7 Action Steps for Online Security

There are instructions for three separate tracks, "basic", "strong" or "robust", for some steps of this plan. Pick at least "strong" if you plan any online transactions beyond using your credit card, e.g., for online banking or financial account access.

If you just want basic protection, and this plan looks too complex, consider some less daunting alternatives.

See the "7-step Plan for New Computers" if you're going to put a new computer online for the first time.

Note: Create a new System Restore point [Start > All Programs > Accessories > System Tools > System Restore] before you begin each (relevant) step in this plan.
7 Action Steps for Online Security
[View or print this plan as a checklist]
Step 1: Make certain that the firewall in Windows is enabled, or install a better one.
Nothing else is more important these days. It's virtually certain you will pick up a worm or be hacked without one.
Step 2: Configure Windows, Browsers, Email Clients and other programs so that they are more secure.
Step 3: Install an anti-virus program if you don't already have one. Keep the definitions (signature files) for your program up to date. It will soon be obsolete unless you do.
New computers usually come with one or two antivirus programs or security suites preinstalled. I don't favor suites, but some are OK. Separate antivirus, firewall and anti-spyware programs will give you better choices.
Don't rely on your antivirus program as anything but a safety net -- knowing how to avoid trouble online is much more important. You'll need anti-malware software too (next step).
Step 4: Install software that protects you against other kinds of malware: spyware, Trojans, things of that ilk.
It's likely you'll find a few nasties on your computer. Be sure to follow the instructions for removing them.
Step 5: Prepare for the worst. Back up everything you would hate to lose: pictures, the book you're writing, recipes, genealogy records, etc.
You may already back things up. Good. Review how sound your process really is then.
Step 6: Learn to dodge the dangers online.
This step is sixth in the sequence, but it is second only to a firewall in importance. It's extremely important for email, and the start page for email security expands on it.
Step 7: Keep Windows, your browser, and other critical software patched and up to date. Oh yes, and keep the signatures (reference files) for all your defense software up to date too.
The jackals on the Internet look for new prey every day. You don't want be the antelope that falls behind.

You could also switch to an ISP that offers spam, fishing, virus, worm and malware protection. That will add an important additional layer of protection.

For the ultimate protection, run your computer, or at least your internet-facing programs with reduced rights. This will neutralize most current and future threats because most malware can't be installed under reduced rights.