Safer Internet: Connection: Avoid Malware

Why?

  • upgrade+ Malware can compromise online identities and accounts.
  • + Malware can access, compromise local files.
  • - Requires "be-aware" and software -- paying attention and updating system, apps and AntiVirus tools (if applicable)

Quotes

Types

  • heebie jeebies hissyViruses Wreak Havoc On Your Files
  • Spyware Steals Your Information
  • Scareware Holds Your PC for Ransom
  • Trojan Horses Install a Backdoor
  • Worms Infect Through the Network

User

  • attachmentPay attention -- most malware requires active user involvement
  • Don't click on links or open attachments in an unexpected email from "friends", "boss", "family"
  • Don't click on links in popups, or unknown links in web pages, esp. ads
  • Do not respond to popups that "hijack" your browser, esp. those that "found malware" or download unexpected 'Flash updates' -- just quit browser (see Block Ads section if you can't close/quit); reputable companies do not use such annoying / scare tactics
  • remote access virus[Refs]: "Most Cyberattacks Are Phishing Related, Not Sophisticated Technical Attacks";
    "Hygiene, Honeypots, Espionage: 3 Approaches To Defying Hackers"
  • [Refs:macOS]: "Scary Internet Scam Becoming Disturbingly Common -- browser hijacking: pop-ups, tech support / FBI; spyware, ransomware"

Apps / Web Sites

  • star trekInstall & update your software -- system and applications -- by downloading only from vendor's app store (if screened), app's own Update preference or control panel, other reputable sites -- see Offline Data: Software Updates
  • macOS: App Store
  • iOS: App Store
  • macOS: System Preferences > Security & Privacy > General > Allow Apps Downloaded From: [screenshot]
  • [1] Mac App Store
  • [2] Mac App Store and Identified Developers
  • [3] Anywhere -- note: option hidden by default in 10.12
  • bat tool[2] To open an "unidentified" app that you're sure about:
  • macOS: Applications > (ctrl-click app) > Open > Open
  • iOS: use the TestFlight app to accept expected invitations from known developers
  • Use browser Bookmarks / Favorites or a password manager to access web sites -- see later section: Browsing: Go To Correct Site
  • double agentEnable phishing/malware/plugin warnings
  • macOS: Safari > Preferences > Security > Fraudulent sites; Internet plug-ins [screenshot]
  • macOS: Firefox > Preferences > Security > Block reported attack sites / web forgeries / add-ons
  • macOS: Chrome > Settings > Advanced Settings > Privacy > Protect you and your device from dangerous sites
  • iOS: Settings > Safari > Privacy & Security > Fraudulent Website Warning [screenshot]
  • [2] Don't automatically open downloaded files (check file types)
  • macOS: Safari > Preferences > General > Open "safe" files after downloading [screenshot]

Anti-Virus (AV)

  • bleachInstall & maintain antivirus software on your device, if applicable & desired
  • Be careful where you obtain malware protection software -- some may be malware / adware itself -- especially if obtained via ad links, popups, pop-under windows
  • Having AV installed is no excuse to be careless, stupid
  • iOS: unnecessary
  • macOS: optional -- to avoid distributing infected files to others, e.g., Windows friends, or if still using external portable media from unknown sources: USB drives, CD/DVD, floppies, etc.
  • virus definitions may not include newest threats; scanning may slow down, interfere with system
  • examples: Avast; Avira; ClamXav; Comodo; Sophos
  • note: if you're running Windows on macOS (using Boot Camp, or virtualization software like VMware Fusion or Parallels Desktop), you should absolutely run Windows anti-malware software -- Mac anti-malware won't help
  • bacteriumIf you must use others' devices to access your accounts, make sure they're well-protected (antivirus) and maintained (software updates) -- see Mobile Privacy section, esp. to avoid keyloggers or other spyware
  • [Refs]: "San Francisco techies are hiring this Wiccan witch to protect their computers from viruses and offices from evil spirits"
  • [Refs:AV]: "AVG Proudly Announces It Will Sell Your Browsing History to Online Advertisers"; "Gadgets Bring New Opportunities for Hackers"
  • [Refs:Ransom]: "For PC Virus Victims, Pay or Else" (ransomware)

