DOCSLIB.ORG

Mcafee Potentially Unwanted Programs (PUP) Policy March, 2018

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text

Load more

POLICY McAfee Potentially Unwanted Programs (PUP) Policy March, 2018 McAfee recognizes that legitimate technologies such as commercial, shareware, freeware, or open source products may provide a value or benefit to a user. However, if these technologies also pose a risk to the user or their system, then users should consent to the behaviors exhibited by the software, understand the risks, and have adequate control over the technology. McAfee refers to technologies with these characteristics as “potentially unwanted program(s),” or “PUP(s).” The McAfee® PUP detection policy is based on the process includes assessing the risks to privacy, security, premise that users should understand what is being performance, and stability associated with the following: installed on their systems and be notified when a ■ Distribution: how users obtain the software including technology poses a risk to their system or privacy. advertisements, interstitials, landing-pages, linking, PUP detection and removal is intended to provide and bundling notification to our users when a software program or technology lacks sufficient notification or control over ■ Installation: whether the user can make an informed the software or fails to adequately gain user consent to decision about the software installation or add- the risks posed by the technology. McAfee Labs is the ons and can adequately back out of any undesired McAfee team responsible for researching and analyzing installations technologies for PUP characteristics. ■ Run-Time Behaviors: the behaviors exhibited by the technology including advertisements, deception, and McAfee Labs evaluates technologies to assess any impacts to privacy and security risks exhibited by the technology against the degree of user notification and control over the technology. This ■ Uninstall: whether the user can easily remove all functional components of an install Connect With Us 1 McAfee Potentially Unwanted Programs (PUP) Policy POLICY These areas are then evaluated against the following: ■ Software must not be distributed or installed by malware or by otherwise malicious (for example, drive- ■ Notification: the extent to which the user is notified by) installations. of the software risks ■ Software installers must provide software licensing ■ Consent: the extent to which the affected users can information prior to the installation of any bundled consent to the software risks components. ■ Control: the degree of control that the user has over ■ Software installers must inform users when the the software installation, operation, and removal installation of bundled components are required for Failure to meet all the criteria in this document will result the installation of the main technology (that is, not in the technology being blocked by McAfee security optional). products. ■ Software installers must allow the user to cancel the installation of all components if the installation of any When objectionable distribution practices are used by bundled components is required for the installation of a technology or its distributors, users (and antivirus the main technology. scanners) may be unable to distinguish between compliant versions distributed using acceptable means ■ Software installers must provide consistent (for and versions distributed using objectionable means. As example, Accept/Decline) options when offering one or a result, software that is distributed using objectionable more bundles (for example, installers must not reverse practices may result in detection for other or all versions the order of the options buttons across more than of the technology. one install window). ■ Software installers including bundle proxies must not Any software that exhibits malware behaviors will not be collect or transmit personally identifiable information tolerated and will be detected and removed as malware. (PII) without informed user consent. Distribution ■ Any bundled install packages are considered installers Objectionable distribution methods can impair the and must abide by the same installation notification, overall user experience. Criteria for evaluating the consent, and control guidelines as the main installer. distribution of software are as follows: ■ Software must not be linked to or distributed using spam email. 2 McAfee Potentially Unwanted Programs (PUP) Policy POLICY Deception ■ Software must not obfuscate files, filenames, filepaths, Users must have an informed awareness of software registry entries, and the like, beyond reasonable DRM that is installed on their system including the protection. functionality of the software and whether it is active. ■ Software must not impair the user’s ability to uninstall Criteria for determining deceptive behaviors are as or remove the program. follows: ■ Software uninstall features must adequately remove all functional components of an installation. ■ Information regarding the software publisher, source, website, or other identifying information must be ■ Software must not run third-party processes or reasonable and accurate. programs on the system without prior informed user consent. ■ The legal conditions of the software installation (for example, software license, EULA) must be clearly ■ Software must not impair the user’s ability to control indicated in a license agreement. the software while it runs on the system. ■ Information regarding the software publisher in a ■ Software must not install, reinstall, or removal itself or Digital Signature must be accurate. other legitimately installed software without informed user consent or interaction. ■ Software must indicate its behaviors and purpose such that users have a meaningful and accurate ■ Software must not install other software without clear understanding of the nature of the technology. indication of its relationship to the primary software installation. ■ Software that tracks users’ activities, including browsing habits, must not hide, cloak, or mislead the ■ Software must gain informed user consent prior to user as to this functionality. making or modifying key system settings, including: ■ Software must not disguise its presence or − Installing web browser plugins masquerade as another technology (for example, − Changing browser default home pages deceptive icons, deceptive Version Information, − Changing browser default search provider deceptive .lnk files, etc.). − Changing desktop settings ■ Advertisements leading to software downloads must not masquerade as another technology (for example, − Changing icons or system colors banner ads with fake close buttons). − Modifying the system hosts file ■ Software must not attempt to hide its presence or the − Adding startup registry entries presence of other components or software. − Modifying security settings 3 McAfee Potentially Unwanted Programs (PUP) Policy POLICY ■ Software that makes key system setting changes must − Date of Birth reverse these changes as part of the software uninstall − Social Security/tax ID number process. − Passport number ■ Software cannot use false or misleading − Driver’s license number endorsements, as defined or researched by industry standard methods. − Other government-issued identification number ■ Additional industry standard criteria may be used to − Bank account number or other financial account determine deceptive behavior. information (for example, PayPal, Apple Pay, Google Wallet, E*TRADE) Privacy − Credit card number Users expect that software does not collect, transmit, or − Email address reveal sensitive, private information including passwords ■ and personally identifiable information without the Software must not track user online activities such express permission of the user or effected individuals. as web browsing habits, instant messaging chats, or Personally Identifiable Information (PII) is defined keystrokes without informed user consent. differently among jurisdictions. Criteria for determining ■ Software must not allow user communications to be objectionable behaviors impacting privacy are as follows: monitored, redirected, or changed without informed user consent. ■ Software must not reveal, collect, use, or transmit ■ passwords, biometrics, or other credentials without Software must not allow a remote user to access or informed user consent of all impacted users. control the system or send remote commands without informed user consent. ■ Software must not collect, use, or transmit personally ■ identifiable information (PII) or other sensitive data A user must be able to deactivate software which without informed user consent. PII includes (but is not allows a remote user to access or control the system limited to): or send remote commands. ■ Software must not install a proxy or redirect network − Name traffic to an online proxy or other system without − Address informed user consent. − City ■ Software must not require additional user information − State before it can be uninstalled (for example, email − Postal code/ZIP code address). − Phone number 4 McAfee Potentially Unwanted Programs (PUP) Policy POLICY ■ Software that collects, stores, or transmits user data ■ Computer Anti-Theft (including browser activity), passwords, personally ■ Anonymizing Internet/web browsing traffic identifiable information, or other sensitive information ■ Home security/surveillance software must offer an easily accessible and clear privacy policy. ■ Software must not bypass or facilitate bypassing of Security other software licensing by using software decipherers Users expect that software does not impede their or altering
Recommended publications
  • Licensing 101 December 3, 2020 Meet the Speakers

