Well, yes, you do need to worry -- It’s your responsibility Virus Protection and Regular Updates Required Campus IT policies require Virus protection, regular system and software updates, strong passwords, and avoidance of peer to peer software and malware including spyware (http://www.cio.illinois.edu/policies/index.html).http://www.cio.illinois.edu/policies/index.html McAfee VirusScan license/software is available free and includes personally owned machines (download from CITES Webstore http://webstore.illinois.edu).http://webstore.illinois.edu CITES has AV for Mac which is quite good (Sophos) for a small charge. All operating systems have regular update services for bugs and security issues such as Microsoft Update, Apple Software Update, and Linux updaters such as Redhat Up2Date or yum (at least monthly and often automatic). Major software packages now include update procedures as well, some of them “automatic” while most are “manual”
And here’s what you are trying to avoid: Cookies and Spyware Trojans/Keyloggers, “Malware” in general Phishing and other social engineering scams Vulnerabilities from outdated software Pop-up Windows and compromised web sites …. Warning: parts of this will be a live demo
PHISHING Got this example today: -----Original Message----- From: ad.uiuc.edu support [mailto:email@example.com] Sent: Tuesday, May 04, 2010 1:45 PM To: Anyuser, Firstname Middlename Subject: setting for your mailbox firstname.lastname@example.org are changed SMTP and POP3 servers for email@example.com mailbox are changed. Please carefully read the attached instructions before updating settings. http://groups.google.com/group/mailsv3/web/setup.zip
Check your Update Settings We recommend checking/updating virus “dat” files every 2 or 3 hours (change the default setting). Watch for changes in engine (automatic), patches, and versions. Please do what Email announcements suggest. Microsoft Update site checks daily (default is 3am) though has a standard 2 nd Tuesday of the month update cycle and will include MS software such as Office. Apple OS/X checks for updates daily, weekly, or monthly (preferences) and includes a variety of patches to both the operating system, Safari, ITunes, QuickTime, but not necessarily other software. MS Office has separate automation and Adobe is manual.
Safer Web Surfing Quit using Internet Explorer 6 or 7 – vulnerable Use Internet Explorer 8 only on very trusted sites (UI etc.) and use with all the security features turned on. IE 8 may now be the most secure out there Google Chrome – a very interesting addition to the browser wars, Flash is an issue, may have serious vulnerabilities Opera 9x (has a nice mobile app) Always make sure you have the latest Adobe Flash player Use Firefox 3.x with extensions: Adblock Plus with filterset, NoScript, McAfee Site Advisor, Web of Trust, GoogleCustomizer, and Location Bar Use a non-admin account
General Upgrade and Check Move from Windows Update to Microsoft Update. Go to http://www.microsoft.com/updateshttp://www.microsoft.com/updates Run the link and make sure that Office products get updated There are several steps including a “Genuine Validation” tool procedure that you have to grind through to get this installed but it’s worth it. Verify that Mac OS/X is updating, set to daily, and that virus software is functional and updating. Update software packages regularly – this is a major source of virus/Trojan infection (see resources given below)
Microsoft Windows Issues All Windows platforms generate a preponderance of temp files that are not deleted. Files are fragmented on various disk drive devices. Windows Registry gets bloated and corrupted. Solution: Use CCleaner at least monthly if not weekly Demo settings and use… http://www.ccleanerbeginnersguide.com/ http://www.ccleanerbeginnersguide.com/ This replaces “EmptyTempFiles” and then run a defragging program See “Degunking” steps below
Additional Demos McAfee VScan 8.7 settings Spybot and Malwarebytes MS Chkdsk and OS/X Disk Utility (Verify) Device Drivers and software updates – Secunia PSI Other Updaters (Adobe, Apple, Java, Logitech, Lenovo) Advanced issues such as “degunking” by killing start up processes
Check Anti-Virus Status 1.Install/Run CCleaner 2.Run Chkdsk (/F) 3.Defrag 4.Update to current AV levels if necessary 5.Update OS as appropriate 6.Install/Run MalwareBytes 7.Install/Run Spybot 8.Update/upgrade remaining software (use checklist/PSI) OK! /DegunkHosed!
Check Anti-Virus Status Hosed! 1.Get bootable Anti-Virus CD, boot computer from it and run AV software. Hope it cleans up any issues 2.Boot to safe mode and run MSConfig and turn off all startup items (MSconfig is a command line utility that lets you control startup) 3.Restart computer and install/run Malwarebytes followed by CCleaner and the defragmentation procedure 4.Run MSConfig again and activate all appropriate startup software; reboot 5.Install latest AV software with patches and updates; run complete scan 6.Perform remaining standard update steps (Previous Slide)
Where to Go? Microsoft Security InformationInformation Firefox Extensions: PC MagazinePC Magazine Ziff-Davis media has lots of stuff Antivirus Websites: McAfee.com McAfee.com My web page: www.cropsci.illinois.edu/csmythwww.cropsci.illinois.edu/csmyth CITES Security: www.cites.illinois.edu/securitywww.cites.illinois.edu/security Campus Network info: status.illinois.edustatus.illinois.edu