We all hate spam. I hate it, too! I don't mind "commercial bulk email" that I have asked to receive, or that I expect to get when I give out my name and email address to download a freebie. This is just like you see here on this blog - you visit here, and you are offered a free PC Security 101 eBook, and at the same time you sign up for my newsletter, which will get you an occasional email from me talking about thinks like this.
Well, SPAM is a very different thing altogether. People confuse them a lot, and that's a shame. Because it's pretty clear what the differences really are. However, what really matters is how to stop it, right?
So how DO you stop SPAM?
The answer is actually very easy, and very difficult, all at the same time. Most SPAM comes from PCs that have been compromised by hackers, who then use those PCs to send out any number of different emails for their "clients" in a variety of ways. Many times, they even harvest your address book of email addresses to add to their spamming database, too.
Yes, that's right. One of the best ways they get YOUR email address is to swipe it out of your friend's address book. And, brace yourself, that means that they also get all your friend's email addresses out of YOUR address book...
...unless you are truly protected. But let's talk about that in just a second. Right now, let's consider that where the biggest problem lies. In an article at ComputerWorld, the "dirty dozen" top spamming countries are identified. This means that these are the countries with the highest populations of COMPROMISED computers that are sending out SPAM.
"Once a machine is compromised, it is often used to send out spam for a variety of campaigns," she said.
"In a matter of seconds, we can see compromised systems send messages on a dozen different topics from stock scams to diet drugs." Paul Ducklin, Sophos Asia Pacific head of technology, said that spammers are ready to "borrow" any computer illegally to send e-mail regardless of the location.
"The map shows activity almost everywhere people live; Africa may not yet be very well-wired, but it's certainly wired enough to be useful to the spammers," he said.
OK, so what works best for stopping SPAM? INVISUS Direct's Managed PC Security Solution, "uncompromises" your PC, and keeps it that way! For just $15 a month, you get a complete, enterprise-grade security solution, and 100% free tech support for all your security needs. These guys will even clean your PC and intall all the software for you! And when you are protected so completely the way INVISUS does it...you are no longer part of the SPAM problem. Instead, you have become a part of the Solution. You have joined the Campaign for Internet Safety, Protection and Awareness. Welcome aboard!
I want you to consider the other benefits as well, though, so you really understand what a value it is to have INVISUS Direct for just $15 a month. There is a video on the INVISUS website that talk about other benefits as well, like how you will get your "fast" computer back again...remember when it used to be so fast? So go to this site, and click on Step 1. That will run the video for you, and it's about 10 minutes long.
If that video makes sense, and you can see the potential in making some money on the side spreading the word, I am welcoming others with an entrepreneurial spirit (or those willing to develop one!) onto our team. It's an awesome money-maker with great residual income benefits in the long term, and very nice up-front income potential as well. Check out the Video on Step 3 for the details on that.
Whether you choose to join the business, or just become a protected subscriber, we welcome you, and we're glad you have taken this step to stop SPAM! Please help us spread the word!
Is Your Business Safe From Internet Security Threats?
In an article by Peter Alexander in Entrepreneur.com the answer to this question is explained about as well as possible as to why today’s small business owner needs to pay close attention to the issue of Internet security. Here are a couple of key points that are made:
"Because they have a false sense of security and assume they’re not at risk, many small-business owners don't adequately protect their computers and networks from spyware, viruses, worms, hacker attacks, customer data theft and other security threats."
"The result: Nearly half of all small and mid-sized businesses haven’t taken the most basic security precautions, such as installing antivirus and anti-spyware programs…."
"In recent years, many corporations, impacted by internet threats and in order to comply with strict security measures required by the Sarbanes-Oxley Act and other regulations, have significantly bolstered their network security. As a result, criminals are increasingly turning their attentions toward easier hacker targets--small businesses."
"Many hackers now have software tools that constantly search the internet for unprotected networks and computers. Once discovered, unprotected computers can be accessed and controlled by a hacker, who can use them to launch attacks on other computers or networks."
"Small businesses often lack the financial resources that large companies have to bounce back from security attacks."