    Licensing 101 December 3, 2020 Meet the Speakers

    Licensing 101 December 3, 2020 Meet The Speakers Sushil Iyer Adam Kessel Principal Principal fr.com | 2 Roadmap • High level, introductory discussion on IP licensing • Topics – Types of IP – Monetization strategies – Key parts of a license agreement – Certain considerations • Licensing software, especially open source software • Licensing pharmaceutical patents • Trademarks • Trade secrets • Know-how fr.com | 3 Types of IP Patents Trademarks Copyrights Know-how (including trade secrets) fr.com | 4 Monetization Strategies • IP licensing – focus of this presentation – IP owner (licensor) retains ownership and grants certain rights to licensee – IP licensee obtains the legal rights to practice the IP – Bundle of rights can range from all the rights that the IP owner possesses to a subset of the same • Sale – IP owner (assignor) transfers ownership to the purchaser (assignee) • Litigation – Enforcement, by IP owner, of IP rights against an infringer who impermissibly practices the IP owner’s rights – Damages determined by a Court fr.com | 5 What is an IP License? • Contract between IP owner (Licensor) and Licensee – Licensor’s offer – grant of Licensor’s rights in IP • Patents – right to sell products that embody claimed inventions of Licensor’s US patents • Trademarks – right to use Licensor’s US marks on products or when selling products • Copyright – right to use and/or make derivative works of Licensor’s copyrighted work • Trade Secret – right to use and obligation to maintain Licensor’s trade secret – Licensee’s consideration – compensation
  • The Spyware Used in Intimate Partner Violence

