E-CommerceALERT.com is part of the Bennett Gold LLP web site network.
LINK TO: Bennett Gold LLP, Chartered Professional Accountants, home page.		 LINK TO: E-CommerceALERT.com Home Page.
CLICK to GO BACK to Main Page.

Research and retrieval of news articles by:
Bennett Gold LLP, Chartered Professional Accountants


SPECIAL NOTE TO ALL VISITORS:
Effective December 31 2012, articles are no longer being updated on this web site.
The site is now maintained as an historical archive, covering notable e-commerce news articles from the period 1999 to 2012.


SEVEN SIMPLE STEPS FOR SECURING HOME USERS

Source: Security Wire Digest

Posted on October 4, 2001

      Hoping to help home users prevent seven of the worst computer threats, the National Infrastructure Protection Center (NIPC) Monday posted a pared-down version of the SANS top 20 computer security tips.

      In plain English, the Web posting details simple solutions for the most prevalent security issues, excluding what's perceived by SANS as the number one offense--problems inherent in default software installation.

      "The challenge right now is that home users either go to a vendor, or some other site that's too techie for them, so they give up," said Alan Paller, research director at the SANS Institute.

      Many recent viruses and worms capitalized on well-known, but unpatched vulnerabilities. NIPC hopes to get users to patch them before the next virus appears, according to a spokesperson.

      The list addresses Microsoft and Unix software vulnerabilities, as well as common mistakes. Topping the list of errors are using simple or default passwords, not backing up critical data and out-of-date AV signatures.

      Recommendations include using a firewall, shutting computers off or physically disconnecting them from Internet connections when they aren't in use, regularly patching software and never opening unexpected e-mail attachments--particularly from strangers--regardless of how enticing the subject line or attachment may be.

      Additional help from SANS is available in the form of an automated tool. "We're trying to provide a free tool that for the first time, looks for just the top priorities," says Paller.

      The Top 20 scanner will be updated every two to three months to detect and close new holes. It can be obtained by using instructions found on the Web sites of either the Center for Internet Security or the SANS Institute.

      "There are 2,000 programs working on the Internet all the time looking for computers that are vulnerable," says Paller. "In the top 20, we got most of the things they scan for, but as soon as users start blocking those, they will be modified to scan for something else so we have to continually update our tool."

Reference Sites: www.nipc.gov/warnings/computertips.htm
www.sans.org/top20.htm
www.sans.org
www.cisecurity.com





CLICK to GO BACK to Main Page.

E-Commerce Alerts are issued by Bennett Gold LLP, Chartered Professional Accountants as situations develop. Bookmark this site and check back often. Our e-mail address is: info@BennettGold.ca

In accordance with United States Code, Title 17, Section 107 and Article 10 of The Berne Convention on Literary and Artistic Works, the news clippings on this web site are made available without profit for research and educational purposes.

ALERT
ARCHIVES
Final Entries
2012
2011
2010
2009
2008
2007
2006
2005
2004
2003
2002
2001
2000
1999


LINK TO: Bennett Gold, Chartered Professional Accountants: A Licensed Provider of WebTrust Services.

WebTrust Is Your
Best Defense
Against
Privacy Breaches.

Get WebTrust
Working For
Your Site.