"Internet security should be a fundamental part of your business survival/continuity plan."
"Do you have a full understanding of the security you need vs. what you currently have?"
"Does computer security seem like too a daunting task for you to handle? If so, hire a consultant to perform a security audit of your business systems and network and make recommendations."
Join me Sunday night for an informative hour on how to protect yourself online for the "do-it-yourselfer." There will be no sales pitch, no hype. Just me answering your questions and talking about how to best protect yourself from getting your PC turned into a zombie. Don't know what a zombie is? Watch the BBC video from the link the the site below...
EVENT: 7 Easy Ways To Protect Yourself Online
DATE & TIME: Sunday, June 3rd at 7:00pm Mountain
FORMAT: Simulcast! (Attend via Phone or Webcast -- it's your choice)
TO ATTEND THIS EVENT, CLICK THIS LINK NOW... http://www.projectnetsafe.com/7WaysToProtectYourself
Please type in Questions on this page, too. I'll answer it during the seminar. :)
Since I like to keep my ear to the ground when it comes to tech news, especially security-related stuff, I caught wind of this great article tonight. Most of the time, I just quote a part of it, but in this case, I grabbed the whole thing because there is VERY IMPORTANT news and great advice on what to do about it.
For those reading this post in their email, you should only have gotten part of it, and will need to click through to read the rest. But I strongly encourage you to...especially if you currently have Microsoft, McAfee, or Symantec on your PC.
These days, most antivirus and other security products come with a subscription to update your virus definitions.
Signing up usually means forced automatic subscription renewal, in which your credit card is charged every year, and it's not easy to opt out — but I'll show you how.
Subscription sabotage: a case study
IT consultant and Windows Secrets subscriber Bruce Weiskopf received a routine notice that his Norton Internet Security product subscription was about to expire. Then, when he began examining some online forms, he became upset. There, in the fine print, he noticed a clause saying he was already signed up for automatic subscription renewal.
"It's barely noticeable, and, in any event, you aren't given the opportunity to decline at this point," he told Windows Secrets. All he could see was a link for more information. So, he went to the Symantec Web site to find out more.
According to Bruce, what ensued was an onerous process of hoop-jumping before he was finally able to tell the company not to renew his subscription and charge his credit card automatically each year.
"It's really, really an unconscionable scam," Bruce adds. "I'm sure there are many consumers who don't pay attention to their credit card statements, enabling Symantec to make quite a profit at about $50 a pop!"
For those who feel as Bruce does, the unfortunate truth is that the practice of enrolling customers in automatic renewal for antivirus and other security products is not limited to Symantec. Indeed, it has become an industry standard. Microsoft Windows Live OneCare, Symantec, McAfee, and ZoneAlarm all enroll customers into the companies' automatic subscription-renewal programs with the purchase of a subscription-based product. In most cases, customers aren't given a choice to opt out, and only find out about the annual renewals when they receive an e-mail notice or see a charge on their credit card.
For some users, automatic renewal is a boon, since it saves the annual chore of manually renewing subscriptions to new virus definitions. Others view the policy with suspicion, especially since these policies are often not made clear at the outset. Moreover, the amount charged for the renewal each year can change, depending on the going rate for the subscription at the time of the renewal.
In order to get to the bottom of this, I bought products from each of the following four security companies to see how transparent the auto-renewal policy is and just how difficult it is to get out of the scheme once you know about it. Windows Live OneCare is the least transparent
Of all the companies I tested, Microsoft's all-in-one security and maintenance package, Windows Live OneCare, has the most-hidden automatic subscription-renewal policy and is the most difficult to learn how to cancel.
You begin the process by signing up for a free Windows Live account (basically a Hotmail e-mail account). At the bottom of the form is a link to the Windows Live Service Agreement, a 6,708-word document that hints at what's to come. It reads, "If we informed you that the service will be provided indefinitely or automatically renewed, we may automatically renew your service and charge you for any renewal term."
