Chinese hackers, possibly working for the Chinese government, made mainstream news recently when they were able to access Google’s internal computer systems and the Google gmail electronic mail accounts of human rights activists. The hackers exploited a longtime flaw in Microsoft’s own Internet Explorer to do their deeds. In response, Google considered closing down its Chinese website, but has not yet done so.
Usually, Microsoft issues updates and corrections for security flaws and other problems in Windows on the first Tuesday of every month, commonly called “Patch Tuesday” in the computer business. In response to considerable outside private and governmental pressure, Microsoft posted an emergency Internet Explorer update last week on Jan. 21.
You may not be a Chinese human rights activist. But without this emergency update, without a whole host of others made available over the years, and without those yet to be released, your computer may remain vulnerable to all kinds of hacker attacks, including credit card theft, identity theft, and secretly installed software that turns your computer into a robot for Internet masterminds.
Microsoft recommends that you allow Windows to update itself automatically, so you get the benefit and security of all the latest corrections. This has one serious drawback—namely, that your computer will nag you to reboot at the worst possible moment, right in the middle of that important spreadsheet or presentation. Better to have Windows alert you that corrections are available and to allow them to be installed when it is convenient for you.
Similarly, if you regularly use Microsoft Office, Adobe Acrobat Reader, Java, Flash, and Shockwave (and who doesn’t?), these bits of software have their own security flaws, and they, too, need to be updated whenever corrections are available.
Finally, make absolutely sure that you have anti-virus software installed, active and up-to-date in your computer. All too often, a computer arrives with a 90-day free trial of anti-virus software, and the trial period expires making a computer an open invitation to hackers and Internet thieves.
If you choose to use your credit card for payment of Internet transactions, make absolutely sure you are dealing with a reputable seller and that the web pages used to collect your credit card and personal data are the secure type, beginning with “https:”. And NEVER respond to an unsolicited web page or e-mail requesting you to pay for something or to validate your bank or credit card account. When in doubt, check with your bank or financial institution, which can, at least, be trusted more than the frauds whose messages pop up on your computer.
One recent scourge which calls itself “Anti-Virus 2010,” “Security Tools,” “Security Suite,” or something similar, displays a message that your computer is infected with viruses and to click a button to fix the problems. All these people really want is your money and your credit card information. If you click the button, you will be asked to pay via credit card. Don’t click the button. If you do, don’t pay with your credit card. If you pay with your credit card, get in touch with your bank immediately, cancel the transaction, cancel the card and get a new one issued. Next, get your computer into the hands of a competent service technician who can remove this threat and others like it.
There are plenty of risks in using the Internet. Despite all the corrections, software patches, anti-virus software, and other software to safeguard your computer, you are still the best protection for your own safety. Use the Internet in good heath, taking care and thinking about what you do, staying away from potentially dangerous websites.
Harvard native, Ben Myers, has seen all kinds of pesky Internet varmints. If you have questions, send him e-mail at ben_myers@charter.net.