uninstalling and reinstalling to no avail, it was suggested that users isolate the corrupt file, then load the rest of the update and ignore the part that didn’t work. This approach seemed to work for many people who felt better knowing that their system had at least some of the new definitions.

The simplest fix for a failed update is to check the website and, if possible, load the most recent version of the program over your existing program. If uninstalling and reinstalling doesn’t work, like in the recent AVG example, you might have to wait it out, and let your computer lay low in the meantime. Since AVG is security software, and since the update was related to new virus definitions, it would make sense to hold off on any new downloads from unverified sources, and to wait on opening questionable attachments until you are sure your security suite is back in optimal condition. In this case the manufacturer issued a statement assuring clients that all was well, but better safe than sorry.

Another response to the missing file and unloadable update was concern that the deficiency had something to do with the ‘freeness’ of the software. Since the update error was for the free version of AVG, it was logical to think that the error might work to encourage users to upgrade to paid versions of the security program. However, this was not the case in the AVG example.

Some users commented that they would give AVG a short period of time to correct the mistake and then, if not done soon enough, they would download a different program. This remains an option for secondary software, but obviously isn’t so easily done regarding an operating system or a thoroughly preferenced web-browser. In these cases, check forum pages frequently and resist making any big changes to your system until the updates are corrected.

While your computer may have a software firewall such as the built-in Windows Firewall, a hardware firewall offers enhanced protection. In fact, if you have an “always on” Internet connection such as cable or DSL, a hardware firewall is a must. Even computers using dialup networking should have a hardware firewall if they are connected for extended lengths of time.

Hardware firewalls are physical devices located between your computer and your modem, often in the form of a router. These devices effectively hide your computer from discovery by others over the Internet.

For example, if you have a wireless home network with a wireless router, the wireless router most likely has firewall features and acts as a physical barrier between your home network and the Internet at large.

Hardware firewalls protect your computer from incoming and outgoing threats based on default and advanced settings and filters. While firewalls are a good first line of defense, they must be part of a larger security plan.

Many Internet intruders are doing their best to access to your computer including hackers trying to remotely log in to your computer and taking it over; worms or Trojans that set up “hidden access” or “backdoors;” malware that exploits your operating system’s weaknesses; hijackers that take over your SMTP sessions and send spam e-mail to thousands of users from your computer; and dozens of other dastardly deeds.

Most hardware routers come with some sort of a utility that allows you to customize the protection. For example, your firewall may automatically block all outgoing communications from software programs. However, you may actually want a program to communicate with an offsite server such as an anti-spyware program contacting its developer to download the latest updates. In these instances, you can create an exception and allow certain programs or even Web sites to get past the firewall.

While the hardware firewall offers these features, it’s not always easy to figure out how to use them. For example, many Linksys routers have a user interface that you access not by launching a program but by entering the router’s IP address into your Web browser followed by the appropriate administrative credentials. You’ll need your user manual as well as your router’s network IP address before you can even begin customizing the router.

To figure out your router’s IP address, go to a command prompt and type in ipconfig. This lists various IP addresses with the “default gateway” usually being the router’s IP address.

Any computer that connects to the Internet or is on a network needs to be protected from hackers and other dangers. Even a single computer that rarely connects to the Internet needs basic protection. Firewalls are one part of the computer security equation. Firewalls come in two flavors: hardware and software. Hardware firewalls are physical devices such as routers that block incoming intruders while software firewalls are programs that attempt to do the same thing.

Computer security requires a whole host of tools including both types of firewalls, anti-virus products, anti-spyware products, and real-time protection. A software firewall is the tool that you can configure to protect your computer against incoming hacker attacks as well as to block malware from “calling home.” The software firewall checks incoming and outgoing information  coming to our from your computer and compares it to your firewall settings before blocking or allowing the information to pass through.

Your Windows XP or Vista computer comes with a built-in firewall called Windows Firewall that should definitely be enabled if you don’t have a software firewall currently installed on your computer.

