Affiliate Disclosure: By buying the products we recommend, you help keep the lights on at MakeUseOf. Read more.
There are people making millions from meddling with your computer. Every click and e-mail can bring you within reach of them. How do you protect yourself? By learning what techniques they use and what you can do about them. Here’s your guide to ransomware and the other threats that you might encounter.
Ransomware is any piece of software that demands you pay a price before you can uninstall it or gain access to your other software. It holds the proper functioning of your computer hostage for a ransom.
Ransomware can be as simple as a window that says you have a virus or other malware on your computer. Then it’ll tell you that they have the only antivirus that can get rid of it and they’ll sell it to you for just $19.95 – enter your credit card details here. They then make fraudulent charges on your credit card and you will still have the virus. Generally speaking, don’t pay the ransom. Check out our article on beating ransomware and how to remove it for some suggestions.
There is one really bad piece of ransomware called CryptoLocker. There isn’t any hope for people whose computers get infected with it. The ransomware encrypts your files the moment it is opened, making them useless to you without the key to decrypt it. They’ll sell you the key for three hundred dollars.
Once you see that you have CryptoLocker on your computer, disconnect the computer from your network. Unplug the network cable and turn off your WiFi card. Don’t use anything to remove CryptoLocker just yet – it will have stopped encrypting files – however you need to decide if you’re going to pay the ransom to get the decryption key.
If you remove CryptoLocker, you won’t be able to pay the ransom to get your files decrypted. We recommend not paying the ransom – that encourages them to come up with more scams, but the decision is yours. Sometimes it works, sometimes it doesn’t. After you’ve made your decision and taken action, you can use MalwareBytes to remove it.
The better thing to do is follow these steps to prevent yourself from getting stuck with CryptoLocker. Also, refer to our free eBook A Universal Guide To PC Security.
Fake Tech Support Calls
Some computer threats come in the form of a phone call. This is known as social engineering in the security world, and there are things you can do to protect yourself from social engineering. This relies on the victim not being very computer savvy. The current scam is the Fake Microsoft Tech Support call. You get a call from someone telling you that your computer sent them notice that it has an issue. They may tell you that they are a Microsoft Certified Technician or that they are a Microsoft Partner. Some will say they are calling from Microsoft.
The person will ask you to install an application. The application is a backdoor into your computer that allows them to do what they want with it. Then they will ask you to pay them. If you refuse, they say they will have to undo their help. When you pay them, they make fraudulent charges on your credit card. If this should happen to you, we do have help for you after falling victim to the tech support scam.
Phishing is a geeky way of saying fishing – as in people fishing for valuable information. The bait is a message reading that you need to update account details to continue using a service. The current popular phishing scam is based on Netflix.
In this version of the scam, an e-mail asks you to log in to your Netflix account. You then click on the link and enter your Netflix username and password.Then you are forwarded to a site saying your Netflix account is been suspended and you need to call a toll-free number for assistance.
When you call the toll-free number, they have you download an update for Netflix which is just a backdoor into your computer. Now the Microsoft Tech Support scam takes place.
To help prevent these scams, turn on your browser’s phishing detection. Most browsers come with that feature turned on, but check that to be sure, and update your browser often.
If you’re not sure if a link is safe, there are sites that will help you identify if the link is safe or suspicious. If you’re asked to call a toll-free number, do a web search on the number. There are sites dedicated to tracking phone scammers and the phone numbers they use. If you want to be proactively informed, follow sites that report on new malware trends such as the MalwareBytes’ blog.
IoT is the initialization for the term Internet of Things. What is the Internet of Things? It’s the extension of the Internet into devices that most do not consider to be computers. It’s all the devices that your computer can connect to; network attached storage, wireless printers, smart TVs, fridges, thermostats, and light bulbs. In the Internet of Things, these are all points of attack now.
Recently, a distributed denial of service attack was launched using more than 100,000 devices that are capable of sending e-mails. Most people had no idea that some of these devices could send e-mail, let alone be reached by someone else on the Internet. According to Proofpoint, the security company that uncovered this situation, much of the e-mail was sent, “…by everyday consumer gadgets such as compromised home-networking routers, connected multi-media centers, televisions and at least one refrigerator.”
The following documentary, “A Gift for Hackers”, is a must-watch. It’s only 30 minutes long. It goes through a few of the problems with different network-attached devices and attempts to address the issues with the companies that made the products.
What can you do to help prevent your things from being taken over? Make sure you have solid security set up on your router and those other devices. Reading and following the manuals also goes a long way toward protection.
Potentially Unwanted Applications
Potentially Unwanted Applications, or PUAs, are programs that get installed on your computer alongside other programs, by deception or ignorance. The PUA could be a piece of software that doesn’t hurt anything, but which you really didn’t want or need. It could also be software that opens up your computer to anyone. These PUAs can come from clicking on ads that are designed to look like notifications from your computer, or they can come from piggybacking on an installation of software that you did want.
For the ads, sometimes they are made so that even clicking on the X to close it can start the download.The way to deal with that is to close them using the key combination Alt+F4. That closes the window immediately.
An example of piggybacking software installation is Conduit’s Free Search Protect software, which can get installed alongside uTorrent for example. It’s not bad software, but it’s probably something you don’t want or need. Yet it’s so easy to just click the Accept Offer button as you go through the uTorrent installation process. Slow down and take some time to read what you’re clicking on.
If you are aware that you’re installing it, and you are aware that the company that asked you to install it is trying to make a little extra cash with it, then it’s not necessarily a bad thing. In the case of uTorrent – a much loved torrent client – someone has to pay the bills to keep developing it.
Due to how relatively new smartphones are and the complexities of their hardware and operating systems, threats to smartphones could be a whole new article. There are the typical issues that affect laptops and smartphones alike, as well as applications gaining access to things they don’t really need, in-app purchases being too easy to make, holes in firmware allowing the phone to be manipulated, and so on.
The latest news is that there is an. It tricks your phone into thinking it is connecting to a WiFi access point that it has used in the past. As your data passes through it, the drone takes whatever it wants.
So how do you protect against all of that? Use the basic methods outlined in the free eBook, A Universal Guide To PC Security. Take the same steps that you would take if you were banking with your phone and encrypt your smartphone data.
The fact that you now know these things is good. You know that there are bad guys out there, but you also know there are a good guys out there helping you as well. You’ve learned a bit more, and that’s good. Just slow down and start to pay attention. Don’t be discouraged. be encouraged and be empowered.