Get documents about "Buying & Securing Your Computer
Document Sample
Buying & Securing Your
Computer
Paul Asadoorian
Lead IT Security Specialist
Brown University
Outline
• Terminology
• When to buy a new computer
• Top Five Computer Buying Tips
• Top Ten Home Computer Security Tips
26-May-05 Paul Asadoorian - Brown University 2
Terminology
• Geek - Short for computer geek, an individual
with a passion for computers, to the exclusion of
other normal human interests. Depending on the
context, it can be used in either a derogatory or
affectionate manner.
Tip: Get a geek sponsor
• Nerd = Geek²
26-May-05 Paul Asadoorian - Brown University 3
Terminology
• Virus - A program that is installed and run
on your computer without your knowledge
typically for malicious purposes.
• Worm - A Virus that uses the infected
computer to replicate itself across the
network usually performing malicious
actions.
14-Mar-05 Paul Asadoorian - Brown University 4
Terminology
• Trojan - A Virus that disguises itself as a
benign application
• Backdoors - An undocumented way of
gaining access to a program, online
service or an entire computer system
– Trojan Backdoor
14-Mar-05 Paul Asadoorian - Brown University 5
Terminology
• Vulnerability – A programming or design
flaw in software that allows for a security
exposure. A bug.
• Exploit – Software that that takes
advantage of some vulnerability in other
software. Usually used to gain
unauthorized access to computer(s).
14-Mar-05 Paul Asadoorian - Brown University 6
Terminology
• Port – In the context of TCP/IP
networking, a port is nothing
more than an integer that
uniquely identifies a path for
data to travel across, or an
application to listen on
14-Mar-05 Paul Asadoorian - Brown University 7
Terminology
• Terminology Resources:
– http://www.webopedia.com
– http://www.techweb.com/encyclopedia/
– http://www.sans.org/resources/glossary.php
14-Mar-05 Paul Asadoorian - Brown University 8
Buying a Home Computer
• Upgrading
• Just getting started
– Should take a class
• Purchasing an additional computer
26-May-05 Paul Asadoorian - Brown University 9
When To Buy
• What does 64-Bit mean?
• Should I wait until prices come down?
• You could end up waiting forever for the
next best thing
26-May-05 Paul Asadoorian - Brown University 10
Top 5 Five Buying Tips
1. Know what you what, ask what you need
2. Look for deals
3. Never listen to computer sales persons
4. Order from a reputable company
5. Building it yourself usually costs more
26-May-05 Paul Asadoorian - Brown University 11
Know what you what, ask
what you need
• Questions you should ask yourself
– What do I want to do with my computer?
– How long do I want to keep my computer?
– Do I want to play video games?
– What is my budget?
26-May-05 Paul Asadoorian - Brown University 12
Know what you what, ask
what you need
• More Questions:
– Do I travel often and need a computer?
– Am I planning to do graphics and video?
– Am I a total computer geek already?
26-May-05 Paul Asadoorian - Brown University 13
Know what you what, ask
what you need
• Once complete, show your answers to a
geek
– Travel often = Laptop
– Video Games = Big, expensive computer
– Graphics & Video = MAC
26-May-05 Paul Asadoorian - Brown University 14
Know what you what, ask
what you need
• More answers:
– Web & Email = $500 Dell
– Short Lifetime = Consider leasing
– Total Geek = Build your own
26-May-05 Paul Asadoorian - Brown University 15
Look for deals
• Deals happen all the time
• Use the power of the rebate
• You can get a fully loaded Dell for < $500
26-May-05 Paul Asadoorian - Brown University 16
Look for deals
• Check the Sunday paper ads
• Check out a computer show
Tip: Lots of geeks here
• Check the Internet
GEEK
26-May-05 Paul Asadoorian - Brown University 17
Look for deals
• http://www.slickdeals.net
• http://www.pricewatch.com
• http://www.tigerdirect.com
• http://www.zipzoomfly.com
• http://www.newegg.com
26-May-05 Paul Asadoorian - Brown University 18
Never listen to computer
sales persons
• They want to sell what they make the
most commission on
Tip: Same goes for cell phones
• Some are knowledgeable, some aren’t
• Usually want to sell you more than you
need
26-May-05 Paul Asadoorian - Brown University 19
Order from a reputable
company
• Dell is the most reputable
• Get a warranty if you are not a geek
• Support is only good if the company is in
business
– Quantex example
26-May-05 Paul Asadoorian - Brown University 20
Order from a reputable
company
26-May-05 Paul Asadoorian - Brown University 21
Building it yourself
usually costs more
Total Price Tag $3,897.53
26-May-05 Paul Asadoorian - Brown University 22
Building it yourself
usually costs more
• Geeks only activity
• Asking a geek to build it for you will cost
more (usually)
• Get exactly what you want
26-May-05 Paul Asadoorian - Brown University 23
Computer Security
• What is it?
