Tech Oasis

Showing posts with label Security. Show all posts

Samsung Galaxy S7, Google releases critical security patches for Android

Samsung Galaxy S7 is expected to have a faster processor (Qualcomm snapdragon 820) and restore the SD storage slot it had earlier removed in the Samsung Galaxy S6.

It is also expected to be priced 10% lesser than what S6 costs in the market today to give S7 the competitive edge of high performance at a low price strategy. That could increase the dwindling Samsung market share.

The reports say it is not just a classic improvement but a dramatic one, where Qualcomm has promised a highly improved performance. Phone will support VR, Streaming media and big data.

Samsung S6 started off at $600 to $685 off-contract depending on the US carrier.

Galaxy S7 expected to have faster processor, return of storage slot. - ComputerWorld

Google patches security flaws in its Android Nexus phone's through a security press release. These flaws could be exploited remotely through MMS, Web Pages and rogue apps.

Firmware updates are being rolled out for vulnerabilities which are numbered five of critical, 12 ranked as high and two as moderate.

Google patches critical vulnerabilities in Android - Computer World

source.android.com/security/overview/update-resources

Valleyz

New Dorkbot threat: Microsoft together with law enforcement successfully disrupt Dorkbot network

Microsoft has been roped in by FBI together with several law enforcement agencies as it had launched a program to thwart the threat from a botnet known as Dorkbot and effectively disrupted it.

The Dorkbot reportedly uses a ring of more than 100,000 computers.And usually attacks another 100,000 computers on an average every month there by affecting millions of computers in over 190 countries.

It basically installs itself on to the computer of a user without any intimation and executes commands remotely like stealing information from the attacked computer like logins and passwords. In fact it was widely reported that sites like g-mail, Netflix and PayPal were hacked by hackers to steal information.

Once you have this Dorkbot installed on to your computer it will probably have installed other malware too like Scareware, Adware, RansomWare and so on.

The enforcement team advises users to run anti- malware software regularly to detect the threat and do not click unto emails from unknown receivers and download your software from known developers. And keep your system updated with latest updates of anti-malware software.

For Further reading :

What is Malware? How to protect your Mobile/PC from it?

Valleyz

What is Spyware? How to protect your Mobile/PC from it?

A Software program designed in such a way to extricate information from a device Mobile/PC or communication/electronic device including identity details, financial transactions, property certificates, bank information, credit card information, other personal communications etc.,

Intrusion into a system through a software program is one of the ways to do it. Often spyware is loaded on to a computer in the form of a legitimate PC game or a Browser Tool bar etc etc.,. Then it logs your activity, the sites you visit, the communications you make and transfers data remotely without the user even knowing about it on a regular basis, unless it scanned and removed from the system regularly.

Often the cookies that you receive from the sites you visit they record and trace your browsing info, but when you store those cookies continuously, they will continue to know about even after several months that you have visited their site. The companies use such information to target customers when they are browsing the Internet. And ads that Pop up in your browsers reflect that reality. Those are Adware.

Always have an Anti-Virus and Spyware protection on hand. Run the spyware scan and remove any unwanted program on your computer. Buy your Spyware Protection and Anti-Virus from a reputed brand.

There is no fool proof security, some or other way a User clicks on unwanted Pop-up. Sometimes visit a website while browsing and malware catches it. It's always useful to close Pop-Ups by clicking the X sign instead of cancel.

Don't click on suspicious links on Twitter, Facebook, MySpace etc.,

Three basic steps for Android Users :
1. Do not leave 'unknown sources enabled'
2.Avoid third party apps i.e., use only apps from Google Play store.
3. Read App Permissions carefully.

For Apple Users :
It is a Unix based operating system it is less susceptible to attacks.

Apple has built in Anti-Malware X protect officially known as File Quarantine, snow leopard, Apple OS X
Do Not Install Norton Anti-Virus on a Mac machine. Not compatible and it will seriously damage your device
Number of fake security products don't install them.
Block Pop-ups
Avoid suspected websites
Avoid Peer to Peer communications.
Consider using Mac OS X built in firewalls.
Use an Anti Virus Program like ClamXav.

Further reading :

What is malware? How to protect your PC/Mobile from it?

What is Computer Virus? How to protect your Mobile/PC from it?

Valleyz

What is a Computer Virus? How to protect your Mobile/PC from it?

