Internet Security Tips
The Service Center has had several situations where users have ended up with viruses, worms, or worse. This tip is designed to help users avoid opening up their workstations to any possible attack from cyberspace.
Remember, if you have ideas for the Computing Tip of the Week, please send them to Pat Fellows.
Pop-ups
According to Wikipedia, "Pop-up ads or popups are a form of online advertising on the World Wide Web intended to attract web traffic or capture email addresses. It works when certain web sites open a new web browser window to display advertisements . The pop-up window containing an advertisement is usually generated by JavaScript , but can be generated by other means as well.
A variation on the pop-up window is the pop-under advertisement, which opens a new browser window hidden under the active window. Pop-unders do not interrupt the user immediately and are not seen until the covering window is closed, making it more difficult to determine which web site opened them."
Some pop-ups are legitimate, however some can be very dangerous. We are advising users not to respond to any pop-up ad offers.
Here is a screen shot of a potentially dangerous pop-up: It is asking for your name and an email address. This particular pop-up says it will not spam you, but unless it is a known and trusted site, do not fill out the forms and submit the information.
Here is an example of an ad that is embedded in a web site, it is not a pop-up.
This is a java based application with animation, very inviting, but it could potentially create issues for the user by downloading executable files or grabbing information from the user's browser history, cookies, passwords that are saved, etc. Be careful and trust no one.
Many of these individuals are referred to as "keyloggers." They can come in and monitor users keystrokes and get passwords, bank account numbers, logins, passwords, information related to online bill paying, and more, thus potentially opening up a user to identity theft.
Email Risks
There have also been some problems with users who have clicked on links in emails they receive or provide personal information when requested. These are referred to as Phishing scams. Often it will appear as an email from a bank that requests personal information. Other times it is an email asking the user to unsubscribe to some list serve they are not even on. If you don't know the sender, delete the email. The other issue mentioned, the links in emails, have recently posed as emails from eGreeting Card sites. By clicking on the link, the users opens up their computer to problems.
The bottom line is DO NOT DO ANYTHING UNLESS YOU ARE SURE YOU KNOW THE SENDER.
Junk E-Mail and Spam Folders
Look at the sender's email address, and if you don't know it, delete it. Not everything is caught in the Spam or Junk folder, or by the filter on the UW Colleges server, so be careful. Also, be sure to look at your Junk E-mail folder to make sure that everything in there is Junk. sometimes users receive an email that isn't junk that gets routed to that folder. It doesn't happen often, but it is a good practice to check that folder periodically. The image below shows where in the Mail Folders users will find their Junk E-mail and Spam folders.
In 2006 two of our IT staff did a WisLine Web training on Home Network Security. It is an excellent in-depth explanation of the items covered here, along with software users should consider using on home workstations. Just click on the link and it will play in Windows Media Player.
Remember your UWC/UWEX email account should not be used to sign up for things as it subjects our systems to potential invaders.
As always, suggestions are welcomed and Computing Tips are appreciated. Send them to Pat Fellows.