• What do I need to know in order to secure
my computer?
• What’s the best advice you could give
me?
26-May-05 Paul Asadoorian - Brown University 24
Common Sense
26-May-05 Paul Asadoorian - Brown University 25
Patch Your Machine
• What are patches?
• Why do I need to install
them?
• What happens if I’m lazy
and I don’t?
14-Mar-05 Paul Asadoorian - Brown University 26
Patch Your Machine
• Patches are updated software for your computer
• They fix “bugs” or errors in the programs on your
computer
The term bug comes from an actual bug stuck in the
workings of early computers
• These bugs allow attackers to gain unauthorized
access to your computer
14-Mar-05 Paul Asadoorian - Brown University 27
Patch Your Machine
• Unpatched computers are vulnerable to
attacks
• The software bugs also allow attackers to
run programs on your computer
• These programs do bad things…
14-Mar-05 Paul Asadoorian - Brown University 28
Patch Your Machine
Schedule Windows Updates
• Control Panel System
Automatic Updates
• Let windows automatically download and
install updates
14-Mar-05 Paul Asadoorian - Brown University 29
Patch Your Machine
14-Mar-05 Paul Asadoorian - Brown University 30
Patch Your Machine
• Run Windows Update manually
• Start All Programs Windows
Update
• Verify by clicking “View Installation
History”
• Click “Custom Install” and follow prompts
for manual installation
14-Mar-05 Paul Asadoorian - Brown University 31
Patch Your Machine
• Reboot after patching
• Verify Patches have installed correctly
Control Panel -> Add/Remove Programs
System Preferences -> Software Update
-> Installed Updates
• Verify vulnerability does not exist
14-Mar-05 Paul Asadoorian - Brown University 32
Patch Your Machine
• Microsoft Baseline Security Analyzer
– http://www.microsoft.com/technet/security/tools/
mbsahome.mspx
• Test and secure IE with:
– http://browsercheck.qualys.com/
• Monitor with Security Center
– New in Windows XP SP2
14-Mar-05 Paul Asadoorian - Brown University 33
Patch Your Machine
• Patch your other software as well
• Vulnerabilities found in Adobe Acrobat
Reader and WinZip
– Do you have these installed on your
computer?
• Plan a regular time to update your
software
14-Mar-05 Paul Asadoorian - Brown University 34
Patch Your Machine
• Patches break things
• Always backup before you patch
– Esp. major patches & service packs
• Verify your software and hardware is
compatible with patches
14-Mar-05 Paul Asadoorian - Brown University 35
Use a Firewall
• What is a firewall?
• What does it do?
• Why do I need one?
14-Mar-05 Paul Asadoorian - Brown University 36
Use a Firewall
• A firewall is a system designed to prevent
unauthorized access to or from a computer or
network of computers
• They keep the “bad guys” out
14-Mar-05 Paul Asadoorian - Brown University 37
Use a Firewall
• Prevents your computer from being found
or scanned on the Internet
• Prevents attacks against your computer
that could lead to complete compromise
• Useful if patches are not yet available
14-Mar-05 Paul Asadoorian - Brown University 38
Use a Firewall
• Two Types:
– Hardware-Based Firewall – Physical devices
that goes between your computer and
network.