A Computer Virus is a malicious software code that is designed to spread from one system to another by attaching itself to a system file of an attacked computer system or Mobile rendering it to malfunction or rendering it's Operating system corrupt.

For example:- An infected Universal Serial Bus (USB) or Pen drive can infect the computer or the Mobile Phone. It not only infects but multiplies itself in to many copies and transfers itself to other computers on the network.

In order to prevent a Computer Virus to attack your system, it is highly recommended that a User should install an Anti-Virus software from a reputed vendor like Symantec/Norton, Kaspersky, Avast, Google Play store, Apple or Samsung etc.,

If you do not have an Anti-Virus installed on your PC or Mobile and your computer is already attacked by the Virus then try to install the new Anti-Virus software downloaded online or purchased through original vendor in the form of a CD/DVD. If the system has totally collapsed. Then it is bad news as all your data on Mobile phone or the PC will be lost.

So it is highly essential to scan a USB, CD or any other devices attached to your system/Mobile to be scanned first to check any hidden Virus.

Viruses could be downloaded on to your system through Internet also. In order to protect your PC or Mobile Phone from online attack, avoid clicking on to suspicious links in e-mails or websites offering murky deals. Install a firewall to block unwanted and suspicious traffic entering your computer.

Outdated Operating systems should be removed from your system and latest OS should be installed for your Anti-Virus Program to function properly and protect your PC or Mobile phone.

Always download your Anti-Virus software from original vendor online. Also download other essential utilities such as Adobe flash player from the Adobe site itself by visiting the site.

Also another grey is peer-to-peer or P2P networking, where online users use bit-torrent technologies such as now defunct Lime-wire to share movies, games, software, and other pirated data. There lies a potential threat of Trojans (hidden malicious codes) presenting itself as a genuine file getting downloaded on to your system.

Android phones are reportedly leaking data worldwide, don't leave 'unknown sources enabled', avoid illegitimate apps i.e., outside of Google Play Store.

Downloading files on a Mobile is very much similar to a PC, always see what permissions you are allowing newly installed software/App access to on your device, that is the crucial thing to stop your device being manipulated. If you suspect anything suspicious twice check the credentials of the software again online before continuing with the installation.

Often clean your devices of temporary files, free up disk space, keep your installed programs regularly updated through visiting original vendor sites. Never let your personal device in a public space unattended or hand over it for even a few moments.

Always lock up your PC/Mobile through a Pin/Password or Pattern or Voice or Facial recognition lock, don't modify i.e., jailbreaking.

Wireless security is another area where users have to be cautious connecting to an unsecured network, where any one can log in and install a virus. Use a secure Wireless connection only. Bluetooth devices have potential security problems, like Bluetooth Holes and Bluetooth Bonding, often scan your Bluetooth devices for viruses.

Don't click on suspicious links on Twitter, Facebook, MySpace etc.,

Three basic steps for Android Users :
1. Do not leave 'unknown sources enabled'
2.Avoid third party apps i.e., use only apps from Google Play store.
3. Read App Permissions carefully.

For Apple Users :
it is a Unix based operating system it is less susceptible to attacks.

Apple has built in Anti-Malware X protect officially known as File Quarantine, snow leopard, Apple OS X
Do Not Install Norton Anti-Virus on a Mac machine. Not compatible and it will seriously damage your device
Number of fake security products don't install them.
Block Pop-ups
Avoid suspected websites
Avoid Peer to Peer communications.
Use an Anti Virus Program like ClamXav
Consider using Mac OS X built in firewalls.

What is Malware? How to Protect your Mobile/PC from it?

What is Spyware? How to Protect your Mobile/PC from it?

Valleyz

Internet Security and Privacy at stake

Ever since the news broke out about the wide spread surveillance programmes through monitoring and interception of communications of individuals and organizations alike, the confidence of an average internet user is fast eroding in the security policies of the internet which seemed fool proof at least in terms of high end communications, such as ATM transactions and private communication networks.

But detailed media reports in the recent times showing how monitoring agencies carried out the surveillance, left many users high and sundry. Private organizations have alleged secret surveillance of their businesses and black listing them out for continued surveillance can sum up the seriousness of the issue. The data about how an organization is going to conduct their business in the near future can practically be damaging to the interests of a private business.

