I've written recently (on my blog) about the need for disaster recovery programs
for small business computers, it's a topic near and dear to my heart. A recent story highlights the importance of network security as well. In recent days I've battled a little annoyance of a Trojan Virus that made ads pop up in my browser. It took more than a week and several programs to finally find the little bugger but I found it. (I'll write on that at another time.)
The process made me wonder how I got the virus in the first place, and worse, what else is crawling around my network?
When I opened my new office, I opted for cable broadband and I was advised by a friend to install a software firewall on top of Windows firewall while I waited for my new router/hardware firewall. I installed it and was amazed when I looked at the logs and saw all those attempt to access my computer.
Without going techno on you, I'll try to explain simply. Small business broadband (DSL or Cable are the most common) creates a path onto the internet. Like any other network cable, when you plug in that DSL or cable modem, you are plugging into millions of other computers. Most of the time you only see those computers (websites) that you want to see, but behind the scenes people are scouring the internet looking for your 'address'
. It's referred to as an "IP" address, a set of four numbers that is all yours. There are people out there who run through those numbers looking for computers that are not protected and once found, depending on their intent, they seek other vulnerabilities. Looking at your files, passwords or worse, installing little programs that collect your keystrokes,
monitor your browsing habits, or listen to your conversations.
Yeah, it's a scary place out here on the internet. For most small business people it's a place that we go to communicate, research, network and resource all the while people are trying to get in our back doors,
front doors, IP's, ports or sockets. We lock the door on our office when we leave, put our money in the bank, protect ourselves in many ways, but are we protecting ourselves from being hacked, cracked and violated on our PC?
If your business uses common software for accounting like QuickBooks or Microsoft Money, then those people looking around know exactly where the default file locations
of your most sensitive data are. Don't you think it's a good idea to take an extra step or two to protect that data?
Back to the story, the State Department detected an intrusion in their network and shut it down. Sure, they have plenty of money and staff to make such discoveries but then they also have information that it much more sensitive than the password to your yahoo email. The point is, they had a system that monitored the network and shut it down when something strange was going on.
Agency Recovers From Computer Break-Ins
Jul 11, 11:22 PM (ET)
By TED BRIDIS
WASHINGTON (AP) - The State Department is recovering from large-scale computer break-ins worldwide over the past several weeks that appeared to target its headquarters and offices dealing with China and North Korea, The Associated Press has learned.
Investigators believe hackers stole sensitive U.S. information and passwords and implanted backdoors in unclassified government computers to allow them to return at will, said U.S. officials familiar with the hacking. These people spoke on condition of anonymity because of the sensitivity of the widespread intrusions and the resulting investigation.
"This case is a textbook example of our ability to detect and defeat threats before they can do any damage," Beck said.
The break-ins and the State Department's emergency response severely limited Internet access at many locations, including some headquarters offices in Washington, these officials said. Internet connections have been restored across nearly all the department since the break-ins were recognized in mid-June.
So what's a small business person to do? With everything else you have to worry about, spending your day watching your incoming and outgoing bits and bytes is not an option. If you are somewhat computer savvy, then perhaps you can install some basics.
- Hardware is best but Software will do. Just Google Firewall for plenty of options. I'll post what I use in the coming days.
- It's common knowledge that you should have this, but more people than I care to admit don't have updated versions or worse, updated definition files. (These are the algorithms to search and destroy used by the software... they change daily.)
It's important to continually update your software and check for updates. I check every morning.
- This is software protects you from a number of hazards the least of which isn't protecting your personal information. There are a number of theories as to what is and what is not spyware, but to me, anything that is tracking me is spyware. Some can be very dangerous.
If, you don't know what I'm talking about then you should seek the advice and counsel of a qualified business computer consultant. (Not me.)
Someone you can hire to audit your system and make recommendations. You likely hire lawyers, accountants or doctors when you need them, well if your small business depends on your computer and the protection of the data, then you need some advise. Write me and I'll send you who I recommend.
Until then, make sure your Windows (or other) main software is up to date
. Look for "check for updates." If you are using the latest version of Windows (XP) then there is plenty of assistance available in the software including a firewall and "Windows Defender." Back everything up twice.
I say this because CD's go bad and also, if you back up your data and your office burns down... then you have no data still huh? Oh, that reminds me, keep it in a safe place.
Now this is where people accuse me of being a little over protective. I've been ridiculed, laughed at and made fun of because some of this but you know what, I don't care. I do these things for my own peace.
1) Password protect your computer!!!
Set the screen saver to password too. It's important. If someone steals your computer and it's not password protected then, well you're exposed. Even if it was neighborhood hoodlums who steal it, if the information, private email, pictures, website, phone books were shared with people in the community or even posted online, it could cause some headaches.
- Important: Set your user account (on your computer) to no sharing. This is important because if you password protect your login but not your "my documents" folder, chances are you are wide open to intrusion. If someone were to steal your PC, they could simply set up a new login and access your data that way.
2) Password protect your sensitive files/folders.
More pointedly, your QuickBooks or other accounting software files and backups. These are what intruders, whether virtual or real time will be looking for. Passwords are a great deterrent.
- FYI; I do NOT password protect every single file on my computer. I do password my QuickBooks company account as well as some spreadsheets. When I upgrade my computer in the next few weeks, I will be creating a folder that will be protected by password and encryption. Simply put, protect that information that you don't want shared with your competitors or information that would hurt your customers if it were lost (credit card and other private info.)
3) Turn off your computer at night.
Now this carries with it some baggage. If you turn your computer off, then it can't run some scheduled tasks at night while you're at home and I admit it's convenient for MS to take care of the trash while I'm not using the computer. But, left on at night, your computer is subject to a number of things including getting locked up in an endless loop, overheating your hard drive or, yes, intrusion by people inside your network as well as outside if you don't do number four. I have scheduled maintenance software to run on one day a week and leave my computer on that night.
4) Turn off your broadband modem at night!
Some routers allow you to set them to close the connection at night but nothing makes me feel better than seeing that little light turned off. I've even gone so far as unplugging the cable at night most nights. If you're a small (micro) business and yours is the only computer on the "network" then this will provide that extra assurance that nothing's going on in the background and no one is snooping around.
ALSO, depending on your network, it may refresh your IP address to a different one each time you restart the modem. I think this is an added plus for tracking as well as targeted attacks.
I cannot stress the importance of network security
enough. If not for yourself, at least do it for your customers
who may not want their personal information, purchase history, credit card numbers or email addresses being used by less honorable people than yourself. It is one thing to neglect your own privacy, it's much worse than negligent when you do it for someone else.
Like this article? Digg it at Digg.com