– Software-Based Firewall – Installed on your
computer and runs constantly.
14-Mar-05 Paul Asadoorian - Brown University 39
Use a Firewall
Hardware-Based Software-Based
Specializes in protecting Relies on your computer to
your computer function
Faster Slower
More and better options Controls software better
Often more expensive Often less expensive
14-Mar-05 Paul Asadoorian - Brown University 40
Use a Firewall
• Software-Based Example: Zone Alarm
– Now owned by Checkpoint, a major firewall
vendor
– Highly configurable
– Free for personal use
– Will integrate with Hardware-Based firewalls
– Controls which applications can access on the
network
http://www.zonelabs.com
14-Mar-05 Paul Asadoorian - Brown University 41
Use a Firewall
• Software-Based Example: XP Firewall
– Built into Windows XP
– Enhancements with SP2
– Does not block outgoing traffic
– Not as configurable as Zone Alarm
– Still a good step in protecting your computer
• Control Panel Network Connections
Right click on adapter
Properties Advanced
14-Mar-05 Paul Asadoorian - Brown University 42
Use a Firewall
• “On” is the desired
setting
• Exceptions are easier
in SP2
• Most other firewalls
will disable
14-Mar-05 Paul Asadoorian - Brown University 43
Use a Firewall
• Hardware-Based Example: Linksys
– Many different products to choose from
– Owned by Cisco, a major networking company
– Easy to configure and manage through web
interface
– Useful features and provides regular updates
to firmware
14-Mar-05 Paul Asadoorian - Brown University 44
Use a Firewall
• Linksys WRT54G
• Wireless and wired connections
• Supports both types of wireless
Two types of wireless are common, 802.11b and 802.11g.
802.11g is faster. Both are supported on the WRT54G
firewall.
• Can install Linux on it if you so desire!
- http://openwrt.org/
- http://docs.sveasoft.com/Index-2.html
14-Mar-05 Paul Asadoorian - Brown University 45
3) Use Anti-Virus Software
Hey,
is that stuff
Nice toxic?
Shirt, NOT!
14-Mar-05 Paul Asadoorian - Brown University 46
Use Anti-Virus Software
• Why do I need Anti-Virus
software?
• Will it protect me from
everything?
• How often should it be
kept up-to-date?
SARS Computer Virus
14-Mar-05 Paul Asadoorian - Brown University 47
Use Anti-Virus Software
• Anti-virus software protects you from “common”
threats
• It does NOT protect you from everything
• It IS very important and you should not go
without
• Anti-Virus software does a decent job of
identifying the threat
14-Mar-05 Paul Asadoorian - Brown University 48
Use Anti-Virus Software
• Symantec makes a good anti-virus
product
– It is our standard on campus
• Keep the definitions up to dat
Update as often as the software lets you!
• Free anti-virus products exist
14-Mar-05 Paul Asadoorian - Brown University 49
Use Anti-Virus Software
• To Schedule updates open the Symantec
client, then:
– File Schedule Updates..
Click Schedule
• New Viruses come out multiple times per
day
• You can never be up-to-date enough!
14-Mar-05 Paul Asadoorian - Brown University 50
Use Anti-Virus Software
14-Mar-05 Paul Asadoorian - Brown University 51
Use Anti-Virus Software
• Free Anti-Virus products for windows:
– http://www.free-av.com/ - AntiVir Personal Edition
– http://www.grisoft.com/ - AVG Anti-Virus System
– http://www.avast.com/ - Avast 4 Home Edition
– http://www.clamwin.com/ - ClamWin (My new
favorite)
14-Mar-05 Paul Asadoorian - Brown University 52
Use Good Passwords
• Passwords are often the weakest link
• Guessing a password (using a dictionary
attack) can be quite easy
• Brute forcing, or trying every possible
combination, is also common
14-Mar-05 Paul Asadoorian - Brown University 53
Use Good Passwords
• Password Guidelines:
– At least 8 characters
– Mix upper and lower case
– Numbers and characters are good, but more
letters are better
– Don’t use the same password for everything
14-Mar-05 Paul Asadoorian - Brown University 54
Use Good Passwords
• Not a pass word, but a pass phrase
• Allows for a longer, easier to remember,
and difficult to guess password
• Example:
– KungFuIsC00l
– Iw3ntT0Sh0alin
14-Mar-05 Paul Asadoorian - Brown University 55
Use Good Passwords
Tip: Variations are good:
– KungF00Mast3r is a decent password
– KungF00Mast3r-bigblue for IBM
– KungF00Mast3r-dollabill for bank
– Qualify your good password instead of just
using the same one
14-Mar-05 Paul Asadoorian - Brown University 56
Use Good Passwords
Passwords are like underwear?
