Viruses, (including trojan horses and worms), spyware, keylogging, phishing, pharming, typosquatting, and wifi eavesdropping are just some of the malicious, fraudulent online activities that are aimed at parting you from your personal data and subsequently your money whilst connected to the internet. The first thing you can do to combat them is to be aware of them and how they operate.
Most Internet users use the word "virus" to describe all kinds of online perils. More precisely, however, a virus is a programme with the specific aim of replicating itself by infecting other files. The prime objective of any virus is to multiply and spread as far as possible. They have learned to hide behind or within seemingly harmless file extensions, making them even more difficult for users to recognise.
Almost every era has its own type of virus:
Installing good antivirus software plus a firewall and spyware application will go a long way to preventing these viruses becoming a problem for you.
Back to top
Named after the gift with a sting in its tail presented to the inhabitants of Troy, a trojan horse differs from viruses and worms in the way that it spreads. It hides itself in a seemingly useful program of some kind (such as a screensaver or game) but does not attempt to duplicate or spread itself. A trojan is a genuine hacking tool that allows its creator to take control of the infected machine or to record the keyboard strokes of the user in order to gather confidential information, such as credit card numbers or online passwords.
Avoiding free software and installing good antivirus software, a firewall and spyware application will go a long way to prevent trojans infecting your PC.
Back to top
This name describes this type of virus well. Different to the computer viruses that multiply within the system and spread by contact, worms can wheedle their way in by themselves. They are capable of spreading from one machine to another via a local network or the internet. Some worms can also spread as email attachments; other types of virus-worms spread by exploiting weaknesses in software and need no help from the user. These malicious programs scan the global network attempting to exploit computers made vulnerable by software weaknesses. No email or attachment is necessary.
Ensure that you always keep up with your software updates and use the dual protection of up-to-date virus software and a personal firewall to render your machine invisible to scans carried out by worms.
Back to top
Most spyware is not aimed at obtaining confidential information (such as your credit card number or your passwords) but records your actions and movements on the Internet. Every site that you visit and every link that you click is spied on in order to display advertising that is targeted according to your interests. Also known as adware, this spy software uses your system resources and slows down your computer. Or even worse, when it comes from adult content sites, it may display images that are unsuitable for children.
New-generation spyware and adware acts like a hacker, exploiting programming flaws to penetrate computers. Some even scan the web looking for uncorrected flaws, which means that just being connected to the internet is enough to get infected. The spyware and adware which have penetrated the computer then constantly display ad windows, change the web browser’s home page or add to it a bar that is impossible to delete, direct search enquiries to a given search engine or block access to sites of antivirus publishers.
To avoid these malwares, the golden rule is to update all your applications so that any flaw is corrected. Install antivirus software, a firewall and an anti-spyware application.
Back to top
A keylogger, as its name suggests, records all the keystrokes made by a computer user: everything they type, such as emails, documents, URLs in the address bar of their web navigator and, above all, user codes and passwords for all online services. Keylogger software can be found in many places: in an email, on a booby-trapped website or connected to a trojan horse or virus. Once the booby-trapped file is executed, it starts to record keystrokes and emails the data to its author. Some keyloggers are even teamed with other types of spyware which perform screen captures.
To combat keyloggers it’s advisable to avoid accessing your online bank account or investment information from public computers where you can’t be sure of the level of protection. On your home computer, install antivirus software, a firewall and an anti-spyware application.
Back to top
Phishing scams operate via e-mail and, more recently, instant messaging (IM). The purpose is to make victims click on a link, believing that it’ll lead them to a legitimate website with whom they're doing business, like a bank, a retailer, a government agency, or a credit card company. The fake link actually leads to a fake website that looks just like the real one. When you get to that site, you are asked to divulge personal information for some made-up reason explained in the e-mail or IM you received (including alleged urgent security or technical problems). Scammers usually ask for login account information, passwords and PIN numbers, etc. This information is then stored and used subsequently by phishing scammers.
There is no need to be afraid of e-mail or instant messaging. Knowing how they are used by scammers can help you to avoid falling prey to these phishers. It’s simple: never, ever, follow a link from an e-mail or IM to an “official” website to enter personal information. Choose instead to type in the official website address for yourself. Keep yourself informed of the latest trends in scamming, and consider using security tools like antivirus, anti adware/spyware and a firewall. It’s imperative that once these tools are installed that you always keep them up to date.
Should you receive a suspicious email we would recommend that you do not respond to it and notify the company concerned immediately. In the case of M&G please forward the suspicious email to us at info@mandg.co.uk
Back to top
There’s no doubt that pharming has evolved from phishers who were being outfoxed by educated internet users. The principle of pharming is simple: instead of using a trick to hide the real destination of a link, pharmers hijack the very process that makes your computer actually go there. By educating ourselves, and by practicing caution, we can protect ourselves against these scam artists.
Typosquatting relies on the typing of a website address with a minor typing error. For example instead of typing www.mandg.co.uk you mistakenly type www.mandf.co.uk This mistake could result in you being led to a spoof website set up to look like the genuine website where your personal details can be obtained. In the case of the M&G website you’re unable to sell investments online but for other services where this is possible these cyber criminals could access your personal account and sell your investment.
To avoid being caught by this type of scam ensure that you always type the correct and accurate website address into the address bar. It’s always worth double checking that it is correct before you enter your personal details.
Back to top
Wireless networks, which are also known as Wi-Fi, let computers talk to one another using radio signals similar to cordless phones. These radio signals can be intercepted by others, including those with criminal intent. This means that your personal and financial information could be at risk.
Although the Wi-Fi standard defines things like encryption and access control, the way you set them up varies from manufacturer to manufacturer. This means that the advice will seem a little technical because it is only possible to say what you have to do, not how you do it. Consequently, you will need to refer to the documentation that came with your hardware to set these defences up.
As well as eavesdropping and subsequently hacking into your PC, criminals can also freeload on your connection, using it without your consent.
To avoid these activities you can also: