Get our Latest Finds
Subscribe to our RSS feed or enter your email address below to get the feed delivered to you by email:
Follow Gizmo
Using this Site
Top Rated
Gizmo's Freeware is Recruiting
We are currently looking for people with skills and/or interest in the following areas:
- Anonymous Surfing Service
- Mobile Apps contributors
- Mac Section contributors
If this sounds like you then click here for more details
How to Stay Safe While Online
With the amount of malware currently prowling the internet it's becoming increasingly important to adequately protect your computer. This is important for everyone, not just the overly security conscious. Therefore I've compiled critical advice for both novice users and more advanced users. Trust me, there's something for everyone.
Index
1. Ensure Your Computer Is Not Infected
2. Prevent Future Infections Using Internet Security Software
3. Avoid Dangerous Sites And Spam
4. Protection Through Your Browser
8. Protect Your Online Privacy
1. Ensure Your Computer Is Not Infected
The first thing you should do when securing your system is to ensure that your computer is not already infected with malware. The following process is very effective and won’t take very much time to check. It is described in detail in How to Know If Your Computer Is Infected. Please read through that article and make sure that your computer is not infected.
2. Prevent Future Infections Using Internet Security Software
Once you're sure that your computer isn't already infected, installing an active antivirus program is one of the most important steps in keeping it that way. Please read this review of the Best Free Antivirus Software. All of the programs reviewed in that article scan for all types of malware. However, the problem with relying only on an antivirus to protect you is that no program can catch all malware. It doesn't matter what detection rate it acheived in various tests. In the real world it will perform much worse. No detection based program can provide, what I would consider to be, adequate protection.
To compensate for that weakness I would advise that you also use a firewall with a built in HIPS component. Specifically, I would recommend Comodo Firewall. If you like, you can even install Comodo Internet Security as it comes with an antivirus, firewall, HIPS, and an automatic sandbox. Both programs are completely free. If you do choose to install Comodo Internet Security, or Comodo Firewall, then you should check out my guide on How to Install Comodo Firewall. However, do realize that all HIPS programs require a little patience in setting up, and initially answering the warnings, but after that they're relatively easy to maintain. I would advise that you try one and see if you can deal with the alerts. If they're really too difficult for you then install a simple firewall that lacks a HIPS, but be aware that the protection offered is much less.
If you do decide not to use a proactive firewall, then a good alternative is to install a behavioral blocker, such as ThreatFire. These attempt to detect malware by its behavior, and should have significantly fewer popup alerts that a HIPS. This is a potent second layer of active defense. However, remember that just as with an antivirus, no program can detect all malware.
3. Avoid Dangerous Sites And Spam
These days it can be difficult to tell whether the site you're on is legitimate or trying to scam you. If you're not confident that a site is safe then you should investigate it using the methods I discuss in How to Tell If A Website Is Dangerous. Also, spam is currently a very large problem for many internet users. Because of this specific danger I wrote an article about How to Avoid Spam. Please read this article and make sure you follow the advice. This will not only help you to avoid spam, but also to surf more safely in general. Also, if you're already receiving spam, then you should read my article about How to Report Spam. It will explain the most effective methods to follow in order to get the spammers shut down for good.
4. Protection Through Your Browser
Almost all popular web browsers now provide significant protection from online dangers. My advice here is limited to Comodo Dragon and Firefox. I do realize that there are many other browsers out there, but I have had to narrow it to these two. Both browsers have built in popup blocking and will also produce warning screens to help you to avoid known dangerous sites. You may also want to read this article about the Best Free Internet Security Safety Check as it reviews some other programs and also contains advice for browsers other than Comodo Dragon and Firefox.
Comodo Dragon
Like all Chromium browsers, Comodo Dragon has built-in secure sandboxing. This makes it especially difficult for outsiders to exploit. One of the most convincing reasons to try Comodo Dragon over Google Chrome is that Comodo Dragon will warn you if the site you are visiting has a SSL certificate that may not be trustworthy. Also, it comes with the option to protect yourself using Comodo Secure DNS, which will block you from connecting with most malicious sites. On a side note, if you are using Google Chrome I strongly suggest that you find another browser. It has serious privacy issues.