– You don’t share them with your friends
– You change them often
– You don’t leave them lying around
– Be Mysterious…..
14-Mar-05 Paul Asadoorian - Brown University 57
Cream With Your
Password?
• People exchanged their passwords for a $3 coupon
to Starbucks
• Two thirds of San Francisco residents gave up their
passwords
• Don’t take candy from strangers
See the full story here:
http://www.informationweek.com/story/
showArticle.jhtml?articleID=162600315
14-Mar-05 Paul Asadoorian - Brown University 58
5)Use An Alternate Web Browser
• Internet Explorer (IE) is the CIS supported web
browser
• ERP applications (like ours) require IE
• Some web sites will not function with browsers
other than IE
• Alternate browsers are considered just that, an
alternative, and are currently unsupported
14-Mar-05 Paul Asadoorian - Brown University 59
Use An Alternate Web Browser
• Most spyware is contracted from the use of
IE
• Many machines are infected with viruses
and compromised through the use if IE
• There have been numerous security
updates for IE this year alone
– Including 8 more in October 2004
14-Mar-05 Paul Asadoorian - Brown University 60
Use An Alternate Web Browser
• IE Has many documented security flaws
• IE Has many undocumented security
flaws
• IE Has many widely publicized exploits for
these flaws
14-Mar-05 Paul Asadoorian - Brown University 61
Use An Alternate Web Browser
• All alternate browsers have far more and
better features than IE
• IE will be unsupported on all legacy
platforms
– Including Windows 98
14-Mar-05 Paul Asadoorian - Brown University 62
Use An Alternate Web Browser
• Attackers use these flaws to:
– Obtain your credit card number
– Steal your Bank information
– Hijack your usernames and passwords
– Read your email
– Infect your computer with viruses
– Track all your web usage
14-Mar-05 Paul Asadoorian - Brown University 63
Use An Alternate Web Browser
• Mozilla Project http://www.mozilla.org/
– Mozilla Browser
– Firefox Browser (Trimmed version of Mozilla)
The Mozilla project was founded here at Brown!
• Opera http://www.opera.com/
– Great tabbed browser
– Built-in pop-up blocker
14-Mar-05 Paul Asadoorian - Brown University 64
Use An Alternate Web Browser
• Firefox, current features include:
– Trimmed down version of Mozilla
– Tabbed Browsing
– Pop-up blocker
– Live Bookmarks
– Software updates
– Excellent search within web page
– Built-in google searching
– Themes and Extensions…
14-Mar-05 Paul Asadoorian - Brown University 65
Use An Alternate Web Browser
• IEView Extension
– Right click and open link in IE
– http://ieview.mozdev.org/
• Tabbed Browser Preferences
– Open all new windows as tabs
– http://www.pryan.org/mozilla/site/TheOneKEA/
tabprefs/
14-Mar-05 Paul Asadoorian - Brown University 66
Use An Alternate Web Browser
• ForcastFox
– Brings international weather from The Weather
Channel to your Firefox web browser
– http://forecastfox.mozdev.org/
• AdBlock
– Filters ads from web pages
– http://adblock.mozdev.org/
14-Mar-05 Paul Asadoorian - Brown University 67
Use An Alternate Web Browser
Turn off saved form information!
