14 Jul 2008 14:44
New technologies make it easier for all of us to get our work done online, communicate with others, and take advantage of all the internet-based entertainment that's available today. But many of those same technologies have also made it easier for cybercriminals to do their dirty deeds.
Below are the top 10 online technologies that cybercriminals love to exploit and, where applicable, how users can protect themselves, both at home and at work, when using those technologies.
1. Broadband connectivity
Broadband has many advantages for users, including high speed at a relatively low cost and the 'always-on' nature that eliminates the need to log onto the ISP each time you want to access internet resources.
However, those same characteristics also make it the perfect technology for exploitation by hackers and attackers. Having your computer connected to the net 24/7 means cybercriminals have a much greater window of opportunity to gain access and steal your data, crash your computer or otherwise do harm.
The high speed of new access technologies means a 'drive-by download' can put even a large malicious file on your machine in just seconds.
2. Wi-Fi networking
Another technology that has become incredibly popular is Wi-Fi, or 802.11 wireless networking. With increasing frequency, both home and business networks are connected by wireless technologies instead of Ethernet cables, and Wi-Fi hotspots are proliferating in public places, such as coffee shops, airports, hotels and city parks.
Wi-Fi is convenient because you can move around and stay connected, but it also makes it more convenient for a criminal to get onto your network and into your system without your even knowing, since anyone with a wireless-enabled laptop within range can intercept the signals.
Unlike their older counterparts, new wireless access devices use encryption by default, but you need to check and ensure that yours uses the more secure encryption, such as WPA/WPA2/802.11i, rather than WEP, which is easy to crack.
You should also use strong encryption for the applications you run over a wireless network (for example, SSH and TLS/HTTPS). You can use a VPN (virtual private network) or IPsec to encrypt traffic travelling over a wireless LAN, and you should create a separate network segment for your wireless communications if you also have a wired LAN.
More information about Wi-Fi security is available on the Wardrive.net site.
3. Removable media
Floppy drives have been almost entirely replaced by CD/DVD readers/writers, flash card readers and USB drives but, whatever the form, cybercriminals love removable media. If they can get physical access to a computer, they can quickly and easily copy files and remove them, often leaving no-one the wiser. Removable media also pose a security risk because it's easy to lose discs, thumb drives, flash cards and the like.
You can use Group Policy in Vista or edit the registry in XP to disable use of USB devices. You can also get third-party software that will block the use of any I/O devices through USB and IEEE 1394 ports or using BlueTooth wireless connections. An example is Lumension Security's Sanctuary Device Control.
If you're concerned about removable drives or cards being lost or stolen and the data on them accessed, you can encrypt the data on flash cards, CDs and DVDs so that you can still work with them on different computers but a thief cannot. Dekart, for example, offers products enabling this.
4. The web
The web is hardly a new technology now, but it's still a favourite of cybercriminals because almost everyone who connects to the internet uses a web browser.
Back when the web was text-based, browsing was a pretty safe activity, but today's web pages are expected to do much more, and many of them run programs — such as JavaScripts and ActiveX controls — aimed at giving users a much richer multimedia experience. The problem is that attackers can use these browser capabilities to run their own malicious programs on your computer.
Don't be fooled into thinking that because you use a particular browser, you're safe. All popular browsers have vulnerabilities that can be exploited. The browser's settings are more important. If you disable JavaScript and ActiveX for most sites…
…you'll make it more difficult for attackers to get to your computer through your browser, but you may also not be able to properly view some sites. It's also important to install security updates for your browser as they're released.
5. Email and instant messaging
Email is ubiquitous. Almost everybody has one or more email addresses, and it's one of the most convenient ways to communicate. It has almost the same immediacy as a phone call or instant message, without the pressure to answer in real-time.
Unfortunately, email also has some characteristics that make it attractive to criminals. They can send mail with spoofed return addresses so that it's difficult or impossible to discover the true origin of the messages. Thus, they can get away with sending spam, phishing messages, threats, child pornography and other types of illegal correspondence.
Instant-messaging (IM) programs can also present a threat. As with email, people using IM can pretend to be someone else, and most IM programs now support file transfer, which provides a way for criminals to download malicious software to your machine.
Technologies to authenticate the identity of email senders, such as Microsoft's Sender ID and the more generic SPF, can solve the spoofing problem, but only if all email domain owners use them. Meanwhile, you can protect yourself with spam-filtering software that allows you to create a whitelist, or safe-senders list, and by following best practices such as not clicking on hyperlinks in emails, viewing your mail in text format only (no HTML mail), and not engaging in IM conversations or file exchange with people you don't know.
6. Unified communications
Unified communications (UC) is a popular trend in the enterprise space, and companies are finding many advantages in combining their email, telephony, IM and conferencing applications so that these programs can interact with each other. With voice over IP (VoIP) slowly replacing traditional telephone services, all these communications technologies can be run over the same network.