    The Spyware Used in Intimate Partner Violence

    The Spyware Used in Intimate Partner Violence Rahul Chatterjee∗, Periwinkle Doerflery, Hadas Orgadz, Sam Havronx, Jackeline Palmer{, Diana Freed∗, Karen Levyx, Nicola Dell∗, Damon McCoyy, Thomas Ristenpart∗ ∗ Cornell Tech y New York University z Technion x Cornell University { Hunter College Abstract—Survivors of intimate partner violence increasingly are decidedly depressing. We therefore also discuss a variety report that abusers install spyware on devices to track their of directions for future work. location, monitor communications, and cause emotional and physical harm. To date there has been only cursory investigation Finding IPS spyware. We hypothesize that most abusers find into the spyware used in such intimate partner surveillance (IPS). spyware by searching the web or application stores (mainly, We provide the first in-depth study of the IPS spyware ecosystem. Google Play Store or Apple’s App Store). We therefore We design, implement, and evaluate a measurement pipeline that combines web and app store crawling with machine learning to started by performing a semi-manual crawl of Google search find and label apps that are potentially dangerous in IPS contexts. results. We searched for a small set of terms (e.g., “track my Ultimately we identify several hundred such IPS-relevant apps. girlfriend’s phone without them knowing”). In addition to the While we find dozens of overt spyware tools, the majority are results, we collected Google’s suggestions for similar searches “dual-use” apps — they have a legitimate purpose (e.g., child to seed further searches. The cumulative results (over 27,000+ safety or anti-theft), but are easily and effectively repurposed returned URLs) reveal a wide variety of resources aimed at for spying on a partner.
  • Trojans and Malware on the Internet an Update

    Trojans and Malware on the Internet an Update

    Attitude Adjustment: Trojans and Malware on the Internet An Update Sarah Gordon and David Chess IBM Thomas J. Watson Research Center Yorktown Heights, NY Abstract This paper continues our examination of Trojan horses on the Internet; their prevalence, technical structure and impact. It explores the type and scope of threats encountered on the Internet - throughout history until today. It examines user attitudes and considers ways in which those attitudes can actively affect your organization’s vulnerability to Trojanizations of various types. It discusses the status of hostile active content on the Internet, including threats from Java and ActiveX, and re-examines the impact of these types of threats to Internet users in the real world. Observations related to the role of the antivirus industry in solving the problem are considered. Throughout the paper, technical and policy based strategies for minimizing the risk of damage from various types of Trojan horses on the Internet are presented This paper represents an update and summary of our research from Where There's Smoke There's Mirrors: The Truth About Trojan Horses on the Internet, presented at the Eighth International Virus Bulletin Conference in Munich Germany, October 1998, and Attitude Adjustment: Trojans and Malware on the Internet, presented at the European Institute for Computer Antivirus Research in Aalborg, Denmark, March 1999. Significant portions of those works are included here in original form. Descriptors: fidonet, internet, password stealing trojan, trojanized system, trojanized application, user behavior, java, activex, security policy, trojan horse, computer virus Attitude Adjustment: Trojans and Malware on the Internet Trojans On the Internet… Ever since the city of Troy was sacked by way of the apparently innocuous but ultimately deadly Trojan horse, the term has been used to talk about something that appears to be beneficial, but which hides an attack within.
  • The Ethics of Cyberwarfare Randall R

    The Ethics of Cyberwarfare Randall R

    This article was downloaded by: [University of Pennsylvania] On: 28 February 2013, At: 08:22 Publisher: Routledge Informa Ltd Registered in England and Wales Registered Number: 1072954 Registered office: Mortimer House, 37-41 Mortimer Street, London W1T 3JH, UK Journal of Military Ethics Publication details, including instructions for authors and subscription information: http://www.tandfonline.com/loi/smil20 The Ethics of Cyberwarfare Randall R. Dipert a a SUNY (State University of New York) at Buffalo, NY, USA Version of record first published: 16 Dec 2010. To cite this article: Randall R. Dipert (2010): The Ethics of Cyberwarfare, Journal of Military Ethics, 9:4, 384-410 To link to this article: http://dx.doi.org/10.1080/15027570.2010.536404 PLEASE SCROLL DOWN FOR ARTICLE Full terms and conditions of use: http://www.tandfonline.com/page/terms-and- conditions This article may be used for research, teaching, and private study purposes. Any substantial or systematic reproduction, redistribution, reselling, loan, sub-licensing, systematic supply, or distribution in any form to anyone is expressly forbidden. The publisher does not give any warranty express or implied or make any representation that the contents will be complete or accurate or up to date. The accuracy of any instructions, formulae, and drug doses should be independently verified with primary sources. The publisher shall not be liable for any loss, actions, claims, proceedings, demand, or costs or damages whatsoever or howsoever caused arising directly or indirectly in connection with or arising out of the use of this material. Journal of Military Ethics, Vol. 9, No. 4, 384Á410, 2010 The Ethics of Cyberwarfare RANDALL R.
  • (Malicious Software) Installed on Your Computer Without Your Consent to Monitor Or Control Your Computer Use