14-Mar-05 Paul Asadoorian - Brown University 68
Use An Alternate Web Browser
• Mozilla project Homepage
– http://www.mozilla.org
• Firefox Homepage
– http://www.mozilla.org/products/firefox/
• “Switching from Internet Explorer to Mozilla
Firefox”
– http://www.mozilla.org/products/firefox/
switch.html
14-Mar-05 Paul Asadoorian - Brown University 69
Use An Alternate Web Browser
• Guides to securing IE:
– http://www.sans.org/rr/paper.php?id=287
–http://antivirus.about.com/od/securitytips/a/
secureie2.htm
– http://browsercheck.qualys.com/
14-Mar-05 Paul Asadoorian - Brown University 70
Secure your wireless
http://www.turnpoint.net/wireless/cantennahowto.html
14-Mar-05 Paul Asadoorian - Brown University 71
Secure your wireless
• Bluetooth is not safe
either
• Usually on cell
phones
• Similar devices for all
types of wireless
http://www.engadget.com/entry/3093445122266423/
14-Mar-05 Paul Asadoorian - Brown University 72
Secure your wireless
14-Mar-05 Paul Asadoorian - Brown University 73
Secure your wireless
• Prevent:
– People from stealing your Internet access
– Attackers stealing your passwords
– Random people using your network resources
– Malicious users changing your settings
– The whole world from seeing where you browse the
web
14-Mar-05 Paul Asadoorian - Brown University 74
Secure your wireless
• Set the administrator password on your
access point
– Ensures no one else is configuring your
access point
Reset password after firmware update!
• Enable encryption (WEP, Wired
Equivalent Privacy)
– Is weak, but a good measure to take
14-Mar-05 Paul Asadoorian - Brown University 75
Secure your wireless
• Use MAC address filtering
– MAC address is the physical hardware
address
– Ensures only computers you have are allowed
on the wireless network
– Can be spoofed
14-Mar-05 Paul Asadoorian - Brown University 76
Secure your wireless
• Turn off broadcast SSID
– SSID is Service Set Identifier
– Identifies your wireless network
• Change the default SSID
• Adjust the power output of your access
point
14-Mar-05 Paul Asadoorian - Brown University 77
Secure your wireless
Make sure you’re
not an access
point!
• Turns your card into
an access point
• People use your
computer to access
the network
14-Mar-05 Paul Asadoorian - Brown University 78
Secure Your Wireless
• Advanced Wireless Security using WPA-
PSK
• Explains how to be “wicked” secure
• You need a Linksys WRT54G
http://www.brown.edu/Facilities/CIS/itsecurity/news/05-002.html
14-Mar-05 Paul Asadoorian - Brown University 79
Use Anti-Spyware tools
• Spyware - Software that covertly gathers user
information without his or her knowledge,
usually for advertising or malicious purposes
• Contracted through web browsers and
downloaded software
– Typically “Shareware” or “Freeware”
14-Mar-05 Paul Asadoorian - Brown University 80
Use Anti-Spyware tools
• Slows down computer
• Leaks personal information
• Constantly sends pop-ups
• Causes computer to crash
14-Mar-05 Paul Asadoorian - Brown University 81
Use Anti-Spyware tools
• Installs toolbars difficult to remove
• Can install viruses and malware
• Leads to complete system compromise
• May even have to rebuild computer
14-Mar-05 Paul Asadoorian - Brown University 82
Use Anti-Spyware tools
• Read instructions carefully
• Backup existing files and/or registry
• Run in Safe-Mode for best results
• Run on a regular basis
14-Mar-05 Paul Asadoorian - Brown University 83
Use Anti-Spyware tools
• Spybot (Free)
– http://www.safer-networking.org/en/index.html
• Ad-Aware (Free for personal use)
– http://www.lavasoftusa.com/software/adaware/
• HijackThis (Free)
– http://www.spychecker.com/program/hijackthis.html
14-Mar-05 Paul Asadoorian - Brown University 84
Use Anti-Spyware tools
• Microsoft Anti-Spyware Tool (BETA)
– http://www.microsoft.com/athome/
security/spyware/software/default.mspx
• Features:
– Auto-update of definitions
– Real-time protection
– Spynet
– FREE
14-Mar-05 Paul Asadoorian - Brown University 85
Use Anti-Spyware tools
14-Mar-05 Paul Asadoorian - Brown University 86
Beware of Phishing Attacks
• Phishing attacks more popular than ever
• Attachments still pose a threat
• Web technology is used maliciously
– In Email and in your web browser
14-Mar-05 Paul Asadoorian - Brown University 87
Beware of Phishing Attacks
“Phishing is a form of online identity theft that uses spoofed
emails designed to lure recipients to fraudulent websites
which attempt to trick them into divulging personal financial
data such as credit card numbers, account usernames
and passwords, social security numbers, etc. By hijacking
the trusted brands of well-known banks, online retailers
and credit card companies, data suggests that phishers are
able to convince recipients to respond to them. As a
result of these scams, an increasing number of consumers
are suffering credit card fraud, identity theft, and financial
loss.”