In other instances individuals are reported to have been fooled into believing that they are communicating or logging into servers of giants like Google is quite alarming. There are allegations in the media about surveillance agencies carrying out Man in the Middle (MITM) attacks thereby intercepting and routing the user generated traffic to servers belonging to surveillance networks without the user not knowing is quite alarming.

Industry experts are already pointing towards the damage these findings are causing to the internet industry world wide. The biggest names in the internet industry like Yahoo, Google, Microsoft and others are tight lipped and have confirmed of giving out data belonging to consumers to surveillance agencies when there are specific requests from the government. What this corresponds to is whether anybody has committed a crime or not you are going to be monitored. Even the banking transactions over secure tunnels of ATM network is not out of the purview of surveillance, which means any body using any thing on the internet is under constant surveillance. Whether they write emails, conduct monetary transaction, shop online or even read any material, someone out there is watching you.

Though the technology is highly enabling but constant and relentless requests by the governments can scare away even legal and law abiding entities who want their business transactions and other lawful business plans coming into the domain of intelligentsia could spell the doom for the industry.

Nobody any longer would want to believe the technology that used to rely on is secure and cannot be deciphered and analyzed for any length of time. The world has come to know bitterly that internet is not secure no matter what the encryption standards are no matter how private a network is, no matter what the industry has to offer.

Decades of innovation, research and design has come under intense scrutiny that has given rise to plethora of questions, whether the internet is going to be a secure, fast, reliable, anywhere, anytime communication technology is going to be seen in the near future.

An ISP can track you, a hacker could break into your network, a surveillance network can intercept your online data, cyber criminals looting your private data from public entities such as hospitals, insurance companies, banks. How is it going to be any safer on the internet?

For Further Reading :

Discussing Internet Privacy issues

Discussing Internet Privacy Issues

Now we will look at some of the web links related with Internet Privacy issues .

This paper by a suffolk University researcher Morris A. Singer notes in particular the privacy issues involved in Social Networking sphere. You can take a look at it

http://suffolkmedialaw.com/2010/05/20/how-privacy-limits-utility-using-facebook-as-a-case-study/

Below is an excerpt from that paper.

"On April 27, 2010, U.S. Sens. Al Franken, Charles Schumer, Michael Bennet, and Mark Begich wrote a letter to Facebook, urging the social networking company to change their privacy settings modifications from opt-out to opt-in. In a statement accompanying the letter, Sen. Schumer said:

Millions of New Yorkers use social networking sites like Facebook, Myspace, and Twitter every day with an expectation that their private information is shared only with those they choose to connect with . . . . [I]t’s vitally important that safeguards are in place that provide users with control over their personal information to ensure they don’t receive unwanted solicitations and other nuisances, and that they are not automatically gathered into online groups without their consent."

Science Daily had some of the reports below running last year, discussing issues related with Privacy, How Facebook and other Social Networking sites pose concerns for a user, where the user signs away his rights to the online entity.

You can read about the Science Daily report discussing this particular issue.

http://www.sciencedaily.com/releases/2009/10/091013162746.htm

Another Science daily report discussing a research at Worcester Polytechnic Institute, how practices of many social networking websites make available a User's browsing information with the tracking websites.

You can read this report

http://www.sciencedaily.com/releases/2009/08/090824151307.htm

Recently there were many privacy issues reported in the media, when it was noted that Engineers at the web giant Google were detected to have copied or collected a huge volume of private data illegally, while surveying the streets in European cites, for the Google's Street View application.

Read related BBC story

http://news.bbc.co.uk/2/hi/8684110.stm

Google has been since in damage control mode and made clear that it has already purged or are on the way to purge complete data collected illegally, and then recently Google tightened up it's employee privacy policy when dealing with Customer data. Read related Yahoo report here.

There's no reason to doubt the steps taken by Google in this direction, but the concern will remain high with How much user data changed hands or the content duplicated. Though these issues are still unfolding, and it will take time till the user's swarming the Social sphere can comprehend about what exactly is been done with their virtual identity, that's increasingly revealing more and more information about a User. And a fact that it no longer gives a User an identity, which used to seem so anonymous online a couple of years ago.

