Fake antivirus scams – what you need to know

I’ve seen a lot of these lately, affecting both clients and family members. Fake antivirus programs pop up and issue dire warnings, then trick you into clicking on them to repair your “infected” computer. That, of course, is when the real damage occurs.

I could ramble on regarding the details, but instead I’ll just refer you to this excellent article by Herb Weisbaum on msnbc.com.

How to avoid the nasty fake antivirus scam

“Adobe PDF Reader Software” phishing scam

I received an interesting e-mail message today.

ADOBE PDF READER SOFTWARE UPGRADE NOTIFICATION

This is to remind that a new version of Adobe Acrobat Reader with enhanced features for viewing, creating, editing, printing and internet-sharing PDF documents has been released.

To upgrade your application:

+ Go to : [link removed]
+ Download and upgrade your application.

Copyright 2010 Adobe Systems Incorporated. All rights reserved.

Adobe Systems Incorporated
Attn: Change of Address/Privacy
343 Preston Street
Ottawa, ON K1S 1N4
Canada.

I got suspicious because Adobe does not refer to its software as “Adobe PDF Reader” – it’s called “Adobe Reader.” Sure enough, a little checking on the web, and snopes.com confirms it’s a phishing e-mail that’s been in circulation since late last year.

Time to remind everyone to never click on links in e-mail messages unless you are absolutely sure that the sender is legitimate, and even then you should think twice.

Remember, be alert! America needs more lerts!*

* No extra charge for dumb joke.

Avoiding a rude awakening

Clients sometimes wonder why I’m so concerned with configuring wireless security when setting up a new home router or reconfiguring an existing one.

You might think it’s no big deal if someone else connects to your unsecured network. After all, we’ve all taken advantage of someone’s open wireless in a pinch, at some point.

I know a teenage girl who hooked up an Xbox console herself. I had previously configured the wireless router in her house, and she didn’t give it a second thought when her Xbox connected wirelessly without asking for a passphrase. It wasn’t until months later that the wireless stopped working and we realized that her neighbor had finally secured his home router, which she’d been using the whole time without even knowing it.

There are two primary reasons to make sure your home wireless is password-protected using a solid security protocol. The first is that unauthorized users will suck up your bandwidth. If you’re paying for broadband, you don’t want to be the world’s dumbest ISP, supplying your whole neighborhood with free Internet.

The other example I give is that if some unknown person is connecting to your router and doing something illegal on the Internet, the authorities will trace it to you.

Think that’s a far-fetched scenario? Well, it just recently happened to a man in Buffalo. NY. A neighbor was using the man’s unprotected router to download child pornography, and the result was an FBI raid on the unwitting man’s home. And if the authorities assume you’ve been trafficking in child porn, don’t expect them to treat you courteously.

So, if you’ve installed a wireless router yourself, it’s a good idea to review your security settings. Make sure you are using a solid security protocol (WPA or WPA2). WEP is no longer considered secure – the keys can be cracked by anyone with a little technical know-how.

Your shared key or passphrase should be of a reasonable length (10 or more characters) and contain a mix of letters and numbers. Keep it private. If you have guests who need to connect to your router, offer to type in the shared key for them. It’s easier than changing the key after they leave.

There’s no need to be obsessively paranoid about this, but it’s an important enough issue that you should give it the appropriate level of attention. After all, you don’t want federal agents kicking in your door some morning. The neighbors will talk about it forever.