Home Computer Security

Home Computer Security http://edu-observatory.org/olli/hcs/Week1.html INTRODUCTION Problems continue to be found in operating systems, applications software, networks and technology. And an ongoing battle between the good guys fixing the problems and the bad guy exploiting the problems. Your role is important in this ongoing drama! When computer manufactures (Apple, Microsoft, etc.) offer updates, do the updates! The same for third party Apps (Mozilla, Adobe, etc.) do the updates. Do all the updates, now! The bad guys use email to try to get you to do something, such as giving out information, open attachments, doing something to your computer or forward the message to your friends. Don't do it! Email is NOT a good source of warnings, instruction or wisdom! Krebs's Rule #1: If you didn't go looking for it, don't install it. Do you ever access your email or do banking from somebody else's computer, or from a public computer? You have to assume that that computer has spyware or is otherwise infected. Don't do it! Debunking Some Common Myths http://www.us-cert.gov/cas/tips/ST06-002.html HOME NETWORK SECURITY http://www.cert.org/tech_tips/home_networks.html http://isc.sans.edu/diary.html?n&storyid=7186 (Common Malware Traits) http://isc.sans.edu/diary.html?storyid=7783 (Educating our Communities) https://ssd.eff.org/book/export/html/14 (Surveillance Self-Defense) LEARN WHAT PROCESSES ARE RUNNING http://en.wikipedia.org/wiki/Control-Alt-Delete Windows: Ctrl+Alt+Del ==> Task Manager http://en.wikipedia.org/wiki/Top_(software) Mac/Unix/Linux: Terminal ==> top, ps aux, ps ef TEST THIS COMPUTER/NETWORK FIREWALL https://www.grc.com/x/ne.dll?bh0bkyd2 http://nmap-online.com/ http://isc.sans.edu/diary.html?storyid=4789 (Never disable your firewall) TEST THIS COMPUTER/NETWORK BANDWIDTH http://www.broadband.gov/qualitytest/? http://speedtest.frontier.com/ CHECK FOR PLUGIN UPDATES (Important) https://browsercheck.qualys.com/ (Best) http://secbrowsing.appspot.com/ https://www.mozilla.com/en-US/plugincheck/ (Firefox Users) BROWSER SECURITY HANDBOOK http://code.google.com/p/browsersec/ SHOULD I CHANGE MY PASSWORD (not a bad idea) https://shouldichangemypassword.com/ http://isc.sans.edu/diary.html?storyid=11350 http://www.xkcd.org/936/ Through 20 years of effort, We've successfully trained everyone to use passwords that are hard for humans to remember, but easy for computers to guess! TEST PASSWORD STRENGTH http://www.microsoft.com/protect/yourself/password/checker.mspx http://isc.sans.edu/diary.html?n&storyid=7510 (Password rules) VIRUS AND MALWARE STATUS SITES http://isc.sans.edu/links.html Did you know that 15% of all malware is disguised as anti-virus software? SCAN A FILE - quick detection of viruses, worms, trojans, and all kinds of malware http://www.virustotal.com/ http://isc.sans.edu/diary.html?storyid=10366 FREE AVG for PCs http://free.avg.com/us-en/download.prd-afh.line-2012 MAC OS X SECURITY CONFIGURATION GUIDES http://www.apple.com/support/security/guides/ IS YOUR PC BOT-INFESTED? HERE'S HOW TO TELL http://www.pcworld.com/article/170546/is_your_pc_botinfested_heres_how_to_tell.html OUTBOUND FIREWALLS In a nutshell, an "outbound firewall" monitors all the traffic and requests leaving your computer, allowing you to ensure that nothing malicious is happening and that no sensitive data is being sent without your approval. ZoneAlarm® Free Firewall (Outbound Firewall for PCs) http://www.zonealarm.com/security/en-us/zonealarm-pc-security-free-firewall.htm Little Snitch (Outbound Firewall for Macs) http://www.obdev.at/products/littlesnitch/index.html OK, SO YOUR COMPUTER IS INFECTED -- NOW WHAT? http://isc.sans.edu/diary.html?n&storyid=10561 http://www.google.com/search?q=infected+computer+-+now+what SECURITY INCIDENT SURVEY http://zeltser.com/network-os-security/ddos-incident-cheat-sheet.pdf http://zeltser.com/network-os-security/security-incident-questionnaire-cheat-sheet.pdf http://zeltser.com/network-os-security/security-incident-survey-cheat-sheet.pdf http://zeltser.com/reverse-malware/analyzing-malicious-document-files.pdf INCIDENT RESPONSE METHODOLOGIES WORM INFECTION CHEAT SHEET http://cert.societegenerale.com/resources/files/IRM-1-Worm-Infection.pdf swormley1@gmail.com