You can take a look at the Privacy Policy of the facebook

http://www.facebook.com/policy.php

You can take a look about the latest privacy features introduced by facebook recently

http://www.pcworld.com/article/194866/facebooks_new_features_and_your_privacy_what_you_need_to_know.html

How do you think that your Privacy might be affected online ?
Do you think it is OK for tracking websites to scan your data from Social Networking sites with which a User actually signs a Privacy and Terms contract ?
When did you felt that your Online Privacy has been violated ?
Are you satisfied with Privacy Policy of all the online majors in the Social Networking realm ?

For Further Reading :

Internet Security and Privacy at stake

Browser Security Essentials for User Privacy Part 4

Continuing from the previous post, we will discuss now what are session cookies and persistent cookies and how to handle them.

Session Cookies are sometimes used in authentication in order to log-in a customer into a restricted area, like chat clients, e mail, bank accounts and other authentication based user access websites, to record your visit and amount of time spent at a website and give seamless access to all the web pages associated with that website.

Session cookies are also time duration sensitive and record your activity when using a website, if there isn’t any activity for a stipulated period of time, some websites prompts to re enter the authentication credentials to prove that it is the original user who is using the account, since there are so many ways that an account can be compromised. Always remember to clear the cache and other personal details like search forms, address bars and history of the browser when using a public terminal and also do not forget to close off the browser before leaving.

The closing of the browser terminates all the connections with communication ports through which the data traverses on the machine. This all information is stored in an Internet Protocol header (IP header) and other memory registers on your system. There are so many other ways to work with IP headers. So when the browser window is closed it terminates all those ports involved in communication at that particular moment of time. So when a new Browser is opened it has to initiate all the requests to establish a new connection with new set of values.This in many ways helps protect your privacy.

Communication technologies have converged fast, 4G networks are already deployed in many parts of the world particularly in some markets in Scandinavia, North America and South East Asia. More and more devices are hooking up, more technologies and gadgets are developing at a rapid pace, the more the security issues are involved with all the devices which we use for our daily communication needs, and it is highly advised to update your understanding and techniques of using these technologies, so that we do not fall victim to attacks and loose our precious data and time.

And now we will come to discuss Persistent cookies, these are the cookies which note a user's preferences and other needs like customer settings like language, mode and other user preferences while visiting a site and stores this information in the cookie to be placed onto your system. So when you make the next visit, it is easy for us to be offered services at a faster speed. But the problem with these set of cookies is same as ever, that it could be used to target you knowing your preferences, if a malicious user gains access to these cookies. So it will be up to you to clear the cookies when you visit a site. Or the level of trust you place with the site being visited.

So you need to focus on how to set privacy settings on your local browser, if you're using multiple browsers, you need to understand where you need to look for the privacy settings in different browsers. You need to understand how to clear cookies from your system, how often and when.

In the upcoming posts we will look into how other types of persistent cookies( which are almost impossible to remove), flash objects and scripts pose serious privacy issues for a user and how to deal with them.

The reason to take these issues seriously is, it is not all the time that a user can know in any way that his accounts are being used unscrupulously. Sometimes there is every chance that you will never know, how your personal accounts have been abused.

Browser Security Essentials for User Privacy Part 3

It is long time since I have delivered a post at my blog due to my busy schedule, but please remember one thing, that in absence of ready information, you should try to inculcate the habit of searching for latest trends related with Internet security.

And now we will further discuss Browser Security with respect to User's privacy, and how to handle the cookies that a user might come across while surfing the web. We will also discuss about scripts and flash running on a system in upcoming posts.

So now, lets settle down to discuss cookies. It is important to understand all the privacy issues associated with all types of cookies.

The types of cookies are tracking cookies( these are cookies specially designed to track the movements of a user when surfing the web), session cookies, persistent cookies and and also the Local Shared Objects( Flash cookies ).

Session cookie are session based that are erased after a browser is closed, they are no longer stored on a users system, and that work with a typical session ID. They are stored in a temporary folder and automatically get erased.

Session Cookies are sometimes used as authentication cookies in order to log-in a customer into a restricted area, like chat clients, e mail, bank accounts and other authentication based user access websites. These cookies are specially designed both ways to protect a users account from intrusion from a hacker waiting in line to attack, to record user's visit to a website and give seamless access to all the web pages associated with that website also recording your visit length simultaneously.