Extensions to Use (note that these also work with other Chromium browsers)
Easy To Use For Beginner Users
- Web of Trust (WOT): With this installed, if you happen upon a potentially dangerous site, WOT covers the screen with a warning and waits for you to decide whether to stay or leave. If you combine this with your own good sense then you will be protected from many online dangers. Also, if you choose, you can ignore the WOT warning and go to the site anyway. You can even rate the site if you disagree with the current rating.
- LastPass: This is a secure password manager, with automatic password and form filling. It not only helps protect your passwords, and sensitive data, but also allows you to confidently create strong passwords and change them often.
-
Adblock Plus for Google Chrome (Beta): This allows you to subscribe to many different filter lists, which help block unwanted or malicious content. This can include malware domains or unwanted privacy threats. You can subscribe to any of the lists on that page, but be aware that subscribing to too many will slow down your browsing experience. I'd advise subscribing to either Fanboy's List or both EasyList and Malware Domains. The privacy aspects of this program are covered in more depth in part 7.
Recommended For More Advanced Users
- ScriptNo: This addon will block nearly all scripts, and other possibly dangerous content, from executing. This means that even if you stumble onto a dangerous site you cannot be attacked unless you manually add the scripts on that site to your whitelist. Thus you are protected from harmful scripts and many privacy threats. However, many sites use these scripts, and plugins, for legitimate purposes. Thus these sites will not work correctly unless you manually add the scripts on that site to your whitelist. Also, under the options you should select ‘Antisocial Mode’. Using ScriptNo takes some getting used to, but if you are serious about staying safe online then this addon is a must have. The privacy aspects of this program are covered in more depth in part 7.
Firefox
Firefox is a very powerful open source browser. It is quite secure and very popular. The people at Mozilla are constantly searching for vulnerabilities so that they can be patched quickly. They are very quick at releasing these fixes.
Addons To Use
Easy To Use For Beginner Users
- Web of Trust (WOT): With this installed if you happen upon a potentially dangerous site, WOT covers the screen with a warning and waits for you to decide whether to stay or leave. If you combine this with your own good sense then you will be protected from many online dangers. Also, if you choose, you can ignore the WOT warning and go to the site anyway. You can even rate the site if you disagree with the current rating.
- LastPass: This is a secure password manager, with automatic password and form filling. It not only helps protect your passwords, and sensitive data, but also allows you to confidently create strong passwords and change them often.
- Adblock Plus: This allows you to subscribe to many different filter lists, which help block unwanted or malicious content. This can include malware domains or unwanted privacy threats. You can subscribe to any of the lists on that page, but be aware that subscribing to too many will slow down your browsing experience. I'd advise subscribing to either Fanboy's List or both EasyList and Malware Domains. The privacy aspects of this program are covered in more depth in part 7.
Recommended For More Advanced Users
- NoScript: This addon will block nearly all scripts, and other possibly dangerous content, from executing. This means that even if you stumble onto a dangerous site you cannot be attacked unless you manually add the scripts on that site to your whitelist. Thus you are protected from harmful scripts and many privacy threats. However, many sites use these scripts, and plugins, for legitimate purposes. Thus these sites will not work correctly unless you manually add the scripts on that site to your whitelist. Using NoScript takes some getting used to, but if you are serious about staying safe online this addon is a must have. The privacy aspects of this program are covered in more depth in part 7.
5. Use A Secure DNS Server
Easy To Use For Beginner Users
There are many good free DNS providers currently available. They are relatively easy to setup and require no software. These services use servers that are more secure than your regular ISP, and they even filter out any known malicious content before it ever reaches your computer. If you want to understand the technical details about how they work you can read about them at IP Addresses Explained or DNS Primer.
Below I have listed two of the best services currently available. Please choose the one that best fits your needs. Neither of them will slow down your connection. In fact, you may even notice an increase in speed. Each of these will block known dangerous sites, but at the moment it appears that Norton DNS is more effective. However, both are a very good addition to your protection arsenal. Here are the instructions for how to set up Comodo Secure DNS and Norton DNS.