http://www.antiphishing.org
14-Mar-05 Paul Asadoorian - Brown University 88
Beware of Phishing Attacks
Number of active phishing sites reported in 2560
January
Average monthly growth rate in phishing sites 28%
July through January
Number of brands hijacked by phishing 64
campaigns in January
Average time online for site 5.8
31
Longest time online for site
days
Source: http://antiphishing.org/APWG_Phishing_Activity_Report-January2005.pdf
14-Mar-05 Paul Asadoorian - Brown University 89
Beware of Phishing Attacks
• Most phishing attacks focus on financial
information (banks, credit cards, paypal)
• Phishing takes advantage of email client
and web browser vulnerabilities
14-Mar-05 Paul Asadoorian - Brown University 90
Beware of Phishing Attacks
• How do you know which emails are safe?
• How do you know if attachments are safe?
• What follows are examples and general
guidelines to protect yourself against
phishing
14-Mar-05 Paul Asadoorian - Brown University 91
Beware of Phishing Attacks
Links to legitimate site
•" You get this email
•" Maybe you have
an account with
this company
Links to 128.123.167.157
•" What do you do?
14-Mar-05 Paul Asadoorian - Brown University 92
Beware of Phishing Attacks
• 128.123.167.157 belongs to New Mexico
University
• The banner link goes to the legitimate
Washington Mutual web site
• The web site at 128.123.167.157 looks just like
Washington Mutual’s and asks user for credit
card and/or bank information
14-Mar-05 Paul Asadoorian - Brown University 93
Beware of Phishing Attacks
• Likely scenario:
1. Attacker breaks into 128.123.167.157
2. Attacker uploads web site and malicious
code
3. SPAM gets sent to millions of people telling
them to update their account
4. A few hundred people fall for it and give up
their personal information
5. Attacker goes on shopping spree for new
skateboard, roller blades, the works
14-Mar-05 Paul Asadoorian - Brown University 94
Beware of Phishing Attacks
• Message from unknown person
• Subject line “question”
• Do you open it?
14-Mar-05 Paul Asadoorian - Brown University 95
Beware of Phishing Attacks
• NO!
• Email contained HTML with an
image
• Linked to a weird site in Brazil:
http://cymdiz.bbcefln.info/?dKfXLjKjPNkScdJmxgdmvz
• Would you buy perscriptions
from this site?
14-Mar-05 Paul Asadoorian - Brown University 96
Beware of Phishing Attacks
• Sender unknown
• Subject “Firefox plug-ins”
• Do you open it?
14-Mar-05 Paul Asadoorian - Brown University 97
Beware of Phishing Attacks
• Yeah, actually a friend sending from a
different account
• Trying to install the firefox plug-ins I
mention and needed my help
• Go figure…
14-Mar-05 Paul Asadoorian - Brown University 98
Beware of Phishing Attacks
• Message from “Martha”
• Subject “Please Update Your eBay
Information”
• Do you open?