The persistent cookies are the one's which notes customer settings like language, Geographic location and other user preferences while visiting a site and stores this information in the form of a cookie to be placed onto the user's system. So, when user makes the next visit it is easy for him/her to be identified and offered services at a faster speed. But the problem with these set of cookies is same as ever, that it could to be used to target you knowing your preferences if a malicious user gains access to these cookies. It will be up to the user to clear the cookies when visiting a site. Or the level of trust a user place's with the site.

User need to focus on how to set privacy settings on the local browser, if you're using multiple browsers, you need to understand, where you need to look for the same privacy settings in different browsers. You need to understand how to clear cookies from your system, how often and when.

In the upcoming posts we will look into how other types of persistent cookies, flash objects and scripts pose privacy issues for a user.

Browser Security Essentials for User Privacy part 2

Before moving ahead we should understand what a term cookie is ?

It is a small piece of Text string placed in the user's memory ( System ), by a host that is being visited. Why it is placed ? And How it is used ? are the two questions that a user should understand and use it according to personal preferences, like the trust you place with a website being visited with respect to your online privacy.

A cookie is used for many purposes including authentication, session tracking or remembering the user preferences such as shopping carts and other data.

Authentication involves a host to know a particular user’s information and simultaneously it can allow it to log in at the terminal. Here, a browser needs to accept the cookie, without doing so, you may not be able to access the service.

Session tracking as the name itself suggests, is used to track the amount of time spent by a user at a website and other related info.

Also we understand, by remembering the preferences of a user such as shopping carts and other data, lets a host or other third party hosts know the details of user’s spending and this data further used in business targeting.

As you know now that a cookie is very helpful when it is used in a proper manner, but sometimes there are many bad sites which attack computers online, it is well advised to be cautious and you can enable switch it on and off according to your preferences and trust which you place with the website. Browser security will be further discussed in the next post.

Browser Security Essentials for User Privacy Part 1

Source freepixels.com
One of the aspects of computer security mostly neglected or ignored is the browser security.

Most users tend to neglect or ignore this important feature of securing their system from malware being run on their system when they inadvertently visit a bad site and click scrupulous links thinking them to be safe. And let the malicious software’s intrude your system, the actions a wary user can avoid.

This is a news story I followed this morning and this should be an eye opener, how an unsuspecting consumer is led to click on malicious links and rogue anti-virus software’s getting installed onto your system without you knowing the veracity of the rogue software.

The big part of the problem is removal, it is hard to get them removed from your system once you have installed them. So protection is better than cure here too.

Check the authenticity of the security software you are downloading from the web.

One thing you will notice when visiting a website, you come across many other third party sites. Some times these third party sites are vulnerable and can pose a security risk to your system.

One thing a user should keep in mind when visiting a website, that the browser and the network are giving out information to the host. Like the IP address, the type of browser you are using, and other details, as most of us know this fact. So is akin walking onto an open street.

Besides this, our system also shares a level of security when visiting a host. That you allow a host to place a cookie on to your system and run scripts. You can simultaneously block these options. Why ? We will look into the reasons ahead in the next post Browser Security 2.

For Further Reading :

Browser Security Esssentials Part 2

Broswer Security Essentials Part 3

Browser Security Essentials Part 4

Bogus E-mails 'From' FDIC Link Computer Users To Viruses, Says Computer Forensics Expert

Cyber criminals are using fake messages claiming to be from the Federal Deposit Insurance Corporation to deliver a virus capable of stealing unsuspecting victims' bank passwords and other sensitive personal information, says a computer forensics specialist.

Read the full story at Science Daily

Dane Morgan on Mobile Security : A Guest Post

Today we have a Guest Post by one of the popular Blog Catalog names Dane Morgan, Dane has started a new venture on freelance articles and reports.. I requested him for the more increasingly important topic of security concerning our Mobile Phones and since security being an important theme within the sphere of technology on this blog. Here's is his valuable insight into the issue.

Constantly increasing computing power and the data storage that comes with it, combined with increasing speeds of 3G networks are making mobile devices more attractive to hackers, spammers and scammers as the rewards are rising faster than the risks. - Dane Morgan

Until recently Mobile Security hasn't been taken very seriously by most mobile users and the companies that employ them, but that is changing.

Research has shown that a good majority of lost or stolen mobile devices contain confidential personal and company information and communications that can be used to target the employee or the company for fraud and other mailcious attacks.

