An Adequate Online Security Plan
If you carry out this plan you will have an online defense that provides solid, but not bullet-proof protection. I suggest reading this whole page before you start. Then come back and start with Step 1. Notice the links for each step (except Step 2) -- they lead to more information about carrying out the step.
Be sure to uninstall any antivirus or antispyware programs that were previously installed before you install a replacement.
- Step 1: If you do not have SP2 for Windows installed, do it now. Then be sure that the Windows Firewall is enabled. If you install another firewall, be sure to disable the Windows Firewall after you finish.
- Step 2: Do not use Internet Explorer -- use Mozilla Firefox except for the few important sites that might not work with anything else. If you use Outlook Express, make sure to configure it to read your email securely.
- Step 3: Install a good antivirus program if you don't already have that or one installed. Keep the definitions (signature files) for your antivirus program up to date. It will soon be obsolete unless you do.
- Step 4: Install Microsoft Defender for spyware protection.
- It's likely you'll find a few nasties on your computer when you first start your anti-spyware program. [spyware removal suggestions]
- Step 5: Back up everything you would hate to lose: pictures, music, the book you're writing, recipes, genealogy records, etc.
- Step 6: Programs won't protect you from everything. You need to be informed and stay sharp about mistakes you can make that will defeat your defenses.
- You will be the weakest link in this defense plan until you complete Step 6. You won't be able to finish it all at once, but keep working on it until you learn about online ambushes and how to avoid them.
- Step 7: Keep Windows, your browser, and other critical software patched and up to date. Oh yes, and keep the signatures (reference files) for all your defense software up to date too.
Note: It will take time to learn how to respond to the questions and alerts that a full online defense will generate. If an alert seems to be a direct response to something you're actively doing, and it is not related to handling an email message or attachment, or viewing a website, it's probably OK to allow it.
If you're in doubt, I advise letting the security program block the action. You can then try again and maybe get enough of a clue to decide one way or the other.- • attack vectors
- deception the #1 threat
- phishing #1 deception
- poisoned websites
- poisoned email
- email attachments
- downloads
- spam (scams and phishing)
- hackers and worms
- popup warnings
- • malicious content
- spyware
- viruses and worms
- trojans
- • backup is security job one
- • develop your "web smarts"
- don't get hooked
- guard against spyware
- be careful with email
- fear attachments
- surf safely
- • tighten security settings
- windows
- browsers
- email clients
- • defense tools and software
- firewalls
- hardware firewalls
- anti-virus
- anti-spyware/-malware
- all-purpose security suites
- • patch and upgrade software
- • bonus: double your security
- • test your protection
- • protect your privacy
- • WiFi security
"The great thing about chickens is that they show up to work every day.'' --Bob Beauregard