Managing IT threats.Many CPAs have learned the hard way that security technology alone can't protect a computer network. Computer users perform common tasks every day that can compromise the security of their computers and networks. Leaving employees uninformed about security issues can expose a business to unnecessary risks that may impact corporate revenue and work force productivity--harsh consequences for CPAs who regularly rely on computers to perform their jobs. Many people who think they are protected remain at risk and computer users must be aware of common security mistakes--and take measures to avoid them. E-MAIL e-mail: see electronic mail. in full electronic mail Messages and other data exchanged between individuals using computers in a network. We take e-mail for granted. Many can't remember life without it. Yet e-mail, especially through message attachments, is a common way to spread viruses and one of the biggest computer security threats. [ILLUSTRATION OMITTED] If an employee opens unsolicited e-mail attachments or does not scan attached documents for viruses before opening them, a computer or network becomes vulnerable to attack. One of the easiest precautions to take is to warn employees against opening e-mails or attachments from unexpected or unrecognizable sources. In addition, antivirus software See antivirus program. (tool) antivirus software - Programs to detect and remove computer viruses. The simplest kind scans executable files and boot blocks for a list of known viruses. should be installed on each computer and updated frequently to ensure protection against the latest security threats. Installing Internet security ''This article or section is being rewritten at Internet security is the process of protecting data and privacy of devices connected to internet from information robbery, hacking, malware infection and unwanted software. technologies also can provide e-mail screening capabilities to filter out spam that may contain viruses and other threats. INTERNET The Internet has become a means of survival in the business world, yet computers with constant DSL DSL in full Digital Subscriber Line Broadband digital communications connection that operates over standard copper telephone wires. It requires a DSL modem, which splits transmissions into two frequency bands: the lower frequencies for voice (ordinary or cable Internet Internet access via the cable companies. There are two kinds of service. One uses a cable modem to connect to a computer, and the other uses an enhanced cable box that provides Internet access directly at the TV. connections are particularly susceptible to hackers. This constant connection to large amounts of bandwidth allows for easier outside access to unprotected computers and networks. Firewalls can block unauthorized access to a computer and prevent information from leaving a computer. In addition, intrusion detection See IDS and IPS. software can alert the computer user when an attempt is being made to gain access to the computer and its information. Even innocent Internet surfing, such as checking the day's news headlines, increases security risks by increasing the possibility of exposure to unsecured websites that use ActiveX or Java computer languages. While many websites employ these languages, most larger and more popular sites take necessary security measures Noun 1. security measures - measures taken as a precaution against theft or espionage or sabotage etc.; "military security has been stepped up since the recent uprising" security to protect visitors against hacker attempts. However, if a computer user stumbles upon an unsecured website, ActiveX or Java languages can be used to create malicious code that can communicate directly with the user's machine, giving hackers access to computer data and the entire network. To elude e·lude tr.v. e·lud·ed, e·lud·ing, e·ludes 1. To evade or escape from, as by daring, cleverness, or skill: The suspect continues to elude the police. 2. this vulnerability, employees should avoid browsing the Internet and visiting unfrequented websites not pertinent to business needs. INSTANT MESSAGING Exchanging text messages in real time between two or more people logged into a particular instant messaging (IM) service. Instant messaging is more interactive than e-mail because messages are sent immediately, whereas e-mail messages can be queued up in a mail server for seconds or Instant messaging is an efficient and popular means of business communications, but repeated file transfers through IM programs can cause the spread of traditional threats. IM systems were not designed with security in mind, so they lack encryption capabilities, which makes it easy for an outsider to eavesdrop eaves·drop intr.v. eaves·dropped, eaves·drop·ping, eaves·drops To listen secretly to the private conversation of others. on confidential conversations. Also, messages can bypass traditional corporate firewalls, making it difficult for administrators to control use inside an organization. In addition, most IM systems have insecure password management, making them vulnerable to invaders who can pose as a familiar user or recognized associate to gain access to privileged information. A simple solution is to prohibit the use of IM. DOWNLOADS Employees may receive more than they anticipate when downloading seemingly harmless files from peer-to-peer networks like Kazaa. Files on these networks sometimes contain a virus. These threats often can mask their file extensions as common music files. Employees must use caution when downloading music, free software or screen savers Screen Savers may refer to:
The worst thing a company can do is have a false sense of security because it has taken some steps to secure its IT systems. Technology is an important part of any security program, but a program is only as strong as its weakest link. All it takes is one careless or uninformed computer user to open the company to risk. Tom Powledge is director of product management for the Client and Host Security Division at Symantec Corp. You can reach him at Symantec@connectpr.com. |
|
||||||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion