targeted malware, trusted websites, infections, antivirus, operational information systems, browsing at work, risks from web surfing
HOME
PAGE
MEMBER RESOURCES
ABOUT US
FORUMS
PARTNERS
PRODUCTS & SERVICES
FREE RESOURCES
LOGIN
HERE
JOIN
NOW!
You are not logged in. Access is limited. Login or see membership information. • Streetwise Security Zone Community

To see the list of all blogs, including Scott Wright's Security Views Blog and the Streetwise Security Zone Podcast click HERE. You also can subscribe via an RSS reader, or check the "Watch This" box in the left column to receive news by email of new articles.


Watch this Blog Notify me by e-mail any time a new post is made to this blog.

Scott Wright's editorials on a variety of security issues for non-technical business managers and home computer users. Please feel free to comment and help spread the word that managers need to think about their information security risks.

The Virus Time Machine (e-Book)
Product ID: 00000007

... What You Need to Know (and Wish You Knew Before) About Removing Virus and Malware Infections Before you start down the path of trying to fix a virus infection on your computer, you should really understand what's invol ... More »

Non-Member Price: $4.99

September 2009 Posts

Archives
  Scott Wright's Security Views
Blog Entry

Good reasons to limit surfing on computers with access to operational business data

Friday, September 11th 2009 @ 2:19 PM (not yet rated)    post viewed 2153 times

The article below by Bill Brenner at CIO magazine has some good examples of the kinds of threats an organization can face from what we consider to be "safe" websites. There are a lot of reasons why sites we trust can become the means for hackers to infect your office systems.

Here's a scenario that may sound familiar. An office worker in the accounting department has a few minutes after finishing a major task before lunch. So, he checks out some discount electronics stores to see if he can find out who has the best prices on USB memory sticks. At one of these sites, a hidden infection in the webserver detects the version of his browser and operating system. Instantly, it launches a download with malicious code to which it knows his computer's configuration is vulnerable. He may not even see a virus warning or pop-up dialog box.

Then, the unimaginable becomes reality - NOTHING HAPPENS!  Yes, it is possible for your computer to be infected without you even noticing anything is wrong. This kind of malware wants to live undetected for as long as it can, so it can gather sensitive information from you like passwords, email addresses and account numbers.

The ideal scenario for a business is to have very distinct divisions between operational software systems and Internet-connected computers. Employees may not like it, but it's getting to the point where you may not be able to afford the consequences of having these systems exposed, even indirectly, to the Internet. Many of the threats in the CIO article below can result in similar scenarios and exposure to the risks I described above.

Click HERE for the CIO article by Bill Brenner.


I am now offering monthly briefings, tailored to organizations that want to build and sustain security awareness for staff. Just because your security team is too busy to do its own training and awareness doesn't mean you can't have an economical way to address human security risks. Please call or email me at the coordinates below...

Scott Wright

The Streetwise Security Coach

Join the Streetwise Security Zone at:
http://www.streetwise-security-zone.com/join.html

Phone: 1-613-693-0997
Email: scott@streetwise-security-zone.com
Twitter ID: http://www.twitter.com/streetsec

To receive weekly security tips and other notices about helpful content available on this site, please make sure you are on my list by clicking HERE, and entering your name and email address.

 

 

Site Meter

 rate this post: very bad poor average good fantastic!
Comments