6. Limit Program Rights
Recommended For More Advanced Users
A) Use a Least-Privileged User Account (LUA)
If you're not running a strong HIPS program then I highly suggest that you use a limited/standard user account (LUA) instead of the default administrator account. Running your computer in a LUA should be able to protect you from the majority of malware. For Windows 7 this is what User Account Control (UAC) is. However, when using a LUA you will have to answer alerts for many of your programs in order to get them to work. If you want to use UAC, but don't like the alerts, you can use TweakUAC. This has an option to run UAC in "quiet mode". In this mode UAC will not display the elevation alerts. For information about whether this makes your system less secure you should read this article.
If you're running Windows XP then I would suggest you download DropMyRights. This will allow you to selectively reduce rights for particular applications. However you will have to manually create, or modify, shortcuts. Also, XP users who are running their computers in a LUA may want to use SuRun to run some applications with more privileges.
Recommended For More Advanced Users
B) Use System Virtualization
You can improve your online protection further by isolating, or sandboxing, certain applications. This means that any program run in it, or downloaded while inside it, will be interacting with a virtual system and thus cannot cause any damage to your actual computer. I would highly recommend using Sandboxie as it is highly effective and easy to use. For similar programs please read this article about the Best Free Protection Utility. Also, a general approach to using the methods discussed in this section is given in this article about How to Surf More Securely.
7. Back Up Important Data
8. Protect Your Online Privacy
If you are concerned about your online privacy, as many are these days, then please read my article about How to Protect Your Online Privacy. This covers many ways in which you can increase your privacy. Many of these methods are easy to use, but some do take a little bit of effort. Please read through them and use whichever methods you think best address your concerns.
If you believe this article deserves anything less than 5 stars then please leave a comment below explaining how you think it can be improved, or where you find fault. In fact I would appreciate any feedback, positive or negative, so that I can improve the article. Your opinions and advice will be much appreciated.
If you found this article useful then perhaps you'd like to check out some of my others.
How to Protect Your Online Privacy
How to Know If Your Computer Is Infected
How to Clean An Infected Computer
How to Tell If A Website Is Dangerous
How to Tell if a File is Malicious
How to Install Comodo Firewall
This software category is maintained by volunteer editor Chiron. Registered members can contact the editor with any comments or suggestions they might have by clicking here.
- Article type:
Printer-friendly version
Comments
Please...
add DNScrypt from openDNS to this article
Thanks
As far as I can tell it encrypts the data between OpenDNS and your computer. However, it appears that it doesn't actually block any malicious domains, which is one of the most important functions of the DNS providers I recommend.
Thus I don't think I'll add it to this article as it doesn't block malicious domains. Please let me know if I'm wrong and it actually does.
Thanks.
thanks for the great tips! they helped immensely.
Thank you.
Please let me know if you have any questions.
Please include OpenDNS. It's one of the best out there imo.
As is reported in various places on this site, OpenDNS does not protect against malicious sites. Only phishing protection is included with the free service. If you want protection against malware or malicious domains, then you have to purchase their paid service.
Thank you, I then have to reconsider my options.
Hi Chiron,
Can you please tell me in detail(amap)how to use TOR With CD?
Thanks.
I haven't used Tor with CD, but I believe the setup should be almost identical to that for Google Chrome. Thus I would advise that you search for a guide that fits your operating system and your needs. This should also work for CD.
Please let me know how it works, and if you find a good guide I'd be interested to see it.
Thanks.
Hi Chiron,
I have a doubt about sandboxie.
If I use sandboxie will the websites be unable to track my computer when I am running a sandboxied web browser.I mean some websites track my machine for diff purposes and some of them track my MAC address too.So as i'm running this virtual sandboxie will they still be able to do all those things.I am not familiar with virtual machines. So please reply back.
Thank you.
As far as I know the only privacy gain that Sandboxie gives you is that you can easily, and permanently, destroy all cookies, cache, etc... that were created while you used it inside Sandboxie. It definitely won't be able to stop websites from tracking your MAC address or anything like that.
Please see my other article about How to Protect Your Online Privacy:
http://www.techsupportalert.com/content/how-protect-your-online-privacy.htm
O.k
I dont want to be criticizer but today i got a "Dns cache poisoining attack" and do you know what was the source of the attack.
The source of the attack was ip-8.26.56.26 and 8.20.247.20
Can anybody explain whats going on with comodo dns servers.....