The actual commitment isn't made until you enter your credit-card information and are allowed to review your data before confirming the purchase. The review page shows no information on the subscription-renewal policy — that is, until you click View Details under Windows Live OneCare. Only if you open the link do you see this policy statement:
"You have selected a one year subscription to Windows Live OneCare ... This is an annual subscription that will be automatically charged to your credit card every year at the then current price unless you cancel your account or select an alternative plan. You must agree to the Windows Live OneCare Subscription Agreement to access the service. Major credit card required. Prices subject to change. Valid in US only."
Despite the above language, no "alternative plans" are listed. Nor is any information provided on how to get out of the automatic renewal program.
After your purchase, you can go to Microsoft's Billing and account management page and sign in with your Windows Live e-mail and password. There, you can click on the service you purchased (Windows Live OneCare) and see links for complete cancellation of the service itself. But nowhere is there information on simply canceling recurring credit-card charges.
In the end, you have to phone Windows Live OneCare Support at 866-663-2273 in order to cancel only the automatic-renewal aspect of your subscription. (I was told by a Microsoft representative that this toll-free number also can be called from outside the U.S. if international dialing and the country code 1 is used, but I wasn't able to test this.) McAfee embeds auto-renewal policy in EULA
A somewhat stealthy approach is taken by McAfee. As part of the online purchase process, users see a scrolling box containing a 3,280-word end-user license agreement (EULA). Buried in the scrolling text is a statement that reads:
"If you have agreed to permit McAfee to automatically renew your subscription to the Software by charging a valid credit card number which you have provided to McAfee, your subscription will be automatically renewed thirty (30) days prior to the expiration of the term and each anniversary thereafter for a fee no greater than McAfee's then-current price, excluding promotional and discount pricing."
According to the license, simply purchasing with a credit card gives the company permission to automatically charge you for a subscription renewal year after year.
How do you get out of it? The EULA goes on to say:
"McAfee may continue charging you for any subscription automatically renewed unless you inform McAfee´s customer support department at (408) 992-8599 or (866) 622-3911 (or any other local number provided by the respective McAfee entity in your region) not to renew your subscription to the Software at least thirty (30) days prior to the expiration of your subscription to the Software and informing them of your desire not to have such subscription automatically renewed."
Granted, every customer should read the fine print before purchase. But, many would argue that this important information about ongoing charges should be made more apparent.
In case you missed the phone numbers in the EULA, you can always cancel auto-renewal of your subscription at the McAfee Web site. However, finding the right page isn't easy, especially since the site's search feature provides no quick answers. Here are the steps for U.S. customers:
Step 2: At the right end of the navigation bar near the top, click My Account.
Step 3: Log in using your e-mail address and password.
Step 4: In the navigation pane on the left, select Auto-Renewal Setup under My Account.
Step 5: Under Auto-Renewal Setup, the page should have check boxes corresponding to each product you've purchased. Uncheck the boxes for each item whose subscription you do not want to have renewed automatically. Then click Done.
Customers outside the United States may need to contact a customer service representative either by e-mail, phone, or online chat. These options are available at McAfee's main customer service page. Symantec: Mandatory auto-renewal, but easier to cancel
I found that Symantec actually has the second-best policy of the four security sites I tested. Symantec products give you no choice, requiring you to accept automatic subscription renewal as part of your purchase, but at least this is made pretty clear from the beginning. An explanation just below the credit-card form in Symantec's online store reads, in part:
"By placing this order, you consent to Symantec automatically renewing your annual subscription. Symantec will notify you by e-mail prior to expiration of your current subscription ... If you do not want to be automatically charged, you may discontinue the auto-renewal feature of Norton Ongoing Protection at any time after completing this order by following the instructions contained on the Symantec Web site and in the confirmation e-mail."
Despite the lack of choice, Symantec at least warns you, both at the time of purchase and in the confirmation e-mail. Moreover, it provides a link to the cancellation page, both in the online receipt and the confirmation mail.
On the chance the buyer might miss these statements, I went to Symantec's main site to see how hard it would be to find the cancellation page on my own. I entered cancel automatic renewal in the search box at the top of the page. The search returned three results, the first of which was an Enterprise Support Knowledge Base article entitled "How to cancel On-going Protection." The article included a link to the cancellation form.
The actual cancellation process is a simple matter of filling out the form online and clicking Submit. (This only cancels auto-renewal, not your current subscription.) The only downside is that you'll need to have your name, e-mail address, order number, product activation key, and product serial number to complete the form! So remember to save your online receipt or the confirmation e-mail you received after your purchase. ZoneAlarm provides a fairly upfront choice
As far as security products go, Check Point's ZoneAlarm is the least coercive when it comes to automatic subscription renewal. Unlike the other three companies I tested, the order form for ZoneAlarm provides a check box where you enter your credit-card information that reads "Automatically renew my subscription upon expiration." The box is checked by default, however, so if you miss it, you'll be signed up for automatic charges until you cancel. And the confirmation e-mail you receive won't clue you in to this fact.
Once you're signed up for automatic renewal with a ZoneAlarm product, canceling the auto-renewal isn't too difficult — providing you know where on ZoneAlarm's site to look. I had to do a lot of clicking around to find the right page, and the site's search function was little to no help. Here's the solution:
Step 1: On ZoneAlarm's main page, click Customer Support in the navigation pane on the left.
Step 2: On the Customer Service page, click Login to My Account under Customer Service. You may be prompted whether to display both secure and nonsecure items.
Step 3: On the Account Login page, enter the user ID and password you created when you purchased the product. Click Sign In Now! Again, you may be prompted whether to display both secure and nonsecure items.
Step 4: On the My Account page, click Manage Subscriptions under the Manage Subscriptions heading.
Step 5: On the Manage Subscriptions page, look in the section with the Automatic License Renewal heading. Choose Manually renew this license from the Renewal Option drop-down list. Click Submit. What's behind the hard-to-cancel policies?
Not surprisingly, companies that enroll customers in automatic-renewal programs by default tend to describe the policy as an advantage for customers.
A Microsoft spokeswoman explained that "the goal of implementing the automatic-renewal process was to protect customers from an interruption in their service. Recent studies show as many as two-thirds of antivirus users postpone their subscription renewal." (Microsoft policy prohibits identifying p.r. spokespeople by name.)
John Gable, director of product management for Check Point's ZoneAlarm division, says the company's recently implemented auto-renewal practice was intended "to help consumers keep their subscriptions up to date, as well as in response to feedback from many users who felt subscription renewal reminders were too intrusive."
Corporate altruism doesn't seem to be the only motive in the move to recurring credit-card charges, however. Last year, an article in TechWeb credited Symantec's then consumer-group chief Enrique Salem as saying that automatic renewal of product updates was one of several "revenue-generating" strategies to "pump up the consumer group's bottom line." (A representative I contacted at Symantec did not provide a comment by press time.) Consumer reaction is decidely negative
Despite the promise of continued service that automatic renewal offers, some customers clearly don't like being signed up for recurring credit-card billing by default. It isn't difficult to find complaints about this practice posted in online forums.
For example, a user with the screen name RideRed claimed in BroadbandReports.com that Symantec charged his credit card at renewal time without his consent, despite the fact that he had turned off automatic renewal at the time he made his purchase.
"I usually don't sign up for services that auto-renew. Why? Because I am surrounded by examples of companies that REFUSE to stop charging when the customer tells them to. They call it an 'error' and keep right on charging — all you can do is call and hope they eventually stop taking your money for a service you've long since stopped using."
Quantifying the level of dissatisfaction is more difficult. None of the companies I was able to reach had (or would reveal) the number of customers who have canceled automatic renewal, although the Microsoft representative did say the majority of customers are auto-renewing their subscriptions.
Nevertheless, it's safe to say most companies track customer complaints and respond when they reach a critical level. As ZoneAlarm's John Gable acknowledges, "We are continuing to run usability testing with regards to placement of the auto-renew option and whether to keep it checked by default or not. Therefore, the way we have it today may very well change based on user feedback." If you feel the pain, you must complain
No product I reviewed has a completely clean record. ZoneAlarm, to its credit, actually does allow users to opt out of automatic renewal before completing a purchase (but opting out is not the default choice). Symantec, for its part, does make its auto-renewal process apparent and relatively easy to turn off — compared with the worst cases.
