Articles > March 2010 > Update Alert

Update Alert

Update Alert

update-alert.gif

 

In November 2008, the very destructive ‘Conficker’ virus was picked up. Because some people did not pay attention to the Microsoft updates alerts, their machines became infected and spread on the virus – yet a simple Windows update would have stopped it.

 

Microsoft does flood us with updates and as a result we can get a bit blasé about them. But software is created by humans and therefore is fallible and can contain, for lack of a better word, ‘bugs’. That’s why software updates are so critical. I know they can be an irritation (and sometimes time consuming as you reboot your PC) but they are incredibly important. Not only do they fix errors in code (the mathematical language of computers) and improve usability but also they correct potential ‘holes’ or vulnerabilities in the software that can be targeted by hackers.


Computers that have not received Windows software updates can make it vulnerable as one of the things a virus can do is attack the installed antivirus program on the machine. It hides in the background. But the virus (actually, the person controlling the virus – the hacker) now has control of the machine. The hacker can then do a number of things and it depends what their intent is (this example is called a Trojan or a bot).


This is where we get to the scary bit. Operations that can be performed by a hacker on your computer system include:


• using the machine in order to perform denial-of-service attacks

• data theft (e.g. passwords, security codes, credit card information)

• installation of software (including other malware)

• downloading of files

• uploading of files

• keystroke logging (the practice of tracking the keys pressed on a keyboard)

• viewing your screen.

To avoid being hacked, it’s best to accept that about every fortnight your computer will update and reboot. You must allow any that are marked important or recommended. Whatever you do, don’t interrupt the update process once it has started – PCs don’t like half an update and they tend to get very upset.


Another form of defence is to have a really good firewall. A firewall can be either hardware or software – some sites have a combination of both. All networks/computers have ports which allow the movement of traffic (like emails). A firewall will block and inspect traffic coming through your internet connection – kind of like border control or customs. A simple firewall will usually allow or deny traffic depending on specific ‘rules’. More sophisticated firewalls will do the same but also analyse and inspect the traffic and sometimes also scan it for viruses/malware and attempts at exploiting the system (kind of like the sniffer dogs, X-ray machines and bag searches at customs).


It is really good to have a firewall (in the case of businesses with servers, they are essential). But remember that no firewall (or virus software) can stop some malicious code if you accept it, for example, if you click ‘yes' to install antivirus software when you already have some or when it is something that you have never heard of.


What’s involved in repairing an infected PC? Removing malware from your PC can involve physically removing the hard drive and booting it up in a clean machine, or booting the PC up from a CD in order to prevent the virus activating during the normal boot process. As the virus can replace or remove critical system files, it can mean that a reload of the entire system is required. Sometimes we have to back up the user’s personal files and email then completely reload the system. This becomes even more serious when it’s a server that has been attacked.


Top tips to keep your computer safe

Make sure you keep it up to date with both Windows updates and virus updates. Windows updates are just as important as updating your virus definitions.

Use well-respected antivirus software e.g. NOD32 and Symantec.

Be very careful who you let on your computer – you might be cautious but somebody else might not be!


Delia Gill

www.quaycorporate.co.nz