Change Your IP Address

Posts Tagged ‘Online Security’

Since its foundation, Australia has been seen as a fairly liberal country, with an easy-going attitude towards just about everything. However, this is all about to change under the current administration, who are trying to push forward the Clean Feed internet filter for Australian internet users.

Private internet filters have been around for the last decade or so, but Clean Feed, if passed by law, would be the first national filter in the world.

We will look at the details of Clean Feed and examine its pros and cons and the potential fall out.

The proposal is a blanket censorship of thousands of websites deemed inappropriate by the Clean Feed body. This would replace the current practise of allowing each household to set their own censorship levels appropriate to the ages of internet users in their house. The kinds of sites being discussed include obviously sensitive material like pornography and drugs, but webpages discussing euthanasia, “inappropriate” political parties and over 18 rated games have also been discussed as being “RC” (refused classification). The idea is still being kicked around the Australian government, but current behind-the-scenes opinion indicates that the legislation is unlikely to get to a vote before the next general election.

The pros of this system are fairly obvious at first viewing. It aims to cut down on the amount of illegal material that is being seen and downloaded in Australia. By restricting offensive websites, younger internet users can be protected from entering sites that they didn’t mean to enter, or shouldn’t be looking at. The blanket ban on these websites removes the responsibility from internet providers and families for installing their own filters. These filters are increasingly easy to get around, and at a basic level can be simply uninstalled by a determined competent computer user, whilst a filter imposed by the internet provider and backed up by the government will be much tougher.

The Australian Labor Party minister who is campaigning for Clean Feed, Stephen Conroy, says that the filter will be carefully monitored, and regular meetings will be set up to discuss the status of controversial pages.

The cons of the Clean Feed filter are also fairly obvious. Campaigners against the programme call it “a kick in the teeth for civil liberties” and the filter has been likened to the 1984 Big Brother society, where the state controls what each individual is able to access. The general consensus amongst anti-Clean Feed protesters is that it should remain the responsibility of each family and each person to monitor their own internet usage, using their own moral compass for guidance as to what they should and shouldn’t be accessing. By allowing a higher organisation to dictate these classified sites, the general public are submitting to the moral standards of a select few non-elected individuals. The argument runs that these people are in no better and no worse position to choose what the nation should be able to access than anyone else in the country.

Another problem is where the line is drawn. In today’s increasingly sensitive society, where political correctness can cause situations to spiral way out of context, it seems unfair for the elected party to decide what counts as racism, or other inappropriate context.

Lastly, and possibly most damagingly, studies are being conducted into whether such a filter would actually provide any sort of protection. Claims that it would help tackle the rise in paedophiles using the internet as a tool for grooming have been rubbished, saying that most illegal communication happens privately, through social network sites and emails. Taking control of these would amount to a gross breach of civil liberties, and would constitute a criminal act by the government.

The potential fall out of a decision in favour of Clean Feed could be quite dramatic. Recent opinion polls have agreed with the notion of internet filters and making the web a safer places, but when asked if the government should be in charge of their internet usage, a large proportion of the interviewees said no. By pushing this legislation through, Stephen Conroy has the potential to kick up a hornet’s nest of angry Australians, which may cause the whole operation to backfire spectacularly.

As ever should Clean Feed ever get the go ahead our old favourite Identity Cloaker will be useful to break through the barrier and deliver a completely unfiltered Internet experience.

With the birth of the internet has also come the birth of the internet scam. There are as many different internet scams as there are internet users, and many of them seem very convincing.

One of the most ubiquitous, and oldest, of internet scams is the Nigerian Get Rich Quick scam.

The Nigerian Get Rich Quick scam takes many forms, but is most often done under the guise of having a Nigerian relative or official who has passed away and has left inheritance. The scammer sends an e-mail (generally poorly worded and in broken English) that names the person who has just died and that he or she is the executor of the estate. The executor of the estate requests that you send an e-mail in reply acknowledging receipt of the e-mail. Once the e-mail is replied to, a second e-mail is sent out requesting personal information from the recipient of the inheritance.

Usually the e-mail requests such things as name, date of birth, address, contact phone number, etc. Up until this point, the scam seems fairly legitimate, except, perhaps, that the recipient is not aware that he or she has a Nigerian relative.

The e-mail following the second e-mail is generally the one that tips off even Internet newcomers that there is a scam. The e-mail requests that the beneficiary send money to Nigeria for the will to be completely processed. Often, the e-mail stipulates that the estate is frozen until money is repaid to debtors. Usually the executor requests that the money be sent via Western Union money transfer, though he may also accept a money order, usually, cheques are not accepted.