I'm the first to agree that the ability to automatically renew a subscription, especially to an important security service, is a convenience most customers should consider. But to compel customers to adopt automatic charges and then hide or obscure that fact is quite another matter. Security companies compound the problem by making the cancellation process difficult and hard to find. In most cases, companies are implementing this policy in every country where they can lawfully do so.
Microsoft's spokeswoman told me that the company "has taken steps to prevent their customers from being surprised by automatic renewals. Sign-up forms make it clear that online customers are entering an automatic-renewal program."
But this is in direct contradiction to my own purchasing experience. It may come as a surprise to Microsoft that not everyone clicks every link to read the fine print during their online shopping experiences.
Although the companies I surveyed send out reminders before the renewal fee is charged, customers can easily lose track of these notices in the deluge of spam and business promotions they receive each day.
Corporations seldom change policies that make them rich, unless enough customers complain. If automatic renewal works for you, then by all means keep the service going. But, if you don't like the way it's been implemented by your security provider, it's time to let them know.
Scott Dunn is associate editor of the Windows Secrets Newsletter. He is also a contributing editor of PC World Magazine, where he has written a monthly column since 1992, and co-author of 101 Windows Tips & Tricks (Peachpit) with Jesse Berst and Charles Bermant.
GREAT Article, wouldn't you agree? Here's a link directly to it. These are the LAST companies you would expect to be "scamming" you!!!
I am grateful for INVISUS. They have always been above-board with all their subscribers. I have met with the company leaders several times, and enjoy it very much. They are a great bunch of business people and very honest and ethical. They truly do their best to look out for their subscribers and business partners. Great Job INVISUS!
I've been invited to talk on a Miami-area radio show called "Own Your Power" hosted by a recent friend I made on MySpace as we shared our radio shows and interest in online business in common. Simone and Nikki have a great show. Here's their announcement regarding this Sunday's Show (5/13/07):
We hope you can tune in this Sunday to the Own Your Power Radio show. We have a nice round table of experts joining us to share their views and offer tips on email marketing. Some things we'll discuss are:
What are the do's and don'ts of email marketing?
What is phishing and how can I be more aware of it?
Why Myspace might be fun, but also hacker heaven!
What cool new programs can I use to get the word out about my company?
Learn the basics of an email newsletter and how to make the most of it!
I'll even share my personal story of how I "fell asleep at the wheel" while checking email late and accidently clicked on something that opened the door to cyber crime. Lesson learned, never check email when sleepy ever again! :)
Nikki and I will discuss these topics and many more this Sunday from 7-9pm EST.
HAVE A HAPPY MOTHER'S DAY to the Mom's out there. We hope you get treated like the Queen you are, not only Sunday but everyday!
Learn How To Make Them Click with Tips From These ONLINE GURUS!
Join our special guests
Andrew S. Hazen, Founder and Chief Executive Officer
www.primevisibility.com Andrew, a serial entrepreneur, has been developing and branding successful businesses for more than a decade. He has extensive knowledge and experience in all e-marketing matters, search engine optimization, and Internet law.
From domain name procurement to keyword selection and forming strategic partnerships, Andrew creates strategies and techniques to get websites noticed by targeted audiences and major Internet search engines.
Jim Dickinson comes from a background of over 12 years of high-tech and Intenet Security Consulting. Currently runs a home business with his talented wife, Tammy, providing a managed Internet Security Solution to protect small and home business owners from hackers and other Internet threats.
He also hosts an Internet Radio show called Marketing Secrets Radio at http://projectnetsafe.com radio where he and his wife discuss marketing news.
45k on his mailing list, learn how he did it!
ALVIN GLYMPH, founder of Glymph and Associates, LLC has over 15 years of research and business development experience. His significant experience and skills were developed during his tenure with Georgia State University, Emory University, Colgate University, Kemet Wear, and GADAD Enterprises.