However, this also means that your phone calls are now subject to some of the same threats to which your data has always been vulnerable: VoIP packets can be intercepted or even modified in transit, just as other data traffic can.
To protect yourself in a unified world, use encryption to keep important data confidential, whether it's text, voice or another sort. Also make sure UC software is updated regularly (along with the underlying operating system) and use authentication to verify the origin of messages and to ensure that messages haven't been tampered with.
7. Peer-to-peer programs
The most popular means of exchanging large files quickly across the internet is through the use of peer-to-peer (P2P) software and networks, such as BitTorrent, Kazaa, Gnutella or Napster.
People use such networks to share music and movies in violation of copyright laws, as well as for legitimate purposes, such as distributing their own home movies and pictures. The number of songs swapped via P2P networks is estimated to be billions per year.
Criminals love P2P networks because they can mislabel the files they share and cause you to download malware (such as a program that will allow the criminal to take over your computer) when you think you're downloading a song, for example. Since most of these networks also strive to protect the anonymity of users, the cybercriminals have little risk of getting caught.
The best way to protect yourself from the dangers of using P2P applications is not to use them at all.
8. E-commerce and online banking
More and more of us are conducting more and more of our business over the internet. It's convenient to buy what we need from home and have it delivered to our doorsteps and to pay our bills and transfer money between our accounts without a trip to the bank.
Criminals love this trend because it gives them additional opportunities to get hold of your money. They can intercept information as it travels across the network, break into the databases of online businesses or financial institutions to steal information, or…
…set up their own fake e-commerce sites and lure you into giving them your credit-card number and other information under the pretence of selling you something.
To protect yourself when buying or banking online, do business only with well-known sites and ensure that your web traffic is encrypted (your browser will indicate when a site is secure). Navigate to those sites directly; don't click a link in email to get there. Don't save your credit-card information on the websites either; type it in each time. Keep a close watch on your credit-card statements and bank statements and immediately report any suspicious or unauthorised activity.
9. Mobile computing
Computing has become increasingly mobile and devices ranging from small PDA phones to full-sized laptops are being used to store important data and connect to home and company networks. Because of their mobility, however, these devices can easily be lost or stolen, and the data goes with them.
If the device contains your personal information, you could be subject to ID theft. If it contains client information for your company, you could put those clients at risk and possibly put your company in violation of regulatory compliance requirements. Luckily, there are a number of ways to protect yourself from these threats.
Many portable computers today come with built-in TPMs (trusted platform modules), which are hardware-based cryptography chips that work with software technologies such as Microsoft's BitLocker (included in some editions of Windows Vista and Server 2008) to encrypt the drive and prevent a thief from being able to log on or access any of the files.
More and more laptops also include fingerprint-recognition software and other extra security measures. You can also install tracking software that will cause the laptop to 'phone home' when connected to the internet if you fail to enter the correct password.
Many PDA phones provide for password protection and you can buy third-party programs to encrypt data on the phone. The latest versions of Windows Mobile allow you to encrypt the information on the storage card without a third-party program, and you can also remotely wipe the device and card.
10. Universal connectivity
Closely related to mobility is universal connectivity. We are putting not just our computers but our entire lives online. There are now kitchen appliances and laundry machines that can connect to the internet; pool and spa equipment that can be accessed online; and so forth. Many of us have surveillance cameras with built-in web servers, which we can monitor from anywhere in the world as long as we have an internet connection. All of this connectivity is great, but it opens up avenues by which criminals can invade our homes without ever setting foot inside.
We also put ourselves online in another way. We have personal websites; MySpace, FaceBook and Second Life accounts; and other venues where we reveal much more about ourselves than we might realise. Criminals love these social-networking tools because it makes it easy for them to pick victims and get to know them, sight unseen.
Reasonable precautions
What is the solution then? Should we disconnect from the global network, erase our presences from the web and hide in our rooms? Even if that were possible, the cure would be worse than the disease. In today's world, functioning without technology is becoming increasingly difficult and, once you've taken the technological plunge, the information is out there; there's no going back.
The key is increased awareness and constant vigilance. Use common sense, as you do in the real world. Don't automatically trust strangers. Don't wander into places (virtual or physical) where you're unfamiliar with the terrain. Don't divulge sensitive information — such as credit-card and bank-account details, social-security numbers and birthdays — that can be used to steal your identity.
Most cybercriminals are like most other predators: they go for the easy kills. By taking some precautions, you can still use the technologies that they exploit — so long as you use them wisely — without becoming a victim.
Debra Littlejohn Shinder is a technology consultant, trainer and writer.
Story URL: http://resources.zdnet.co.uk/articles/features/0,1000002000,39446759,00.htmCopyright © 1995-2009 CBS Interactive Limited. All rights reserved
ZDNET is a registered service mark of CBS Interactive Limited. ZDNET Logo is a service mark of CBS Interactive Limited.