Secure Your Software
Is your computer really secure? If you have antivirus software, malware scanners and a firewall, you might think you'e safe from hackers, crackers and identity thieves. But chances are, you're missing one critical piece of the security puzzle. Read on to learn how to secure your software and truly lock down your computer... |
What's the Missing Link in Computer Security?
You may feel safe behind a firewall and anti-virus software. But you're not. Bad guys can still get to your personal information stored on your computer, and even take over your computer and run it as if it was their own. The gap in your armor? It's the application software you use every day. Let's look at just one recent example.
Do you ever read Adobe PDF files, in your browser or with Adobe Reader after downloading? Tens of millions of people do; PDF is one of the most widely used file formats. In July 2009, hackers found a way to embed malware in PDF files using the equally popular Adobe Flash animation format. Even anti-virus software developers like Symantec were caught off-guard by this obscure vulnerability. New vulnerabilities are discovered in application software every hour, it seems.
Software developers issue patches and updates that close these doors to hackers in a never-ending game of Whack-A-Mole. Vulnerability pops up here, hit it with a patch. Another pops up over there, hit it with another patch. Developers provide the patches, but it's up to you, the end user, to whack the moles.
Staying on Top of Application Security
It's vital to keep all your software up to date with the latest patches and upgrades. But the average computer holds about 80 application programs! How can you keep up with it all?
First, concentrate on the programs that are most often targeted by bad guys. They are the most commonly used programs: Microsoft Office, Adobe Reader, Internet Explorer, etc. The more people there are using a program, the more targets there are for a hacker's arrows. Naturally, the hacker goes after the biggest potential "market" for his malware.
Second, activate automatic update features when they are available. Then your software will check its home site for patches and upgrades every day, or week, or whatever. It can download and install updates without bothering you at all, or tell you when updates are available and give you the choice of when to install them.
Some security experts tell you to turn off automatic updates because a connection to a server is an open line through which hackers can invade your computer. But turning off auto-update closes one door while leaving untold numbers of others wide open. Who are you kidding? You're not going to remember to check for updates manually on a regular basis. You'll let it slide until your software is so outdated it contains dozens of vulnerabilities. Leave auto-update on and let the software remember for you.
Third, you can check all the software on your computer for vulnerabilities using something like the Secunia Personal Software Inspector (PSI). This free program comes from a trusted security site, and scans your software for known vulnerabilities. It will tell you which programs need updating and provide links to sites where you can download patches.
I ran PSI while researching the issue of software security, and I was very surprised by the results. I have security software in place, and I thought I was keeping up with all my patches. I felt pretty confident about the security of my computer. But PSI flagged Adobe Reader, Flash, Skype, iTunes, QuickTime, Java and a few others as needing updates. At least SIX of the vulnerabilities were marked Critical, meaning that under certain circumstances, an Evil Hacker could exploit them to gain complete control over my computer. Yikes.
Bottom line... the software you use every day is the biggest source of danger to your personal information. Keeping your software up to date is your best defense. You cannot afford to let vulnerabilities go unpatched.
Comments, questions, rants or raves? Post your thoughts below...
|
|
Share this article with friends! |
|
Posted by Bob Rankin on 27 Aug 2009
| Need More Help? Try the AskBobRankin Updates Newsletter. It's Free! |
 |
Prev Article: Partition Managers |
The Top Twenty |
Next Article: Geekly Update September 2 |
 |
|
Link to this article from your site or blog. Just copy and paste from this box: |
There's more reader feedback... See all 18 comments for this article.
Post your Comments, Questions or Suggestions
Free Tech Support -- Ask Bob Rankin
Subscribe to AskBobRankin Updates: Free Newsletter |
||
|
Copyright © 2005
- Bob Rankin - All Rights Reserved
Privacy Policy -- See my profile on Google. |
||
Article information: AskBobRankin -- Secure Your Software (Posted: 27 Aug 2009)
Source: http://askbobrankin.com/secure_your_software.html
Copyright © 2005 - Bob Rankin - All Rights Reserved
Free
Most recent comments on "Secure Your Software"
(See all 18 comments for this article.)Posted by:
Mary Denning
05 Sep 2009
Hey, Mr. Rankin:
What do you think of Belarc Advisor? Curious?
Posted by:
Stu Berg
09 Sep 2009
To all those having trouble uninstalling applications that PSI tells you are security risks, there's an easy solution: If all else fails, simply delete the offending file. Each security risk lists the path and file name of the offending software.
I believe that this problem happens because the upgrade doesn't necessarily remove the old executable and there is no uninstall process for removing it. I've used this method of solving the problem at least 6 or 8 times and it has worked perfectly.
Posted by:
Bob
09 Sep 2009
If Adobe reader continues a problem for your readers, suggest they try FoxIt. The latest version of Foxit Reader can be downloaded from their website at www.foxitsoftware.com. It's free to use and will override Adobe Reader. I deleted Adobe Reader completely after satisfying myself FoxIt was all folks had claimed it was.
Posted by:
Al.
09 Sep 2009
I've been using Secunia weekly for a long time to keep everything up to date.
I also run another freebie called Filehippo which finds even more updates. Cheers, Al.
Posted by:
David L
09 Sep 2009
When you update a program then rescan and it still shows up check the path to the insecure item. Sometimes it will pick up items in other places like backups or .old folders or even other partitions. If that's the case just make an ignore rule for it and problem solved. Another problem I've run into involves the flash player activex file. When you update it the old one isn't removed sometimes so you have to manually delete it.
Posted by:
tb
09 Sep 2009
In addition to using Secunia PSI for chasing down software updates, may I also suggest the following programs:
* Update Notifier by CleanSofts.org
* Update Checker by FileHippo.com
* Belarc Advisor by Belarc.com
Posted by:
Bob Bowen
11 Sep 2009
Hi Bob, Excellent article on security, thank you. I have been running Secunia PSI since it started and Secunia tells me, for my area (West Cape South Area) my security is consistently 5 - 7% better than average at it's usual 100%. Running PSI once a week keeps your PC secure, no doubt. Thanks for the high quality of your articles.
Posted by:
Newzjunque
12 Sep 2009
Suddenly my settings were being changed and a bunch of hobgoblins had invaded my antivirus-laden, spy/malware killing system virtually under lockdown w/my firewall so impenetrable I must disable it to do certain things.
The source? Adobe Reader. Since I am so tech-challenged when I have certain problems I must reinstall my os when I am unable to get online and ask for help. I sometimes do not reinstall programs until prompted.
I was prompted to dl Adobe to read a pdf - it was on my system w/6 scans (all compatable) which run separately scheduled @ dif times every 24 hrs for @ least a week or two-trojans were detected and that was the source; that dl'ed Adobe file. What took so long?
Recently Adobe was forced to admit its product contains many vulnerabilities and are unsafe and some source (forgot who) advised to use other flash and readers.
But where can they be found? And is there such a thing as a safe Java app, flash or reader? I am happy to pay for safety but just don't want to jump from fire to frying pan.
I would like to hear this addressed by you Bob and if you already have just point me/us there, and thanks again for bringing up a valuable subject.
Posted by:
Jeffrey
27 Dec 2009
For those of you having trouble removing Adobe products, particularly Flash Player, go to www.adobe.com and search for and download the Flash Uninstaller. Run that and restart the computer, then return to the Secunia program and rescan to verify deletion. Then just return to adobe.com and install the new flash player.
Posted by:
Gene
22 Jul 2011
I use Secunia PSI and let it run automatically. I also use "CNET TechTracker". Both of these software programs check different software programs in my PC. I update my software from both of them.