Founded in 2002, Glymph & Associates is a business development firm, specializing in providing technical assistance to organizations, small biz owners, state agencies, and entrepreneurs.
We offer Grant Writing, Focus Groups, Business Plans, Needs Assessments, Program Evaluations, Data Collection, and Program Development. We are committed to working with groups that recognize the value of helping others and have the proven professionals to offer a broad range of solutions to fit your needs.
Are you a business owner or someday hope to be? Do you have a full-time job and one or more "SIDE- HUSTLES" that you haven't quite gotten off the ground...because your "9-5" is holding you back?
Do you keep PROCRASTINATING because of fear?
Do you want guidance from others who are already where you want to be?
If you answered yes to any of those questions, OWN YOUR POWER RADIO show is for you! Tune into News Talk 1080am every Sunday night from 8-9pm where Marketing coach and author Simone Kelly-Brown, along with her co-host, Nikki Clifton will offer you insightful and straightforward business advice, such as the many topics that can be found in Simone's book Jack of All Trades, Master of None?
The show covers topics to help you:
Identify your true passion
Gain laser-sharp focus
Networking strategies
Learn how to carve out "Me Time" in your life
Uncover and conquer the fears that have been holding you down
Master the art of relationship building
Unleash your creative spirit and use it to promote your business
Think like a master marketer even if you don't have a business background
And much more!
I'm looking forward to being on the show, Simone and Nikki! You can listen live from the Internet, or catch the show from the archives.
Zombie PCs are a great visual for what your PC becomes when a hacker is able to compromise it and take control, usually without you even knowing. INVISUS Direct Managed PC Security Services are excellent for protecting your PC. For just $15/mo. trained and skilled security experts will manage the security software they put on your PC (all enterprise-grade stuff) and you don't have to worry about it at all.
Here's a great little article at The Tweezer's Edge that describes a zombie PC that he found and spent two days cleaning up. I think if it was protected well in the beginning, it all could have been avoided.
This is a featured article in the Invisus Direct FOCUS magazine this month. It is yet another story about an innocent person taking the legal heat for what hackers do on her school computer. These kinds of stories are becoming more and more common. They are common enough to get the spotlight on Prime Time TV (go back and look at the ABCNews post from last week.
Experienced Industry experts, and those with INVISUS Direct protecting their PCs, are the only ones I know of that don't need to worry about these scenarios...
So she has been CONVICTED! And to face sentencing on 3/2/07...
Can you believe this? The School District needs to shoulder the blame here...the AV was out of date, and there was no firewall...
So in a few more weeks we'll hear how many thousands of people have been infected and had their computers controlled through the following exploits. Many more than that will never know they have been compromised. I can only sit here at my computer, passing along these amazing stories, and wonder how long it will take for people to seriously consider moving to a Managed Internet Security Solution like Invisus Direct.
Invisus Users have on their computers special software -- corporate-grade stuff! -- that monitors their system and makes the job easier for Invisus people. One of those apps ensures that all of them are impervious to the exploits mentioned below, because it monitors their security patches...and not just one the Windows OS. It manages all the other software, too. Mine, for example, caught a security patch that was needed on my Quickbooks, and helped me patch it.
The official Web site of Dolphin Stadium, home of Sunday's Super Bowl XLI, has been hacked and seeded with exploit code targeting two known Windows security flaws.
In the attack, which was discovered by malware hunters at Websense Security Labs, the server hosting the site was breached and a link to a malicious JavaScript file was inserted into the header of the front page of the site. Visitors to the site execute the script, which attempts to exploit the vulnerabilities.
According to Dan Hubbard, senior director, security and technology research at Websense, the malicious site hosting the script has been taken offline by law enforcement officials but the hacked Dolphin Stadium site — which is attracting a lot of Super Bowl-related traffic — is still hosting the malicious JavaScript.
A visitor to the site with an unpatched Windows machine will connect to a remote server registered to a nameserver in China and download a Trojan keylogger/backdoor that gives the attacker "full access to the compromised computer," Hubbard said.