Once the supposed beneficiary sends out the money, they are promised they money in a cheque sent to the address provided. Sometimes, a fraudulent cheque is sent, and other times there is no cheque at all. If the ‘beneficiary’ tries to send a subsequent e-mail asking where their money is, more often than not, the e-mail address will have been inactivated, and they will realize that they have been scammed.

This summary is only an example of one form of the Nigerian Get Rich Quick scam. Sometimes, it takes the form of having won the Nigerian Lottery, another version of the scam occurs on dating websites. Sometimes, on dating websites, Nigerians will request money to relocate to the United States, or to maintain an internet connection. There is often a promise to pay you back with money from an inheritance, or lottery winnings etc.

With the advent of better spam filters that come with modern security packages, these scam e-mails will now often not ever reach your inbox. However, spam filters will not always filer every e-mail and there are some rules of thumb to avoid getting scammed.

First, unsolicited e-mails are always suspicious, especially ones written in very broken English.

Second, paying money to get money is almost always indicative of a scam.

Thirdly, always deal locally; avoid sending money, or dealing with people who are from overseas, or ever people from different states. Laws vary from country to country, state to state, and even city to city, the closer you stay to your home, the less likely you are to get scammed. And if you do get scammed, you have more recourse with local scams that foreign ones.

So, with a little forethought, you can avoid getting scammed, and make your money only fall into the right hands.

BTW if anybody wants to enjoy seeing the scammers being scammed then go take a look at 419Eater.

Today's economy is officially sending thousands, possibly even millions, of potential workers to the internet to find a work-at-home job. These job seekers include people recently laid off, people searching for a supplemental income, stay-at-home mothers and fathers who are wanting to contribute to the household.

It is a perfect breeding ground for scams, it would seem. You can't expect ScamBusters or the myriad of other scam registry sites to pick up and get everything, though. There is always a chance that this scam is new and not been recorded yet.

Among my favorite tell-tale signs, however, include those sites that promise you that you can make a thousand dollars in overnight. Actually, I search the internet and look through them just to compare and contrast in the creativity. I am especially fond of the folks who copy-paste the image of the e-check for $2,652.30 and grab stock images probably found on Google, and then copy-paste “reviews,” often starting with the priceless “I'm not usually one to leave a review, but Product X is the greatest thing to ever happen to me!”.

Now, there are several places that these are legitimate (aside from the apparently stock image of the e-check for $2,652.30) and are just trying to pull people in with atypical results, though odds are they are not as autopilot as they want you to believe. Now, I don't know how to break this to you all, but…THIS IS A SCAM IN ITSELF! We call it “false advertising.” To my knowledge, the only person who makes that kind of money is the creator of the system.

If this comes off cynical, this is because I am a member of several email newsletters that have been circulating from the leaders of the Google Money System circuit. Unfortunately, no names will be given, but I assure you that you've run into them once or twice. The best way I can think of to keep yourself from scams would be to avoid the any of the Money System, Google Cash, Money Tree etc, no matter how hilarious the emails they come with are.

I can guarantee you that a vast majority of them are scams and are not worth your money. You may be able to make the cover charge back in…oh, two years, maybe? If the package arrives at all?

Also, have you ever noticed that the pages that you are putting personal information into are not https? Think about that for a minute. That's right, you're not on a secure site. Anyone can find your information. To avoid scams, I would suggest joining a group such as Work At Home Moms. They always keep a sharp eye out for scams and will make sure that their group will not get associated with such a debacle. The customer service there is also top notch. If you have any questions, they will be sure to have them answered shortly. Job searchers, get your resumes ready to post!

You don't need someone to distract you with instant results and bright colors to get your income!

Honest work is the best policy!

When Microsoft debuted Windows Vista on January 30th, 2007 it was clear that they had made online security one of their top priorities with this operating system. In fact, Windows Vista was the most secure Microsoft operating system to date.

So how did the Microsoft team approach the security issue when they decided to create Windows 7? Well first, they decided to take into consideration suggestions from Vista users to see what they could possibly improve with their online security features. These suggestions allowed the programmers to make the system more user friendly when it came to the security features.

Microsoft developed Windows 7 according to the Security Development Lifecycle (SDL). The goals of SDL are to minimize the number of security related design and coding defects, and to reduce the harshness of the defects that remain. This alone doesn’t make the system unique from Vista, as Vista was also developed according to the SDL. But seeing how Vista’s online security features were Microsoft’s best yet, it was clear that Windows 7 needed to be molded from that version.

Along with implementing the SDL into this new system, Microsoft also included such Vista key security features as Data Execution Prevention (DEP), Address Space Layout Randomization (ASLR), Kernel Patch Protection, and Mandatory Integrity Levels.

So now you’re scratching your head asking yourself, “Then what makes this operating system special? Looks like it is just Windows Vista repackaged with a new look and name, but same security features.”

Though it’s true Windows 7 shares some of the same features as Vista on the security standpoint, it is also fair to say that some of those same features have been tweaked a little, improving their performance and reliability. Such as the Enhanced UAC you will find with Windows 7.

The UAC, or User Account Control, gives the administrators more power over what features and applications to grant access to when it comes to certain guest users and employees. UAC is what controls those pesky, annoying security prompts that you see pop up from time to time. Vista users gave this feature some heavy negative feedback, thus forcing Microsoft to re-think the way this feature works. They have worked out all the kinks and have reduced the number of applications and operating system tasks that trigger the prompts. Now if you access User Accounts in the Control Panel you can even adjust this feature to your liking and customize it to fit your own security needs.

Everyone knows you need more than just a password these days to protect yourself and your computer. Heck, nowadays most web sites require that you make your password at least so many letters long, include so many numbers, and on top of that you not only have to create a security question and password but also pick a picture from a series of graphics to be tied to your account. Windows 7 actually upped the ante when it comes to password protecting your computer. They have implemented better driver support and more reliable fingerprint reading across different hardware platforms. So now you don’t have to worry about some computer hacker logging into your computer to access all of your important files because if you have fingerprint access enabled on your computer, no one but you can get into your computer.

Windows 7 preserves Vista's data-protection technologies, such as EFS (Encrypting File System) and support for AD RMS (Active Directory Rights Management Services). Microsoft tinkered with those technologies to make them perform a little better, and they notably improved on Vista's BitLocker drive encryption technology, and it adds BitLocker to Go for encrypting data on separable media. You see, Windows vista was capable of protecting the volumes and drives that were part of the computer, but it could not do the same for removable drives. That’s part of the reason Windows 7 differs from Vista in that it is capable of protecting all of the files on your removable drives with BitLocker to Go. It’s a nice feature that will surely add more needed protection to your important files which you may keep on things such as Floppies, Jump Drives, or disc.

Also, with BitLocker to Go, administrators can block anyone from adding information to their removable files or even from removing information if those files are accessed. BitLocker requires Trusted Platform Module (TPM) chip to store BitLocker encryption keys and smooth the progress of the encryption and decryption of the BitLocker-protected data. Many desktops and laptops do not come with a TPM chip, but that doesn’t mean it’s the end of the world for you and your internet safety. Microsoft has included the option to use BitLocker Drive Encryption without a compatible TPM, though it’s not a cake walk in order to access it. Though the lack of a TPM chip can create a small road block, it can be overcome.

So in closing I must say that I am very impressed with the online security features within Windows 7. Like I discussed above, the final product does mimic Vista in the features implemented within the operating system, but most of those features have been slightly modified in order to offer the Windows user a safer and easier way of obtaining protection when surfing the net.

Too many people take it for granted that what they do online is private and protected, but the truth is that most people have data that is vulnerable, all too ready for sophisticated people to capture.

Even people who work on private networks are at risk, but for those using public networks the risk is even greater. Keeping data secure is crucial for anyone who wants to avoid the damaging loss of personal or critical business information.

The simple act of hitting “Reply” on an email is task fraught with risk.

There are many safe guards that can be put in place, but one of the most secure ways to protect your online privacy is by using encrypted connections when working through a private proxy server.

Encryption, in terms of moving information, is the process by which data is put through a complex algorithm which makes it unreadable to anyone who does not have the key to decrypt it. Encryption can be used to protect data on computers and storage devices and is the first round of defense for those wanting to keep their personal data private when working online.

Another weapon in the arsenal of those wanting to protect their online privacy is the use of a private proxy server. A proxy server is a computer or application that serves as go-between for information requests between servers. Requests can be for information such as a web page, a file download, or other services and these are made through a proxy server rather than connecting directly to the server that houses the actual data.

The proxy server has two primary purposes, one is to maintain anonymity of the computer behind it for security reasons and the other reason is to speed access to a data resource.

There are numerous types of proxy servers including a caching proxy, a reverse proxy, a tunneling proxy, and a content filer proxy server. All of these different type servers provide different functions and features.

Many public proxy servers will accept unencrypted information and this can create a security risk because the data could be collected and thus make it vulnerable. It is important that those who use proxy servers know the integrity of the proxy servers they connect to, which is why the use of a private proxies with a good reputation is advised.