    (Malicious Software) Installed on Your Computer Without Your Consent to Monitor Or Control Your Computer Use

    Spyware is a type of malware (malicious software) installed on your computer without your consent to monitor or control your computer use. Clues that spyware is on a computer may include a barrage of pop-ups, a browser that takes you to sites you don't want, unexpected toolbars or icons on your computer screen, keys that don't work, random error messages, and sluggish performance when opening programs or saving files. In some cases, there may be no symptoms at all. While the term spyware suggests that software that secretly monitors the user's computing, the functions of spyware extend well beyond simple monitoring. Spyware programs can: Collect information stored on the computer or attached network drives, Collect various types of personal information, such as Internet surfing habits, sites that have been visited Collect user names and passwords stored on your computer as well as those entered from the keyboard. Interfere with user control of the computer Install additional software on the computer Redirect Web browser activity. Change computer settings, resulting in slow connection speeds, different home pages, and/or loss of Internet or functionality of other programs. The best defense against spyware and other unwanted software is not to download it in the first place. Here are a few helpful tips that can protect you from downloading software you don't want: Update your operating system and Web browser software, and set your browser security high enough to detect unauthorized downloads. Use anti-virus and anti-spyware, as well as a firewall software, and update them all regularly.
  • Open Source Acknowledgements

    Open Source Acknowledgements

    This document acknowledges certain third‐parties whose software is used in Esri products. GENERAL ACKNOWLEDGEMENTS Portions of this work are: Copyright ©2007‐2011 Geodata International Ltd. All rights reserved. Copyright ©1998‐2008 Leica Geospatial Imaging, LLC. All rights reserved. Copyright ©1995‐2003 LizardTech Inc. All rights reserved. MrSID is protected by the U.S. Patent No. 5,710,835. Foreign Patents Pending. Copyright ©1996‐2011 Microsoft Corporation. All rights reserved. Based in part on the work of the Independent JPEG Group. OPEN SOURCE ACKNOWLEDGEMENTS 7‐Zip 7‐Zip © 1999‐2010 Igor Pavlov. Licenses for files are: 1) 7z.dll: GNU LGPL + unRAR restriction 2) All other files: GNU LGPL The GNU LGPL + unRAR restriction means that you must follow both GNU LGPL rules and unRAR restriction rules. Note: You can use 7‐Zip on any computer, including a computer in a commercial organization. You don't need to register or pay for 7‐Zip. GNU LGPL information ‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐‐ This library is free software; you can redistribute it and/or modify it under the terms of the GNU Lesser General Public License as published by the Free Software Foundation; either version 2.1 of the License, or (at your option) any later version. This library is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details. You can receive a copy of the GNU Lesser General Public License from http://www.gnu.org/ See Common Open Source Licenses below for copy of LGPL 2.1 License.
  • Max Spyware Detector-Windows-EULA