Sources tracking the threat say the the hosted malware's server host's IP address address keeps changing. This means that unless the owner of the hacked site removes the malicious .js code and secure their server, exploits could start hitting unpatched visitors again.
The attackers are exploiting flaws patched in Microsoft's MS06-014 and MS07-004 bulletins.
[Updated: February 2, 2007 @ 2:42 pm] The dolphinstadium.com Web site has been cleaned but new information suggests another variation of the domain, which redirects to the main site, has now been compromised and actively serving the exploits. "We're not out of the woods yet. This is real-time and on-going," a source said.
The most important thing right now is to make sure your Windows machine is fully patched. Users can download and install the updates from Microsoft Update or the built-in Automatic Updates mechanism.
So at the very least, patch your Windows manually. Keep up on it! There are links at the end of this article that will help. When you are tired of doing it all on your own, and you start to think that $15 a month is worth it to have someone else worry about this all the time...call me. I'll help you subscribe to INVISUS Direct.
Many folks just don't think it can happen to them. But then an article like this shows up in the local news, and you might start to think twice about that.
This is a local TV Station in our area talking about a local business...a small business that was hacked and had their database of customer's credit cards stolen. But surprisingly, the reporter offers no solutions beyond typical consumer advice.
Invisus Direct is the solution today. I believe this managed security solution is ahead of its time, but they are certainly paving the way for the future. Those who get involved with ID now will reap the rewards when consumers and small businesses begin to see the light.
But even without the commercial service I offer to people, there are many ways to protect yourself. There is no ONE solution. It takes a variety of solutions blended together to provide a complete answer.
Part of that answer is having experts on-hand to advise and help you. There is no way you can do what you do best and be a security expert on top of it all. That's the missing element for most. The security environment changes so often it takes an expert (or team of experts) to stay on top of it and keep you safe. Invisus Direct offers free, expert support to their subscribers, but there are many quality services out there that charge. Either way, this is an important part of your Internet armor.
Until more small business start to listen and do something to protect YOUR personal data, like your credit card number, you will remain AT RISK, no matter how well you protect your own PC from hackers.
The volume of targeted cyber-crime attacks has reached its highest ever level, a security firm has claimed.
Network Box said that small firms are the most vulnerable to online attack as they have the lowest levels of IT security protection in place.
The vendor noted that, although virus levels are dropping month on month and made up just 30 per cent of all malware in June, this danger is being replaced with a "much more sinister threat".
Cyber-criminals are using worms, Trojans and spyware, which now make up to 70 per cent of all malware, to target the most vulnerable sectors of PC users: smaller businesses and home users who do not have sophisticated antivirus packages.
Network Box cited its own research as showing that SMEs are "wide open to network attack".
It said that 63 per cent of such firms have no protection against phishing attacks, 69 per cent do not filter web content to protect themselves from employees downloading harmful content, and 50 per cent have no protection against spyware.
Simon Heron, technical director at Network Box, said: "Techniques that have been used in the past to target big businesses have been revised to target those most vulnerable and therefore the most likely to respond.
"Robbing a small amount of money from a large number of individuals is proving more lucrative than robbing a large sum from a few."
The key trend of 2006, according to the firm, is the growing sophistication of techniques used to target vulnerable individuals.
The botnet has come into its own in the first half of the year, with botnet 'masters' continuing to hone and improve techniques to enslave business PCs. Cells of botnets are getting smaller and therefore almost undetectable, the research added.
The increase in botnets has also led to a marked increase in the number and sophistication of phishing attacks.
Such attacks have developed to include spear phishing in which an email targeted at an individual appears to come from a trusted source, e.g. from within a company.
Network Box warned that the combination of botnets which allow scammers to generate huge numbers of emails, and targeted spear phishing techniques that allow those emails to appear personal to the individual, results in an effective revenue generator for cyber-criminals.
"Botnets can be very damaging to the businesses they are exploiting as well as to their end targets," said Heron.
"If a business becomes infected and unwittingly sends out spam containing phishing links or other malware it will end up blacklisted by anti-virus filters and therefore unable to do business online. The damage can be difficult to repair."
.jpg)
.jpg)
