Home Computing Security Tips

Limewire file sharing screen

http://www.homecomputingsecurity.com

What

Free Software is a high security risk!

Why

Malicious folks find it easier to threaten your identity, steal your passwords and money when they embed their evil works within the free and cheap.

How

If you play in the street – you are likely to get hit!

Detailed Information

Avoid free software that comes at higher risk for tampering.

Avoid downloading free games, music or software from unknown and unverifiable sources. Avoid purchasing really cheap software on Ebay or at less recognizable sites. It could be too good to be true. You never know what an evildoer could add to the package! Sites that promote and offer anything free, cheap, and illegal – are prone to trouble. “Crack sites” offering license key codes to be able to install software from a friend, pornography sites, free music and videos - are all suspect. Peer-to-peer file sharing programs are full of potential trouble.

New TruSecure Research reports: "A significant surge in malware intentionally being posted and unknowingly being shared on P2P file sharing networks. For example, according to new research conducted by Hughes, 45% of the free files collected via KAZA, the most popular program for downloading free files and music, were viruses, Trojan horse programs and backdoors. “Organizations need to warn their employees about file-sharing applications and the danger they pose to them at work and at home.”

Beware of BLOGS

FTC Shuts Down BlogSpot Spyware Ring - November 10, 2005 http://www.eweek.com/print_article2/0,1217,a=165065,00.asp

Weblogs are spreading more than opinions and observations across the Internet. Some are beginning to propagate malicious software downloads that can alter browser settings, track users and serve pop-up ads.

The Federal Trade Commission has pulled the plug on a massive spyware operation that allegedly used Google Inc.'s BlogSpot service to trick millions of computer users into downloading spyware and adware programs. The charges stem from the discovery earlier this year that Google's BlogSpot service was being used to spread spyware and adware programs such as "Search Miracle," "Miracle Search," "EM Toolbar," "EliteBar," and "Elite Toolbar." According to the FTC complaint, the spyware ring used the iWebTunes Web site to promise free background music on the BlogSpot-hosted sites.

Dozens of blogs hosted by Google Inc.'s Blogger service can install programs that are widely considered to be spyware and adware onto visitors' computers, warn users and spyware researchers. In many cases, users are discovering the offending sites as they browse among blogs through Blogger's navigation bar. The offending blogs typically prompt visitors to accept downloads through misleading pop-up windows, said Ben Edelman, a vocal spyware critic and Harvard University researcher. While a user typically must accept the download before the software installs, the prompts often attempt to trick users by disguising the download as a necessary Windows or Internet Explorer upgrade.

Spyware critics state that Google Blogger should disable or limit the ability of bloggers to add JavaScript into blog templates.

In this Google BlogSpot bust, the FTC froze the assets of the three outfits pending a further hearing and also plans to ask the court to bar the deceptive and unfair practices permanently and require the operators to give up their gains.

"This is a big bust. Enternet media is the company behind one of the most destructive and abusive spyware programs," said Eric Howes, a renowned anti-spyware researcher who assisted the FTC with the investigations. These are guys behind SearchMiracle and EliteBar, two of the nastiest spyware programs. They were also using rootkit technology to hide files and defeat anti-spyware software. We're talking about one of the worst pieces of spyware around," Howes said in an interview.

Virus Poses as Leaked MSN Messenger Beta

December 27, 2005 http://www.eweek.com/article2/0,1895,1905876,00.asp

Internet users are being warned about a new virus that poses as a leaked pre-release version of the MSN Messenger instant messenger program.

Unsuspecting Windows users who install the phony MSN Messenger Version 8 "beta" actually install an IM worm that spreads to their IM contacts, and connects their computer to a remote control "bot" network run by malicious hackers, according to F-Secure Corp., an antivirus firm based in Helsinki .

A Web site, msgr8beta.com, purports to have the leaked version of MSN Messenger. The site touts the advantages of the MSN Messenger 8, including "real-time emoticons," and "built-in functionality with Windows Media Player 10." Microsoft has not yet released a beta for MSN 8 to the public, although versions of the software are rumored to have been released to select customers.

However, the download offered from the Web site doesn't contain any MSN Messenger code, said Mikko Hyppönen, manager of antivirus research at F-Secure. Instead, clicking on the Web site download links installs a virus that F-Secure calls "Virkel.F," and causes your MSN Messenger client to send download links for the malicious Web site to the person's IM contacts. Behind the scene, Virkel.F connects infected machines to a remote "botnet" server that can be used to issue commands or transfer malicious programs to the infected host, he said.

If you play in the street – you are likely to get hit!

Once you download any program file, be sure to scan for virus prior to running it.

Resources

P2P

http://www.stopbadware.org/reports/reportdisplay?reportname=kazaa