1.Deploy a personal firewall, ideally one that can also manage outbound connection attempts. The updated Windows is a good option.
2.Keep up to date on all relevant software security patches. Windows users should configure Microsoft Automatic Updates to ease the burden of this task.
3.Run antivirus software that automatically scans your system (particularly incoming mail attachments) and keeps itself updated. We also recommend running antiadware/spyware and antiphishing utilities.
4.Configure Windows Internet Options in the Control Panel (also accessible through IE and Outlook/OE) wisely.
5.Run with least privilege. Never log on as Administrator (or equivalent highly privileged account) on a system that you use to browse the Internet or read e-mail.
6.Consider running client apps like Internet browsers in a sandbox environment (sandboxie) to isolate sensitive data/attack surfaces on the host system.
7.Administrators of large networks of Windows systems should deploy the preceding technologies at key network choke points (that is, network-based firewalls in addition to hostbased firewalls, antivirus on mail servers, and so on) to protect large numbers of users more efficiently.
8.Read e-mail in plaintext. Look at the link in email carefully. Do not click on email link without seeing the background URL.
9.Configure office productivity programs as securely as possible; for example, set the Microsoft Office programs to Very High macros security under the Tools | Macro | Security. Consider using MOICE (Microsoft Office Isolated Conversion Environment) when opening Word, Excel, or PowerPoint binary format files.
10.Keep your computing devices physically secure.
No comments:
Post a Comment