Additionally, Mobile security is moving rapidly towards similar methods to those used to protect PCs, such as firewalls, anti-malware and virus detection.

At this point most experts agree that mobile security measures are required on every smartphone to protect agaisnt malware. malicious software that infects a mobile device can cause false billing, disclosure of sensitive stored information, and can be used to delete, corrupt, modify or steal personal and company data stored on the device.

The biggest threats mobile users face today really centr around:

Privacy when they access the internet through a WiFi connection
Data protection in the face of a malware attack
Data loss and compromise when when a mobile device is lost or stolen
SMS spam, which a steadily growing number of users report as a problem.

Constanly increasing computing power and the data storage that comes with it, combined with increasing speeds of 3G networks are making mobile devices more attractive to hackers, spammers and scammers as the rewards are rising faster than the risks.

Some protection methods include using passwords, data encryption, spam filters, antivirus software and firewalls. But the real first line of defense in mobile security is an educated user.

Mobile users should avoid visiting websites that they are unfamiliar with or that they may not really have a reason to trust.
Install a security solution that provides anti-virus and firewall functionalities.
Don't open strange or unexpected MMS you receive, even from people you know.
Keep your Bluetooth connection hidden at all times.
Never install an application from a mistrusted or completely unknown source.

Anti-virus and anti malware solutions should automatically retrieve newest updates whenever any data connection is used, and use advanced SMS update mechanisms for critical updates when a data connection is not available.

Users should also take advantage of new technologies that allow for storage of sensitive data on a removable card that becomes inactive when inserted into a different phone. There are also mobile security systems available now that can disable smart phones and even lock down or delete stored information in the event that they are lost or stolen.

Mobile security is important in this day and age. It is up to both companies and those who work with them to take mobile security seriously and develop a security plan for their mobile devices and the sensitive information that contain.

Dane Morgan is a freelance writer and web designer. Visit his portfolio of freelance articles and reports.

Identifying ID Theft And Fraud

Sun hat with sunglasses isolated on white background photo

                   If the wife of FBI boss Robert Mueller has warned him not to use internet banking because of the threat of online fraud, then what hope is there for the average Joe? The results of research suggests that more of us are no longer entrusting our finances to virtual accounts.

Read the full article at sciencedaily.com

Introduction Posts :

1. Are you secure online ? gives a good introduction overview on the Internet Security threats we face today. I recommend to give it a read along with the post Mobile Security in Focus

People Are Still The Weakest Link In Computer And Internet Security, Study Finds

Source: freedigitalphotos

Two decades ago, studies showed that computer users were violating best practices for setting up hack-proof passwords, and not much has changed since then. What's clear, say researchers , is that until human factors/ergonomics methods are applied to the problem, it isn't likely to go away. --- Science daíly

This article at Science daíly highlights the issue of security being taken lightly by the users, and further discusses in detail how the user ergonomics and other human factors can lead to change in the user behaviour concerning security.

Introduction Posts :

1. Are you secure online ? gives a good introduction overview on the Internet Security threats we face today. I recommend to give it a read along with the post Mobile Security in Focus

Mobile Security in Focus

Source : FreeFoto

The growth in the multimedia applications along with new advanced technology smart phones, the security issues concerning this sector is just beginning to unfold. Virus, Trojans etc., affect the Mobiles the same way they affect a computer, as now 3G/4G mobiles look and behave more similar to a computer. Additional to this, user privacy and data have more increasingly come under threat.

Here is a link to Symbian OS press release in July stating how a Trojan work horse passed out its security tests.

You can have a look at Mcafee’s 2009 report on wide ranging issues concerning security of Mobile platforms.

It is important to understand the aspect of security, when it comes to using the communication devices like PDA’s, Laptops, PC’s or mobiles, that when you are accessing the outside world, you need to have a good security mechanism to prevent threats to your mobile security, privacy and data from being hacked, stolen and manipulated.

And this aspect gives rise to another question, Is there any security in place when you are roaming with your communication device and are required to access a Wireless network located at a hot spot ? The answer is no.

This article reflects here. Discusses other issues too.

Here's another link to a document giving some simple but useful info regarding, How we can help protect our mobile phone in general, which almost all of us know, but its still better to take a look, in case if missing out on anything. So, remember always to browse safely when you are mobile.

1. Are you secure online ? gives a good introduction overview on the Internet Security threats we face today. I recommend to give it a read

How to Secure yourself Online?