14-Mar-05 Paul Asadoorian - Brown University 99
Beware of Phishing Attacks
• NO!
• Links don’t
go to eBay
• They go to
Korean
site
14-Mar-05 Paul Asadoorian - Brown University 100
Beware of Phishing Attacks
• If It Sounds Too Good To Be True...
• When looking for a cheap used car it
appears that some rather unsavory
characters are posting "deals" online that
carry some surprises.
• Photos of your "ride-to-be" are packed
with WinZip SelfExtract.
14-Mar-05 Paul Asadoorian - Brown University 101
Beware of Phishing Attacks
• It carries a version of the QHosts Trojan which makes
changes to your computer spoofing domain names for
various escrow services to specific IP addresses.
• The seller insists that to "safeguard" the transaction, an
escrow service must be used.
• Moral of the story: If it seems too good to be true, it
probably is.
Handlers Diary November 16th 2004
Updated November 17th 2004 10:10 UTC (Handler: Tom Liston)
14-Mar-05 Paul Asadoorian - Brown University 102
Beware of Phishing Attacks
• Charterone Phishing scam
– Charterone is a US based bank
– They were just bought Citizens Bank
– An email circulating looks just like Charterone
14-Mar-05 Paul Asadoorian - Brown University 103
14-Mar-05 Paul Asadoorian - Brown University 104
This URL Is Fake
This button links to a server in Taiwan
The above links are legit!
View source produces this:
This text is forged
14-Mar-05 Paul Asadoorian - Brown University 105
Beware of Phishing Attacks
• How’d they do all that?
– URL bar is hidden javascript that uses a pop-
up to “cover” the URL bar
– Javascript is loaded to prevent right clicking
and obfuscate the “View Source” feature
14-Mar-05 Paul Asadoorian - Brown University 106
Beware of Phishing Attacks
• How’d they do all that? (Continued)
– Real HTML and graphics are stolen from real
bank’s web site
– More HTML & Javascript is used to forge
status bar and header info
Firefox was not fooled by any of this
14-Mar-05 Paul Asadoorian - Brown University 107
Beware of Phishing Attacks
• Page was loaded from http://69.65.156.75/.../
CharterOne/index.html
• Note there are three “…” above
• mail.agso.com.ec is in Ecuador
• Apache 1.3.19 is very vulnerable!
14-Mar-05 Paul Asadoorian - Brown University 108
Beware of Phishing Attacks
• Login button was run from http://61.64.118.60/.../
login.php
• Note the “…” again
• This server is located in Taiwan
14-Mar-05 Paul Asadoorian - Brown University 109
Anatomy of Phishing Attack
14-Mar-05 Paul Asadoorian - Brown University 110
Beware of Phishing Attacks
• Don’t click on links contained in email
– Always go to the web site directly
• They may not take you to a nice place
• Even opening a message could lead to
bad things happening
– SPAM is more than annoying
14-Mar-05 Paul Asadoorian - Brown University 111
Beware of Phishing Attacks
• Avoid messages with:
– No subject line
– Advertising Viagra or other prescription drugs
– Lower mortgage rates
– Saying you have or missed an appointment
– Cheap software
– Anything with sexual connotations
– Diets or weight loss pills
– Informing you of a virus
– Free cable
14-Mar-05 Paul Asadoorian - Brown University 112
Beware of Phishing Attacks
• Only open attachments from people who
state they are sending you an attachment
• Never hurts to call the person and ask
• Attachments are bad
– Viruses
– Spyware
14-Mar-05 Paul Asadoorian - Brown University 113
Beware of Phishing Attacks
• View email in plain text, not HTML
• Be smart, don’t be afraid to call your bank
or credit card company
• They will not ask for your card number,
they have it already!
14-Mar-05 Paul Asadoorian - Brown University 114
Beware of Phishing Attacks
• Resources:
– Anti-Phishing Working Group
• http://www.antiphishing.org/
– “Help prevent identity theft from phishing scams”
• http://www.microsoft.com/athome/security/email/
phishing.mspx
– “How Not to Get Hooked by a ‘Phishing’ Scam”
• http://www.ftc.gov/bcp/conline/pubs/alerts/phishingalrt.htm
14-Mar-05 Paul Asadoorian - Brown University 115
Monitor Children’s Usage
Show
me how to
Hack!