[2] Manage / Minimize Plugins, Extensions, Add-ons

  • macOS: Safari > Preferences > Security > Allow plugins [screenshot]; [screenshot: Plug-in Settings]
  • macOS: Firefox > Preferences > Applications
  • macOS: Firefox > Preferences > Security > Warn me when sites try to install add-ons
  • macOS: Chrome > Preferences > Advanced Settings > Privacy > Content Settings > Plugins; also Unsandboxed Plugins
  • shell phone pluginsConsider disabling problematic, obsolete, infrequently-used plugins
  • some sites, e.g., YouTube, default to HTML5 for video if Flash not present; Java less popular
  • iOS: unnecessary -- since Flash and Java are not allowed
  • configure to selectively load a plug-in if desired, or re-install if needed
  • remove obsolete plugins, e.g., Microsoft Silverlight
  • macOS: Finder > (disk/user) > Library > Internet Plugins
  • [Refs]: "How I ditched the security risks and lived without Java, Reader, and Flash";
    "Cybercriminals target Silverlight browser plug-in users with new exploit kit"

[2] Flash: Update, Block or Uninstall

  • flasheriOS: NA
  • macOS: I generally recommend uninstalling Flash from system; if necessary to use for some Flash-based sites, seletively use Google Chrome, which keeps Flash up-to-date automatically, provides "sandboxing", and also auto-pauses certain videos / ads
  • macOS: Chrome > chrome://plugins > Enable, Always Allow to Run maybe possible to run on-demand selectively via ctrl-click?
  • example (crossword): LA Times
  • If you do need to use Flash more frequently / conveniently, make sure it's always up to date and control using a flash blocker
  • macOS: System Preferences > Flash Player > Advanced > Updates
  • macOS: System Preferences > Flash Player > Storage > Delete All
  • macOS: Safari > Preferences > Extensions > Get Extensions : ClickToFlash
  • macOS: Safari (ctrl-click) > ClickToFlash Preferences
  • macOS should automatically disable insecure versions, and display message: "Blocked plug-in", "Flash Security Alert" or "Flash out-of-date"
  • [Refs:Flash]: "It's time to uninstall Adobe's Flash from your Mac - here's how"
  • [Refs:Flash]: "Firefox Now Blocks Flash By Default"
  • [Refs:Flash]: "Super (Flash) Cookies Lurk in Your Browser"

[2] Java: Update, Block or Uninstall

  • flasheriOS: NA
  • macOS: System Preferences > Java > Update [screenshot]
  • macOS: System Preferences > Java > Security > Security Level
  • macOS: Safari > Preferences > Security > Allow Plugins > Website Settings : Java : Ask [screenshot]
  • notice if installer wants to install anything else or change settings by default, e.g., Yahoo homepage, search engine -- uncheck anything you don't want!
  • examples (crosswords): Gaffney
  • [Refs:Java]: "Do you need to uninstall Java to be safe from its vulnerabilities?"

[3] Advanced

  • posterDon't "jail break" or "root" your device, i.e., don't install unofficial or pirated system/application software, or even visit "warez" or "dark" sites
  • JavaScript: on
  • JavaScript (not the same as 'Java') is essential for most modern sites; most browsers don't provide an option to disable
  • macOS: Safari > Preferences > Security > Enable JavaScript
  • You can generally remove tracking scripts by using a Content/Ad Blocker -- see Block Ads section
  • WebGL: on
  • WebGL (Web Graphics Library) JavaScript-based graphics using GPU
  • macOS: Safari > Preferences > Security > Allow WebGL
  • If administering your own website, check system log for suspicious activity, e.g., logins to non-existent or unauthorized accounts, unexpected accesses to admin pages or to non-existent modules / pages; add suspicious IP addresses to a blacklist

References

Android

Anti-Virus

Cyber Attacks, CyberWar

Flash, Adobe

iOS

Java

JavaScript (JS)

macOS

Microsoft Office

Plug-ins

Ransomware

Windows