    Max Spyware Detector-Windows-EULA

    END-USER LICENSE AGREEMENT END-USER LICENSE AGREEMENT FOR MAX SPYWARE DETECTOR FOR WINDOWS PLATFORM PLEASE READ THIS MAX SPYWARE DETECTOR FOR WINDOWS PLATFORM END-USER LICENSE AGREEMENT (HEREINAFTER REFERRED TO AS THE “AGREEMENT”) CAREFULLY BEFORE USING OR TRYING TO ATTEMPT TO USE THIS MAX SPYWARE DETECTOR FOR WINDOWS PLATFORM (HEREINAFTER REFERRED TO AS THE “SOFTWARE”). BY USING THIS SOFTWARE OR BY ACCEPTING OUR SOFTWARE USAGE AGREEMENT POLICY OR ATTEMPTING TO LOAD THE SOFTWARE IN ANY WAY, (SUCH ACTION WILL CONSTITUTE A SYMBOL OF YOUR CONSENT AND SIGNATURE), YOU ACKNOWLEDGE AND ADMIT THAT YOU HAVE READ, UNDERSTOOD AND AGREED TO ALL THE TERMS AND CONDITIONS OF THIS AGREEMENT. THIS AGREEMENT ONCE ACCEPTED BY “YOU” [AS AN INDIVIDUAL (ASSUMING YOU ARE HAVING LEGAL CAPACITY TO ENTER INTO AN AGREEMENT), OR THE COMPANY OR ANY LEGAL ENTITY THAT WILL BE USING THE SOFTWARE (HEREINAFTER REFERRED TO AS 'YOU' OR 'YOUR' FOR THE SAKE OF BREVITY)] SHALL BE A LEGALLY ENFORCEABLE AGREEMENT BETWEEN YOU AND MAX SECURE SOFTWARE INDIA PVT. LTD., PUNE, MH, INDIA (HEREINAFTER REFERRED TO AS “MSS”). YOU SHALL HAVE THE RIGHTS TO USE THE SOFTWARE FOR YOUR OWN USE SUBJECT TO THE TERMS AND CONDITIONS MENTIONED IN THIS AGREEMENT OR AS AMENDED BY MSS FROM TIME TO TIME. IF YOU DO NOT AGREE TO ALL THE TERMS AND CONDITIONS BELOW, DO NOT USE THIS SOFTWARE IN ANY WAY AND PROMPTLY RETURN IT OR DELETE ALL THE COPIES OF THIS SOFTWARE IN YOUR POSSESSION. In consideration of payment of the License Fee, evidenced by the Payment Receipt, MSS grants you, a non-exclusive and non-transferable right for your own use only.
  • Welcome to the Jungle:1 the State Privacy Implications of Spam, Phishing and Spyware

    Welcome to the Jungle:1 the State Privacy Implications of Spam, Phishing and Spyware

    February 2005 Welcome to the Jungle:1 The State Privacy Implications of Spam, Phishing and Spyware Section I: An Overview It’s a Jungle Out There: In an environment in which 53% of all reported fraud complaints to the Federal Trade Commission (FTC) in 2004 were Internet-related, the Internet and email threats of spam, phishing and spyware all are real threats with real consequences.2 They are increasingly used by criminals, instead of just novice teenage hackers3 and can be lucrative alone or in furthering a larger criminal enterprise. Armed with these incentives, spammers, phishers and spyware purveyors are motivated and possess the expertise to avoid the attempts of law enforcement, industry and others to bring these threats in hand. Moreover, while banks, financial institutions, ISPs (Internet Service Providers) and even online auction site users have borne the initial brunt of threats like phishing, other sectors are becoming targets as the first wave of targeted sectors puts in place more effective security measures. This could place government and citizen information at risk of unauthorized disclosure and could lead to serious consequences, such as the release of sensitive homeland security and critical infrastructure information or personal information that could result in identity theft. In addition, spam, phishing and spyware infringe upon citizens’ perceived “right to be left alone” while surfing the Internet and using email. The fact that so many individuals’ privacy has been impacted to varying extents by these threats has compounded their significance. For example, a 2004 phishing attack spoofed4 an email from the FDIC (Federal Deposit Insurance Corporation).
  • Lesson 6: Hacking Malware

    Lesson 6: Hacking Malware

    LESSON 6 HACKING MALWARE Lesson 6: Malware WARNING The Hacker Highschool Project is a learning tool and as with any learning tool there are dangers. Some lessons if abused may result in physical injury. Some additional dangers may also exist where there is not enough research on possible effects of emanations from particular technologies. Students using these lessons should be supervised yet encouraged to learn, try, and do. However ISECOM cannot accept responsibility for how any information herein is abused. The following lessons and workbooks are open and publicly available under the following terms and conditions of ISECOM: All works in the Hacker Highschool Project are provided for non-commercial use with elementary school students, junior high school students, and high school students whether in a public institution, private institution, or a part of home-schooling. These materials may not be reproduced for sale in any form. The provision of any class, course, training, or camp with these materials for which a fee is charged is expressly forbidden without a license including college classes, university classes, trade-school classes, summer or computer camps, and similar. To purchase a license, visit the LICENSE section of the HHS web page at http://www.hackerhighschool.org/licensing.html. The HHS Project is an open community effort and if you find value in this project we ask that you support us through the purchase of a license, a donation, or sponsorship. 2 Lesson 6: Malware Table of Contents WARNING....................................................................................................................................................2
  • Detecting Malware in TLS Traffic

    Detecting Malware in TLS Traffic

    IMPERIAL COLLEGE LONDON DEPARTMENT OF COMPUTING Detecting Malware in TLS Traffic Project Report Supervisor: Author: Sergio Maffeis Olivier Roques Co-Supervisor: Marco Cova Submitted in partial fulfillment of the requirements for the MSc degree in Computing Science / Security and Reliability of Imperial College London September 2019 Abstract The use of encryption on the Internet has spread rapidly these last years, a trend encouraged by the growing concerns about online privacy. TLS (Transport Layer Security), the standard protocol for packet encryption, is now implemented by every major websites to protect users’ messages, transactions and credentials. However cybercriminals have started to incorporate TLS into their activities. An increasing number of malware leverage TLS encryption to hide their communications and to exfiltrate data to their command server, effectively bypassing traditional detection platforms. The goal of this project is to design and implement an effective alternative to the unpractical method of decrypting TLS packets’ payload before looking for signs of malware activity. This work presents a highly accurate supervised classifier that can detect malicious TLS flows in a company’s network traffic based on a set of features related to TLS, certificates and flow metadata. The classifier was trained on curated datasets of benign and malware observations, which were extracted from capture files thanks to a set of tools specially developed for this purpose. We detail in this report the complete development process, from data collection and feature extraction to model selection and performance analysis. ii Acknowledgments I would like to particularly thank Marco Cova and Sergio Maffeis, my project su- pervisors, for their valuable and continuous suggestions and for their constructive feedbacks on this project.
  • Download PDF Helpful Tips If Your Device Or Online

    Download PDF Helpful Tips If Your Device Or Online

    Keep Your Business Safe Helpful tips if your device or online accounts are hacked A compromised computer or device could be disastrous for your organization if you aren’t prepared. Here are some helpful tips to keep your business safe. Isolate your device(s) and Backup Your Important Files disconnect them from the internet Copy your photos, documents, media and other To sever the connection the hacker is using to personal files to a DVD, CD or other storage device. access your computer and/or devices, you may need Even if you think everything is clean, always scan your to disconnect from the internet. Unplug the data files prior to reintroducing them back into your network cable from your PC and turn off the Wi-Fi system. connection. If you still have doubts, contact your anti-virus Many laptops have a switch to turn the Wi-Fi off. software provider or a computer specialist Don't rely on doing this through software, as the Be cautious when calling telephone numbers for hacker's malware may tell you something is turned technical support specialists that you find online. off when it’s actually still connected. If you’re using a Scam artists sometimes set up authentic-looking smart phone or tablet, turn on airplane mode. Make websites that may appear to be affiliated with your sure your network and devices are secure and avoid computer’s manufacturer. When consumers call these using public computers or Wi-Fi hotspots. Isolating entities, they are often told they must pay hundreds of infected devices will prevent them from being used dollars for their computer to be fixed.
  • Protect Your Computer from Viruses, Hackers, & Spies

    Protect Your Computer from Viruses, Hackers, & Spies

    Protect Your Computer from Viruses, Hackers, & Spies Tips for Consumers Consumer Information Sheet 12 • January 2015 Today we use our computers to do so many things. We go online to search for information, shop, bank, do homework, play games, and stay in touch with family and friends. As a result, our com- puters contain a wealth of personal information about us. This may include banking and other financial records, and medical information – information that we want to protect. If your computer is not protected, identity thieves and other fraudsters may be able to get access and steal your personal information. Spammers could use your computer as a “zombie drone” to send spam that looks like it came from you. Malicious viruses or spyware could be deposited on your computer, slowing it down or destroying files. By using safety measures and good practices to protect your home computer, you can protect your privacy and your family. The following tips are offered to help you lower your risk while you’re online. 3 Install a Firewall 3 Use Anti-virus Software A firewall is a software program or piece of Anti-virus software protects your computer hardware that blocks hackers from entering from viruses that can destroy your data, slow and using your computer. Hackers search the down or crash your computer, or allow spammers Internet the way some telemarketers automati- to send email through your account. Anti-virus cally dial random phone numbers. They send protection scans your computer and your out pings (calls) to thousands of computers incoming email for viruses, and then deletes and wait for responses.