Secure Your Software
Is your computer really secure? If you have antivirus software, malware scanners and a firewall, you might think you'e safe from hackers, crackers and identity thieves. But chances are, you're missing one critical piece of the security puzzle. Read on to learn how to secure your software and truly lock down your computer...
| Check out this week's most popular articles. |
Check out theseFREE trial downloads 
RoboForm memorizes and securely stores all your passwords. Enjoy one-click logins, complete checkout forms with one click. This is one program I use all day, every day! 
Slow computer? Diskeeper 2010 means a clean disk, unprecedented speed and reliable efficiency! Download the free trial and see what a difference it makes for you. |
What's the Missing Link in Computer Security?
You may feel safe behind a firewall and anti-virus software. But you're not. Bad guys can still get to your personal information stored on your computer, and even take over your computer and run it as if it was their own. The gap in your armor? It's the application software you use every day. Let's look at just one recent example.
Do you ever read Adobe PDF files, in your browser or with Adobe Reader after downloading? Tens of millions of people do; PDF is one of the most widely used file formats. In July 2009, hackers found a way to embed malware in PDF files using the equally popular Adobe Flash animation format. Even anti-virus software developers like Symantec were caught off-guard by this obscure vulnerability. New vulnerabilities are discovered in application software every hour, it seems.
Software developers issue patches and updates that close these doors to hackers in a never-ending game of Whack-A-Mole. Vulnerability pops up here, hit it with a patch. Another pops up over there, hit it with another patch. Developers provide the patches, but it's up to you, the end user, to whack the moles.
Staying on Top of Application Security
It's vital to keep all your software up to date with the latest patches and upgrades. But the average computer holds about 80 application programs! How can you keep up with it all?
First, concentrate on the programs that are most often targeted by bad guys. They are the most commonly used programs: Microsoft Office, Adobe Reader, Internet Explorer, etc. The more people there are using a program, the more targets there are for a hacker's arrows. Naturally, the hacker goes after the biggest potential "market" for his malware.
Second, activate automatic update features when they are available. Then your software will check its home site for patches and upgrades every day, or week, or whatever. It can download and install updates without bothering you at all, or tell you when updates are available and give you the choice of when to install them.
Some security experts tell you to turn off automatic updates because a connection to a server is an open line through which hackers can invade your computer. But turning off auto-update closes one door while leaving untold numbers of others wide open. Who are you kidding? You're not going to remember to check for updates manually on a regular basis. You'll let it slide until your software is so outdated it contains dozens of vulnerabilities. Leave auto-update on and let the software remember for you.
Third, you can check all the software on your computer for vulnerabilities using something like the Secunia Personal Software Inspector (PSI). This free program comes from a trusted security site, and scans your software for known vulnerabilities. It will tell you which programs need updating and provide links to sites where you can download patches.
I ran PSI while researching the issue of software security, and I was very surprised by the results. I have security software in place, and I thought I was keeping up with all my patches. I felt pretty confident about the security of my computer. But PSI flagged Adobe Reader, Flash, Skype, iTunes, QuickTime, Java and a few others as needing updates. At least SIX of the vulnerabilities were marked Critical, meaning that under certain circumstances, an Evil Hacker could exploit them to gain complete control over my computer. Yikes.
Bottom line... the software you use every day is the biggest source of danger to your personal information. Keeping your software up to date is your best defense. You cannot afford to let vulnerabilities go unpatched.
Comments, questions, rants or raves? Post your thoughts below...
|
|
Need more tech support?
|
Check out other articles in this category:
Posted by Bob Rankin on August 27, 2009 07:07 PM
| Need More Help? Try the AskBobRankin Updates Newsletter. It's Free! |
 |
Prev Article: Partition Managers |
|
Next Article: Geekly Update September 2 |
 |
|
Link to this article from your site or blog. Just copy and paste from this box: Related Keywords: Security software patch update exploit vulnerability adobe |
There's more reader feedback... See all 16 comments for this article.
Post your Comments, Questions or Suggestions
|
Ask Bob Rankin Home Page
Subscribe to AskBobRankin Updates: Free Newsletter |
|
| Copyright © 2005 - Bob Rankin - All Rights Reserved | ||
Article information: AskBobRankin -- Secure Your Software (Posted: August 27, 2009 07:07 PM)
Printed from: http://askbobrankin.com/secure_your_software.html
Copyright © 2005 - Bob Rankin - All Rights Reserved
Most recent comments on "Secure Your Software"
(See all 16 comments for this article.)Posted by:
PsStevo
01 Sep 2009
I tried Secunia but, perhaps coincidently, found some files had been changed at about the time I installed. To try and remedy file problems I had a very difficult job uninstalling this program. It did claim to find two potential issues, that I did remedy. May try again when reinstalled corrupted files.
