This is part five in my many part series on IT Security In Libraries. Part 4 was a general "How To Stay Safe Online" post that covered topics like patching/updating, watching links and downloads, and using good passwords. In Part Three I covered passwords. In part 2 we talked privacy. In Part One I tried to lay the foundation for security.
Today's post is short and sweet, 20 myths I've run across while working on the series. I've tried to include a link on most of them that explains why something is wrong.
- You have nothing important to steal 'Steal everything' era of hacking
- Having antivirus software makes you completely safe Online security doesn't exist and/or No Software Is 100% Fault Free And That Includes Antivirus Programs
Your antivirus software is a seat belt – not a force field. - Alfred Huger
- Using Mac/Linux makes you safe OSX Security Myths
- Patches and updates make things worse and break them Test shows how vulnerable unpatched Windows is
- You can look at a site and know it's safe and not serving bad stuff Put that website down, you don’t know where it’s been! also, How To Check If A Site Is Safe
- Using a firewall makes you safe The Three Myths of Firewalls
- Complex frequently changed passwords make you safe How are passwords stolen?
- Avoiding IE makes me safe Internet Explorer is most secure browser for malware
- If an email comes from a familiar face it's ok What Is Spearfishing?
- If a link comes from a friend on Facebook/twitter it's safe Facebook Worm Refuses to Die
- If I just click a link it's ok
- Only porn, gambling, and other “sketchy” sites are dangerous Mass Infection Of WP Sites
- Only naive users get infected with malware and viruses
- You can only get infected if you download files Drive By Download
- If I'm compromised I will know it How We Interpret Antivirus Lab Tests also... Opening the email that was used to hack RSA
- Infections come from email
- P2P and torrents are safe
- Hardware can't spread or come preinfected with malware Pre-infected hardware and software ships to the US
- If I never log off / restart I can't get infected
- I'm too smart to get infected... Yes, you and me both!