Windows Firewall is located in the Control Panel. It’s a basic firewall that allows you to turn it on and off as well as block all incoming connections when you’re connected to a less secure network. In addition, you can set exceptions to allow certain programs to communicate through the firewall as well select specific networks to actively protect. 

If you have Windows Vista, there’s a second version of Windows Firewall on your computer: Windows Firewall with Advanced Security. Go to the Start button and type in Windows Firewall with Advanced Security and then click the icon in the Program list. Once inside the program, you can create new rules, disable or edit existing rules, export a list of your settings, and monitor advanced security modes between two computers.

Windows Firewall only protects against inbound threats. Malware that’s programmed to call out can bypass the Windows Firewall.

Many fine third party firewalls exist that offer comprehensive controls over access to your computer including protection against outbound threats. You may even have a software firewall bundled with your computer’s Internet security suite. For example, many security suites contain anti-virus, anti-spyware, and anti-spam components as well as a firewall feature. Depending on the software firewall you have, you may be able to create different firewall “profiles” for varying network conditions as well as adjust your firewall settings.

While software firewalls have their place, they are only one of several security tools that any Internet connected computer should have.

Microsoft Internet Explorer uses four different “security zones.” These zones include: Internet, Local Intranet, Trusted sites, and Restricted sites. Each of these zones can have specific security settings. For example, when connected to the Internet, your computer should have tighter security than if you were connected to your company network.

These zones allow you to move Web sites from one zone to the next. Let’s say you regularly visit a particular Web site (such as your online banking Web site) and are willing to accept any ActiveX controls or run any scripts on that site because the site is trustworthy. In this case, you could send the site to the “trusted” security zone.

First, let’s tackle your issue of blocked downloads. These are most likely being restricted by the security zone settings of Internet Explorer. Fortunately, you can adjust these settings. Launch Internet Explorer and go to the Tools Menu. Pick Internet Options. Click on the Security tab and you will see the four settings. Highlight the Internet zone and you should see a sliding bar that you can adjust up or down. If you don’t see a sliding bar, then you have previously customized the security level for this zone.

You have two options here, either adjust your setting to a lower level (which could compromise other security concerns) or customize the settings. Click on Custom Level and you’ll see a list of different settings that you can change. Scroll down to the Downloads area. Click the option button that says Enable. Click OK to make the changes. You may need to reboot for the change to take effect.

Check the settings for each of the security zones. For example, if the site that you are trying to download content from is in your Restricted site list, then that’s why you can’t download. Restricted sites are generally untrusted and you shouldn’t download from them.

Another issue with some versions of Windows is that you must have administrative rights in order to install software. So, while you may be able to download a program, you may not be able to actually install it unless you are signed on as the administrator. Make sure that you are using a user account with administrative rights.

Finally, Windows Vista comes with a security measure called User Account Control that could be interfering. While it doesn’t necessarily block downloads, it does prompt you under certain circumstances such as when an unsigned program wants to access your computer. If you find User Account Control more annoying than useful, you can turn it off. Simply go to the Control Panel, click on Security Center, and then turn User Account Control off. If you have a good Internet Security software solution and firewall in place, your security software will warn you of dangers without needlessly nagging you the way User Account Control does.

Yes. Your computer can download ActiveX controls without having to buy software. Products such as RegCure aren’t designed to assist in downloading ActiveX controls or other add-ins. Nor are they designed to analyze the safety of ActiveX controls. Rather, RegCure (and other registry cleaning utilities) is designed to clean up the registry in the aftermath of failed installations and un-installations as well as remove registry entries related to malicious programming such as when a malicious ActiveX control has been installed. These products also remove obsolete entries and more.

ActiveX controls are also called “add-ons.” They are small programs that are used in conjunction with your Web browser. In a perfect world, ActiveX programs would be safe to use every time. Unfortunately, ActiveX controls have been abused by advertisers and malware writers, making it necessary to take precautions.

Your computer’s Web browser comes with options for allowing or preventing the downloading of ActiveX controls. If you have Internet Explorer 7.0 (the process is similar for other versions), go into the Tools menu and choose Internet Options. Click on the Security tab and make sure the Internet icon is highlighted. What security level is your computer set on? Each level has difference allowances. For example, at “medium-high,” Internet Explorer is told not to download any unsigned ActiveX controls.

You can also click the Custom Level button and make your own security decisions regarding how ActiveX controls are handled. Scroll to the ActiveX Controls and Plug-ins section and make your decisions. Among the options are:

• Allow previously unused ActiveX controls to run without prompt
• Allow Scriptlets
• Automatic prompting for ActiveX controls
• Binary and script behaviors
• Download signed ActiveX controls
• Download unsigned ActiveX controls
• Run ActiveX controls and plug-ins
• Script ActiveX controls marked safe for scripting

Each of these options has choices such as enable, disable, or prompt. Prompting is a good compromise when you’re unsure what to do about your settings. By being prompted, you can evaluate the ActiveX control on a case-by-case basis. For example, if you trust the Web site and are prompted to download an ActiveX control, you can make an informed decision about whether or not to allow the download. Likewise, if you’re on a random Web site such as one you visited based on a link in a Spam e-mail message, you probably shouldn’t allow the download without further evaluation or research.

You can also remove ActiveX controls from within Internet Explorer. Go to the Tools menu and choose Manage Add-ons followed by Enable or Disable Add-ons. From there, you can disable or delete ActiveX controls.

 Remember the old cowboy movies where you could tell the good guys from the bad guys based on the color of their hats? The outlaw wore a black hat while the sheriff rode into town with a crisp white hat. Like the renegades of the Wild West, hackers have adopted the same symbols. So-called “black hat” hackers are the ones causing all the trouble while “white hat” hackers do their part to bring order to the Internet.

In order to beat hackers at their game, you’ve got to know the game. By learning how hackers exploit systems, you can implement blockades and secure perimeters. Ethical hackers learn hacking techniques in order to defend against them. In fact, Certified Ethical Hackers enroll in extensive training programs and pass a series of exams in order to earn this highly regarded credential. Most certification programs also require participants to sign an agreement that the hacking techniques they learn will be used for good, not harm.

What does this mean to regular computer users like you and me? Imagine two financial institutions, one that employs ethical hackers and one that doesn’t. The first institution regularly puts its defenses to the test and plugs exploitations discovered, making it harder for the black hat hackers to get in. The second institution does nothing and is an easy target for hackers.

While there’s no way for us to know which companies employ ethical hackers, it is reassuring knowing that information security professionals are on the job, valiantly fighting against the bad guys.

We can also take advantage of the progress made by ethical hackers by purchasing tools that have been developed to combat known threats. Critical tools include:

• Routers
• Firewalls
• Anti-virus software
• Anti-spyware software
• Anti-spam software
• Privacy control software
• Security software

In addition to installing and using products, we must also adopt safer computer habits including creating unique, hard-to-crack passwords, implementing security on wireless networks, recognizing scams and phishing attempts, using care with downloads and attachments, and never leaving our computer unguarded when amongst other people.

Just as a good detective tries to get inside a criminal’s mind in order to solve or prevent a crime, so too does an ethical hacker try to get inside a hacker’s mind. As a computer user, it doesn’t hurt to think like a hacker as you go about your computing business. Think like a hacker when creating passwords. How easy would a password like “1234″ be to crack? (Easy.) What about a password such as, “oNe#2#thRee#foUR”? (Hard.)

Think like a hacker when making an online purchase. How easy would it be to intercept your credit card information if the Web site is unsecured? (Easy.) How about if the Web site uses encryption? (Hard.)

Think like a hacker when strange or even legitimate-looking e-mail messages arrive in your Inbox. How easy would it be to copy a logo from a Web site and create a fake e-mail to trick you into revealing your account information? (Easy.)

Learn to think like a hacker and invest in the tools that ethical hackers have helped to develop and you’ll be far better protected against attacks.