Posted by:
leon dombroski
02 Sep 2009
hi bob;whack-a-mole.HA-HA-HA-HA-HA-HE-HE-HE-HA-HA.
YOUR PRICELESS.
i just got through with the SECUNIA PSI. after updating two non- critical items first--just in case, i ran the scan and did above average for connecticut-89%. it gave me four adobe listings as level 4 threats. so i did the solutions.and re-ran the scan as they say to do. i went fron 4 threats to 1 threat and my score is 98%. so i ran the single solution and re-ran the scan. it still gave me i threat and 98%.i ran around in that circle four more times and said the he double hocky sticks with it and shut down the computer. it took three tries to get my computer back up. i went to programs and features and discovered that only one adobe system had todays date on it. so why did it give me 4 in the first place? and why was there no way out without shutting down the computer? with a 98% rating i can't complain,but how i got to it is complainable? maybe it'll work better next time? thats my first time experience with it. and why does everyone allways want to give you a toolbar you don't need??? ta-ta
Posted by:
Mary Denning
05 Sep 2009
Hey, Mr. Rankin:
What do you think of Belarc Advisor? Curious?
Posted by:
Stu Berg
09 Sep 2009
To all those having trouble uninstalling applications that PSI tells you are security risks, there's an easy solution: If all else fails, simply delete the offending file. Each security risk lists the path and file name of the offending software.
I believe that this problem happens because the upgrade doesn't necessarily remove the old executable and there is no uninstall process for removing it. I've used this method of solving the problem at least 6 or 8 times and it has worked perfectly.
Posted by:
Bob
09 Sep 2009
If Adobe reader continues a problem for your readers, suggest they try FoxIt. The latest version of Foxit Reader can be downloaded from their website at www.foxitsoftware.com. It's free to use and will override Adobe Reader. I deleted Adobe Reader completely after satisfying myself FoxIt was all folks had claimed it was.
Posted by:
Al.
09 Sep 2009
I've been using Secunia weekly for a long time to keep everything up to date.
I also run another freebie called Filehippo which finds even more updates. Cheers, Al.
Posted by:
David L
09 Sep 2009
When you update a program then rescan and it still shows up check the path to the insecure item. Sometimes it will pick up items in other places like backups or .old folders or even other partitions. If that's the case just make an ignore rule for it and problem solved. Another problem I've run into involves the flash player activex file. When you update it the old one isn't removed sometimes so you have to manually delete it.
Posted by:
tb
09 Sep 2009
In addition to using Secunia PSI for chasing down software updates, may I also suggest the following programs:
* Update Notifier by CleanSofts.org
* Update Checker by FileHippo.com
* Belarc Advisor by Belarc.com
Posted by:
Bob Bowen
11 Sep 2009
Hi Bob, Excellent article on security, thank you. I have been running Secunia PSI since it started and Secunia tells me, for my area (West Cape South Area) my security is consistently 5 - 7% better than average at it's usual 100%. Running PSI once a week keeps your PC secure, no doubt. Thanks for the high quality of your articles.
Posted by:
Newzjunque
12 Sep 2009
Suddenly my settings were being changed and a bunch of hobgoblins had invaded my antivirus-laden, spy/malware killing system virtually under lockdown w/my firewall so impenetrable I must disable it to do certain things.
The source? Adobe Reader. Since I am so tech-challenged when I have certain problems I must reinstall my os when I am unable to get online and ask for help. I sometimes do not reinstall programs until prompted.
I was prompted to dl Adobe to read a pdf - it was on my system w/6 scans (all compatable) which run separately scheduled @ dif times every 24 hrs for @ least a week or two-trojans were detected and that was the source; that dl'ed Adobe file. What took so long?
Recently Adobe was forced to admit its product contains many vulnerabilities and are unsafe and some source (forgot who) advised to use other flash and readers.
But where can they be found? And is there such a thing as a safe Java app, flash or reader? I am happy to pay for safety but just don't want to jump from fire to frying pan.
I would like to hear this addressed by you Bob and if you already have just point me/us there, and thanks again for bringing up a valuable subject.