Computer and Network Security has become one of the most crucial sector nowadays with viruses, Trojans, malware, bots etc., wreaking havoc on computer systems day in and out. The most shocking thing is, even when you are fully updated with the latest security software and regularly scan your system, you are still not safe, with the new viruses hitting the web every minute. It is an ongoing battle, the only way we could remain safe is through constant vigil when using computer systems and also now the mobile phones.

And on the other hand you have website hacking, impersonation ( identity theft ), DOS ( Denial of service attacks), Phishing etc., and lots of other threats to computer networks across the world. Victims of such attacks come from a wide spectrum including popular government websites and other important public figures.

Also in the recent past there was a strong speculation of Network attacks being used as a modern form of warfare by targeting the adversary’s vital communication networks.

I will suggest using best practices in the industry to prevent any data loss on your computer system and more importantly protecting your online identity, it being so crucial nowadays, as we are now transacting more and more on the internet.

I will suggest keeping yourself updated every now and then with latest security features and scan your machine regularly.

I will suggest you to use anti-virus software’s scanning for viruses and using separate dedicated software for scanning Spy wares.

Registry checkers are very tough things to use and only users with expert knowledge can handle it, as tinkering with the registry is like playing with the soul of your machine and if anything goes wrong it’s very hard to revert back.

Never trust every other website for software’s when downloading, always buy authentic software from the original vendor, and always check the necessary credentials of a website before downloading anything like music, video or games. Many websites are attack websites and can pose a threat to your computer security.

If you are using Firefox, though it consumes little bit of more memory, but should work fine on faster machines, you have a good add-on in it like WOT. WOT (Web of Trust) is an add-on for Firefox which lets the user have knowledge of a site’s worthiness and other features with indicators of green, orange and red. So, that you don’t visit a website which might attack you by running malware’s on your machine or copying sensitive information from your computer.

If you have sufficient knowledge you can add your vote, it’s basically a user shared experience of a website, mostly it is true and sometimes it can be misleading or wrongly suggesting an authentic site to be an attack site.

Always be in touch with what processes your machine is running on your system, as there are many methods through which Trojan’s and Spyware’s get activated on your machine, they may be lying hidden in a program that you might think safe, but they get activated as soon as you run that program.

Image objects in the email many times have a malicious code embedded into it and they get activated when you open your email and click the object, the spamming follow the same procedure affecting the networks traffic besides fraudulent information solicitation emails.

Password thefts are serious, a threat to your identity being impersonated online; there are many ways that you could lose your password, by losing your physically stored details in the form of a diary or other object, by selecting easily guessable passwords in the form of names or other popular places and public figures or even your favourite dish.

There are several password breaking methods available unless you use a strong password in the form mixing upper case, lower case letters, adding some numbers and some special characters on your keyboard to it, so that it is at least eight characters strong.

Your password is an input to the encryption scheme employed by an online service and sometimes if you reverse that scheme (decryption) the password could be guessed, using strong passwords makes your password hard to break.

So, as you can see there are two elements in this security, you need to rely on your password and the encryption scheme being employed, if anything is weaker then the integrity of the information being transmitted or accessed could be compromised, mostly many popular online services like email and chat clients use latest encryption methods, but what if you have landed into an unchartered territory and are required to use a service whose encryption scheme is not as strong as it should be, your strong password could save you the day.

Mostly passwords are easiest thing that bad guys rely on breaking into someone’s online account either email, bank or any other online service.

Here’s a link for Microsoft’s password strength checker page

I will try and keep updating you on this topic from time to time. Thanks for reading, enjoy :) !

Denying Denial of Service (DoS) attacks

ScienceDaily (2009-09-30) -- A way to filter out denial of service attacks on computer networks, including cloud computing systems, could significantly improve security on government, commercial, and educational systems.

In the past few years we have heard about a large scale DoS attacks across the globe, the more recent in the memory are the one's which took place at the Georgian Government networks just prior to the war breaking out there, researchers noticed at that point of time huge amount of web traffic directed towards the networks and it was viewed new form of modern IT warfare which reflects in how the future wars might take place.

Also there has been large scale attacks on the government websites in US such as NASA and other important government websites, it was suspected to be an attack originiating in Asia particularly in North Korea.

Science daily.com.