Computer Security with 
Special Guest Speaker:  Karen Allen

Today we were pleased to have Karen Allen speak with us about computer security. Karen works as a Network Security Engineer for LSI Logic Corporation. She has been with them for more than ten years working to "keep the bad guys (hackers, scammers, spammers, etc)" out of their corporate network. Karen mentioned that she would be happy to field some questions by email also. You can write to her by clicking here.

Karen spoke to us about computer security drawing on her expertise in the field. She titled today's talk:  Computers Are NOT Toasters!

Karen introduced us to a general term for computer security problems; an exploit. An exploit refers to any type of breech to your computer system's security. Below are the areas of security that Karen expanded on and links to pertinent web sites for each:

FIREWALLS

Firewalls, in their most basic form, prevent unwanted Internet (network) traffic from either entering your computer or leaving your computer. Two types of firewalls exist today...software (host based) and hardware (network firewall).

A hardware firewall comes in the form of either a router or similar device (for use with broadband/high-speed) connections. Software firewalls are available from many sources for either free or purchase. Windows XP now includes a basic firewall as part of the Windows software.

ZoneAlarm (free edition)

Sygate Firewall (free edition)

Keiro Firewall (free edition)

Norton or McAfee Firewall

PATCHES

A patch is a program that fixes or corrects a known 'hole' or problem with software. Karen explained that keeping your computer 'patched' with these fixes is vital to its health and security.

Windows Updates

Microsoft Office Updates

Macintosh Updates

Linux Updates

SPAM

While SPAM does not necessarily pose a security risk by itself. Its danger lies in the possibility that a SPAM (unwanted email) could carry a problem within it like a virus, worm, or Trojan Horse.

VIRUS

Most viruses propagate through a human interaction of some type...usually the user opening an infected attachment or program. Karen stressed the importance of keeping anti-virus software running on our systems at all times AND keep it updated.

AVG Antivirus (free)

Trend Micro's PC-cillin

Avast (free)

Norton

WORM

Worms, unlike viruses, don't need the user to deploy the payload. Worms enter our computers through 'unpatched' holes in our software or through an infected web site we may visit. Again, updated Anti-virus software will work to prevent problems from viruses as well as keeping your system patched.

TROJAN HORSE

Like the Greek mythology, a computer Trojan appears to be innocuous (a free screensaver, photo, or program), but once opened it releases its harmful payload. Karen, again, pointed out the importance of being cautious of things we download as well keeping your anti-virus software updated and active.

SPYWARE

One of the newest exploits to our system, spyware's goal is to study our shopping and Internet browsing habits then bombard us with pop-up ads they think are targeted to our habits. Spyware can be extremely nasty and cause a system to slow down to a crawl and have pop-up ad after pop-up ad. Here are some good anti-spyware software programs.

SpySweeper

AdAware (free)

SpyBot Search and Destroy (free)

PHISHING

This extremely dangerous type of email has been around for awhile, but as of late these emails have been increasing exponentially. Phishing scams look to steal your identity by posing as a legitimate company. You may receive an email that appears to be from your bank or a reputable Internet site like eBay or PayPal asking you to 'verify' your information. DO NOT FALL FOR IT! These types of scams are after one thing only...your personal information. When in doubt, call your institution. Also, you can report these types of scams to the FBI at the following address:

 Internet Fraud Complaint Center