1. Have a security audit done if you’ve never had one done.
2. Do not depend on only the Windows firewall.
4. Don’t goto porn, warez, gambling..etc etc type sites. If it’s a red-light disctrict on land it’s the same in cyber-land. If you go to these places in cyber-land none of the above or below matter..you’ll be infected either immediately or very quickly. NO anti-anything will save you either.
5. If you have access to sensitive information then not only run anti-malware but a good UTM to scan everything before it even gets to your system is a must. If you are a home user or a business with less than 10 computers the Microsoft Security Essentials is a decent, free product with automatic updates and no up selling tactics. If you want best in class protection without a huge performance hit Contact ETC-MD.
6. For Network Admins: Block the following attachments: .com. .bat, .vbx, .hta, .inf, .jsa, .wsh, .vbs, .vbe, .shm, .pif, .scr, .cmd, .dll, .rtf, .zip, .exe. This list is not exhaustive but this list contains the most common infection vectors in attachments.
6. Never click a link in an e-mail . This can be a tricky subject. Hover your mouse(Don’t click any links) over the links and see if the address presented in the bottom bar matches the text of the link. If it doesn’t it’s a fake. Contact ETC-MD.
7. Remove admin rights from users as much as possible.
8. Disable autorun. This nukes most infections from usb keys(flash drives, thumb drives..etc etc etc. Works great in conjunction with #8 and #7)
9. Ensure all systems are up to date with all security updates. Not just Windows and Office but every third party program on your systems. (This includes Acrobat, Flash, Java).
10. If something you are installing wants to install something else as well as what you asked for…STOP THE SETUP PROCESS IMMEDIATELY and Contact ETC-MD.
11. If you installed it you must keep it updated
12. If you don’t use it or don’t know what it is uninstall it at once. Old software is another target for malware entry into your system.
13. If you are informed of a possible infection or you suspect an infection please remember that you CANNOT reliably clean an infected machine from inside the infected operating system. Contact ETC-MD for your recovery options.
14. If you have a router that is more than a year old and/or it has never been updated you need to contact ETC Maryland. These devices are now a major security problem for homes and small businesses.