In some cases, malicious proxy servers have been intentionally set-up to record all unencrypted data and this data can later be harvested and used by those that have captured it. The key to protecting your personal data is encryption and this applies whether you are on a private or public network and specifically when accessing data through a proxy server. Using an encrypted connection can provide a great line of defense against internet hackers who employ packet sniffers and other sophisticated means of capturing private data.

Who you are has become a precious commodity to identity thieves. For this reason, many people now shred credit card statements, order items by cheque again, and pay with cash instead of debit card.

However, they often forget that the same hackers who stole personal information from corporate and government databases do not have to go so far to gather all the information of your personal identity online.

Why is it important to protect your identity online?

1. If someone has your account information, researching your personal information can result in finding the answers to your personal questions. Finding your birth certificate can result in knowing the mother’s maiden name, or it could be as simple as asking that information of you at a genealogy chat room. Reading about your favorite sports teams could lead them to your most likely password. Reading your blog could lead them to know where you consider home to be, another common security question. Thus a little online sleuthing can yield the answers to the security questions that were meant to protect your accounts, and it is information we have often already made available if you do not take steps to protect your identity online.
    
2. Your online identity can provide the information necessary to perform identity theft in the real, financial world. Without your current account information but armed with your real information, they may learn enough from your online identity enough to pretend to be you in the real world. Your name, address, and phone number are easily looked up. A social networking site can provide your employer and perhaps even income verification. Information on where you shop, your opinions of credit cards, your online portfolio analysis – all of this information attached to your online identity can give a would-be thief enough information to fill out the necessary forms to get a solid Gold credit card with your name on it.
    
3. If you do not protect your identity online, it is easy for someone to gather all of your personal information and then pretend to be you. A former business partner who wants to discredit you through professional forums, an ex-girlfriend or boyfriend who wants to destroy your life online, all of the information to do can be gleaned unless you have already protected your personal identity online.
    
4. Spear phishing is targeted phishing with the goal of either hacking someone’s computer or eliciting information out of them. This may be done by foreign corporations wanting technical information from a rival firm. It may be done by foreign nationals targeting those with security clearance in the United States. If you have not protected your identity online, you have given these predators the ability to approach you wrapped in a protective cloak. Potentially worse is that you have an insecure online identity, and the phishing attacks of these entities can be done from your online identity, leading law enforcement and searchers to your doorstep
   .
5. Many companies now do social networking searches of potential employees. If your online identity is either less than perfect or easily made falsely slanderous, you will lose out on employment and consulting opportunities.

Thankfully there are ways to protect your identity online, and the use of anonymous browsing software is the first step we all should take.

Web Security is all about educating yourself about online hazards. Education is the answer to computer security and protecting youngsters on the web. All parents need to educate themselves about Internet security, cyberbullying, and social networking dangers. These all represent threats which did not exist just a few years ago, certainly your old Dr Spock books are going to be no use here!

Social networking is growing at an amazing rate, with children of all ages and online predators and cyberbullies using these sites more and more. Parents should understand the guidelines for protecting children each site has, and if you do not believe the rules are strong enough don’t let your child join the site. There are some basic ground rules for social networking sites including MySpace, Facebook, etc for kid safety.

• First, don’t let your child to use their real name, make a new nickname just for the online world.
• Second , make sure your child understands not to post your home address, home telephone number, or cell phone number.
• Third, make a time-frame for when you child can be online .
• Fourth, all photographs should be reviewed before being posted online .

You should understand that everything your child does on the internet is recorded there forever, once something is uploaded there is generally no delete button. As soon as a site is indexed by a search engine copies are made, so even if you delete the original you will still find thousands of copies all around the net.

Parents should know the way to work the social networking sites which includes making comments on pages, the wall, email, and posting photographs. If possible you should create an account on the social networking site to join in with your children. You can insist to your child that they will not have an account unless they make you a friend so that you can observe their wall, evaluate their friend list and assess the photos getting posted on the web. This simple act will help you forestall online predators from contacting your youngster. I understand most chiildren are not going to like this, but being upfront about everything is far better than being sneaky and being found out.

Cyberbullies bring into play a selection of technology to make threats, trouble, or make the Internet uncomfortable for children. Victims are often kids and the cyberbully generally goes to the same school as your child . Cyberbullies send e-mails, IM or messages to the victim’s cell or computer. This is starting to become even more popular on social networking sites. Parents need to chat to their kids to see if this is happening to them.

Web safety for children is all about parents being educated about web security. Parents need to take a pro-active role in educating themselves about how social networking site work and what is cyberbullying. The more you educate yourself about the internet and talk to your kids the safer they are going to be.