| |
|
There you are, safe behind locked doors in your secure residence hall, serenely working on your computer, confident that nothing could be safer than this activity, right?
Not quite...
We all know that there are all manner of evil people out there, lying in wait with the express intention of stealing our identities, hijacking our computers, destroying our data, and generally making our computing activity fraught with danger and distress. Viruses come galloping onto our computers from e-mail and attachments, from instant messaging, from loading contaminated data onto our computers, and from visiting the wrong web sites. There are "filthy" web sites just waiting to infect the unwary or unwise with the cyber equivalent of an STD (and some of those sites are what you'd expect - the "adult entertainment stuff, but some are so innocuous that we never suspect we could be picking up something ugly just by clicking onto it).
Short of unplugging our computers, selling them, and never going online again, what can we do?
Housing and Residence Life Technology Services naturally has a strong interest in helping our residents to keep themselves, their computers, and their personal data safe and secure.
There are several points of entry to anyone's computer that can be breached by viruses, worms, spyware, and other forms of cyber-attack. Cyber crime in general exists as a fact of life for those who use computers, and everyone should understand that some basic precautions will go far to keep you safer from those who would do you mischief or harm. Taking these precautions will not seriously inconvenience you, and by thinking "security" when you use your computer you will cause the processes to become automatic behavior whenever you log on.
PC World recently published an excellent article detailing many of today's cyber threats, and ways to protect yourself from them. The article touches on grabbing information online from your credit card, password theft, card skimmer scams, voice phishing (vishing) from your cell phone, and many other dangers you may be unaware of. For more information, click here...
Today, web browsers such as Internet Explorer, Firefox, and Apple's Safari (to name a few), are installed on almost all computers. Because web browsers are used so frequently, it is vital to configure them securely. Often, the web browser that comes with an operating system is not set up in a secure default configuration. Not securing your web browser can lead quickly to a variety of computer problems caused by anything from spyware being installed without your knowledge to intruders taking control of your computer.
The Housing and Residence Life Technology Services newsletter TechnoLOGICALly Speaking has addressed many security concerns over the years. Back issues are available here; we suggest that you take the time to glance at them and learn more about computer security. We also provide you with many useful tips, tricks and step by step instructions to secure your PC better, and protect your identity, data and documents.
There is an increasing threat from software attacks that take advantage of vulnerable web browsers. We have observed a trend whereby new software vulnerabilities are exploited and directed at web browsers through use of compromised or malicious web sites. This problem is made worse by a number of factors, including the following:
- Many users have a tendency to click on links without considering the risks of their actions.
Web page addresses can be disguised or take you to an unexpected site.
- Many web browsers are configured to provide increased functionality at the cost of decreased security.
- New security vulnerabilities may have been discovered since the software was configured and packaged by the manufacturer.
- Computer systems and software packages may be bundled with additional software, which increases the number of vulnerabilities that may be attacked.
- Third-party software may not have a mechanism for receiving security updates.
Many web sites require that users enable certain features or install more software, putting the computer at additional risk.
- Many users do not know how to configure their web browsers securely.
- Many users are unwilling to enable or disable functionality as required to secure their web browser.
As a result, exploiting vulnerabilities in web browsers has become a popular way for attackers to compromise computer systems.
Attackers focus on exploiting client-side systems (your computer) through various vulnerabilities. They use these vulnerabilities to take control of your computer, steal your information, destroy your files, and use your computer to attack other computers. A low-cost way attackers do this is by exploiting vulnerabilities in web browsers. An attacker can create a malicious web page that will install Trojan software or spyware that will steal your information.
A web page prepared by the United States Computer Emergency Readiness Team will provide you with step by step directions for securing three of the most popular web browsers—Internet Explorer, Mozilla Firefox, and Safari. Written for home computer users, students, small business workers and anyone else who works with a computer, the information steps you easily through how to configure your web browser for greater protection when you're online, using text and screen shots.
A simple little device that most of us use frequently can be the instrument whereby malicious programs sneak onto our computers. The USB flash memory or jump drive can store more than data if you use it to save work from a lab or public computer, or even from a friend's computer that has become infected with malware. To make it more difficult for this to happen, it is a good idea to disable the "autorun.inf" feature on your computer.
To read more about how to prevent USB drives from infecting your computer with a virus, have a look at this web page. You may also investigate software designed to provide protection from USB drive infection, by USB Virus Scan.
Another use for a "Flash Drive" is to actually store a virus protection/detection program on it, and use that to scan your computer and remove any malware that might have found its way into your files. A detailed discussion of this technique may be found in an article written by Ira Wilsker and originally published in the Beaumont, TX Examiner, titled "Virus Detection with a Flash Drive."
Privacy and Confidentiality
Keeping your personal information safe from unauthorized access, modifications, disclosures or destruction is just as vital to your wellbeing as keeping you physically protected. Housing and Residence Life works together with the University as a whole in continued efforts to assure that your information is secure.
University Policy Statement With Regard to HIPPA
The Health Insurance Portability and Accountability Act of 1996 (HIPPA) requires that the University protects students and staff against unauthorized use or disclosure of individually indentifiable health information. This statement discusses that obligation in detail.
University Policy Statement With Regard to Privacy and Information Security
Access to the personal data and information of any student or staff is protected. This policy statement covers network security, personnel records, University computing, and student records. The University desires to ensure that sensitive information is kept private, while allowing authorized use of portions of that information to University personnel who have the need to know in order to do their jobs.
|
|