14-Mar-05 Paul Asadoorian - Brown University 116
Monitor Children’s Usage
• Monitor computer usage
– Children love to click and break things
• Bad start to support call:
– “My son was messing around….”
14-Mar-05 Paul Asadoorian - Brown University 117
Monitor Children’s Usage
• Create a separate account for each family
member
• Do not give them administrative access
• Install approved software only
• If budget allows, purchase separate
computer
14-Mar-05 Paul Asadoorian - Brown University 118
Monitor Children’s Usage
• Monitor Internet usage
– Accidental clicking or searching
– Browsing to non-parental approved web site
14-Mar-05 Paul Asadoorian - Brown University 119
Monitor Children’s Usage
• Place computer in open area
• Restrict web sites with you Linksys firewall
– Requires Linksys WRT54G w/ Linux
14-Mar-05 Paul Asadoorian - Brown University 120
Monitor Children’s Usage
14-Mar-05 Paul Asadoorian - Brown University 121
Monitor Children’s Usage
14-Mar-05 Paul Asadoorian - Brown University 122
Monitor Children’s Usage
14-Mar-05 Paul Asadoorian - Brown University 123
Bonus Tips
• Use a separate credit card for Internet
purchases
• Backup often
• Be a good neighbor
• Choose Software Carefully
14-Mar-05 Paul Asadoorian - Brown University 124
Use a separate credit card
for online purchasing
• One with extra online protection
• Make certain you only use this for Internet
purchases
• Low limit!
14-Mar-05 Paul Asadoorian - Brown University 125
Use a separate credit card
for online purchasing
• Exercise:
– Buy your instructor something nice
– His favorite web sites are:
• http://www.martialartsmart.com (Best site for Martial Arts supplies)
• http://www.dddhouse.com (Best site for China/HK DVDs)
• http://www.tentea.com (Best site for buying quality tea)
14-Mar-05 Paul Asadoorian - Brown University 126
Backup often
• Backup at least your critical files daily/
weekly
– Network drive
– USB Thumb Drive
– DVD-ROM or CD-ROM
• Backup your entire system monthly
– Use commercial backup software
– Copy to a different hard drive
14-Mar-05 Paul Asadoorian - Brown University 127
Be a good neighbor
• Help others secure their computers
• Tell others to use good passwords
• Patch other people’s computers when
they aren’t looking (Just kidding)
14-Mar-05 Paul Asadoorian - Brown University 128
Choose software carefully
• Software you should avoid:
– Peer-To-Peer
– Instant Messaging
– Any Shareware
14-Mar-05 Paul Asadoorian - Brown University 129
Choose software carefully
• P2P exposes files on your computer for
download by others
• P2P software itself contains spyware and
adware
• You don’t know what you could be downloading
on P2P networks
• Use commercial version
– iTunes is great
14-Mar-05 Paul Asadoorian - Brown University 130
Choose software carefully
• IM software can expose files on your PC
or download malicious software
• Often contain vulnerabilities that take a
long time to get patched
• Remember, everything you type goes in
the clear
14-Mar-05 Paul Asadoorian - Brown University 131
Choose software carefully
• Shareware of all kinds can contain
spyware and adware
• If you download shareware read reviews
• Good shareware/freeware:
– PDF995 (Make PDFs)
– WinSCP/Putty (SCP & SSH Clients)
– DVDShrink (Burn DVDs)
14-Mar-05 Paul Asadoorian - Brown University 132
? Questions ?
• Paul Asadoorian
• Email: Paul_Asadoorian@brown.edu
• Web: http://www.pauldotcom.com
• This Presentation:
– http://www.pauldotcom.com/buysecurehome2005.pdf
• Course Evaluation - Please fill one out :)
14-Mar-05 Paul Asadoorian - Brown University 133