Thank you
Hello, can you please let me know what you saw that made you think there was a DNS cache poisoning attack? The more information I have the faster I can figure out what's going on.
Thanks.
My antivirus just started popping out messages saying "Dns cache poisoining attack detected" and at that time i was using comodo dns secure servers ips.
When i checked for the source ip of the attack i found the comodo dns server ips i.e which i have mentioned earlier.
Which antivirus was this?
hi,
According to my puny knowledge i think
Its better to install ghostery,adblockplus and Disconnect
I have found that when i visit this site http://www.techishare.com/tech/comodo-dragon-vs-google-chrome-updated/
Ghostery showed-7 of 7 blocked
Disconnect showed- 4 of 4 blocked
Adblock showed-0 out of 91 blocked
if i am misunderstanding something please clarify.
Thank you.
Which lists were you using for Adblock Plus?
Also, see how many Adblock Plus will block if you disable Ghostery. It's possible that it's not blocking any because they are already being blocked by the other two.
Thanks for this article. It was a fantastic read. I use most of the above programs (e.g. Firefox, Sandboxie, AdBlock Plus with NortonDNS). However - I never knew how serious the Google Chrome issues where. I rarely use Google Chrome, but I keep it as a back-up browser. In example, I download files from the internet with Chrome because I have strict Firefox settings that reduce my download speed. I think I might just delete Chrome and use Comodo now as my back-up browser :-) thanks again. I would love to see more articles from you. You seem very knowledgeable.
Thank you very much.
Yes, as much as I do love Google's services (they work very well), they seem to have tracking built into every one. That includes their search engine, browser, Gmail, etc...
Thanks, Chiron. As per your advice, I am now connecting via Norton DNS and Hotspot Shield. So far working well, and no speed issues.
You're very welcome.
Please let me know if you have any questions.
Great article Chiron. This guide should help both beginners and advanced users on how to protect their PC's when surfing online. You could add some info on Antispywares also. Also note that add-on's could also slow down the performance of the browser. Use them wisely. Add-Ons that slows down your browser
Thank you.
Most of the antivirus scanners mentioned will also scan and remove most spyware. Thus I don't think it's necessary for me to advise them to use an antispyware program as well, at least for protection. Also, if you're using a HIPS, which I strongly suggest using, having an antispyware program is definitely overkill.
Also, with these addons, which I have personally tried, I have noticed little to no slowdown on my machine. Thus I don't think that the effect should be too drastic. If it is on your machine then disable some and keep others. See what works best for you and let me know how it goes. :)
Especially useful against drive-by-downloads as Anupam mentioned. http://www.techsupportalert.com/freeware-forum/editors-forum/8468-wot-ha... Antispywares would be first line of defense here if you dont have Sandbox program or updated virus definitions.. Still it's overkill to run in real time. Not necessary.
Browser slowdons are natural( it's visiblle if you have slow connections/low end pc but it's better to forget about add-on performance in neither case) when using add-ons which is why Mozilla sued add-ons and published them in the hall of shame category for the culprits. http://www.techsupportalert.com/best-free-web-browser.htm
Just adding my two cents worth, Just like to say, really appreciate the service you provide in relaying this information to people who need it, aka like me :p, Considering there is so much good stuff out there an there is the fact you are willing to share it, is much appreciated. Have now installed Notscripts an Use HTTPS an flingin through this site like a kid in a candy shop. Lovin every minute of it, thankyou for the plathora of information an not keeping it a secret. It's enjoyable to see the wealth of information out there an to apply it is even more exciting. Will be reading through this site like a fine tooth comb. Thankyou so much again :) +++++++
And thank you for taking the time to leave a comment. :)
Please let me know if there's anything else you would like to know about.
Note that from September 1st the ClearCloud Service DNS will be discontinued.
Thank you for pointing this out. I will take care of this in my next rewrite.
Thank you. We are aware of this and references to ClearCloud will be removed from various articles here as and when this becomes reality.
Sir,
I find your article especially useful because of two things
1) I am a complete green horn when it comes to computers
2) I've been a victim of identity theft and continued online harassment
Given my situation, find the info on free services extremely helpful
Godbless
Post new comment