Six Steps to Stronger Security
Take the following simple steps to help ensure that your computer and
your information are protected against hackers, viruses, and other threats.
Don't install free utilities on your computer
Many free utilities, such as filesharing software, toolbars, Internet
accelerators, and other purportedly useful pieces of software of unknown
origin, come loaded with adware and spyware. These will consume your computer's
resources, reroute your network connection, and bring your computer to
a grinding halt. Faculty and staff should always check with their Local
Support Provider before installing software.
Run the current version of supported antivirus software
and set it for regular, automatic updates
Antivirus software can quickly detect when viruses, worms, and
other types of malicious code are introduced to your computer. Current
antivirus software versions provide important new benefits, for example,
the current version of Symantec for Windows identifies and removes adware
and spyware. Since antivirus software checks against a “lineup”
of known threats, it’s essential that your software receive regular
updates (daily for Windows computers, weekly for Macintoshes) so it immediately
recognizes the latest new threats. How
do I do this?
Assign a complex, hard-to-guess password to your
computer
Two of the biggest security problems on campus are the failure
to assign passwords to individual computers and the use of weak, guessable
passwords that cannot withstand automated password cracking attempts.
Complex passwords prevent hackers from stealing confidential information
or "stealth installing" malicious code that can render your
machine unusable or turn it into a site for attacking other computers
on the Internet. Windows XP and 2000 systems are the preferred targets
of hackers. How
do I do this?
Be alert for "phishing" scams that can
result in identity theft
"Phishing" refers to forged email purportedly from a legitimate
business or University office, quite possibly one you've dealt with. The
email often refers to a problem with "your account" and contains
a link to a website that looks legitimate but is designed to trick you
into entering sensitive information, such as your Social Security Number,
an account password, a credit card number, or your PennKey password. Reputable
businesses NEVER solicit you to provide or confirm sensitive personal
information in email or over the Web. How
do I do this?
Promptly apply security "patches" for your
operating system.
Malicious traffic often attempts to exploit security holes that
were inadvertently built into the design of in your computer’s operating
system (OS). If such a security hole is discovered, the OS manufacturer
will quickly develop a “patch” — a supplement to the
original software designed to plug the hole. Your computer should
be set up to automatically download free software updates that patch newly
identified security holes. How
do I do this?
Activate your system’s firewall (Windows XP
& Macintosh OS X)
Your system's firewall provides an added level of protection
against malicious activity by examining and restricting network traffic
to your computer. How
do I do this?
Older, unsupported operating systems such as
Windows 98/ME, Windows NT and Mac OS 9 are very difficult to secure. If
you have such a system, we strongly encourage you to upgrade to a newer,
more secure operating system such as Windows XP Professional or Mac OS
X to better protect your data.
|
