What is Identity theft? Identity theft is the act of impersonating someone by stealing key information and using it without consent or authorisation. Identity theft has been around for a long time In the form of people stealing your post and using the details to access your accounts whatever they may be, or forging signatures. This has always been a threat and a problem. But the public had grown accustomed to this, and have taken measures to combat the problem such as not carrying your passport around with you unnecessarily, and posting secure information using secure transit methods. But a new medium has arisen to allow access to your personal details. The Internet.Any official web site that you enter such as an on-line banking site is extremely secure and the chance of anyone hacking into the site and stealing your data is absolutely minute. But it is easy for someone to get your details via different methods, such as tricking you into entering your details on a fake website. This is called spoofing.
Once your details have been obtained the possibilities are endless. The worst case would be for someone to take over you bank details, and then change all the security so that you no longer have access to your own account and are even unable to prove that you are the real owner of the account.
Protecting your self on-line is not as easy as protecting your self in the physical world if you are not familiar with the precautions you need to take. The main thing you should do is to visit the websites yourself and not click a link to them from another website or an e-mail. Be smart when it comes to supplying your username and password - so don’t give them to anyone if you are not 100% sure they are official.
Chris - PC Disinfection Team
There are so many different on-line accounts, e-mail addresses and log-ons, that it is difficult to keep track of all the passwords needed for each account. People end up using the same password for all the accounts. Most people do it, some of my non-vital e-mail addresses and website accounts share the same password.
Here is the problem, with all the spoofing that goes on via the Internet people can get you to log into a false website and have you provide a username and password of your choice! Can you see where this is going? What you have just done is submitted your ideal username and the password that you are most comfortable using. These details can be used against you. Once someone knows your password preference, they can obtain some simple details from you computer such as web sites you visit (think bank account websites and work related secure sites) or e-mail addresses that you use, and try the accounts with the password details you have provided. Some of them are bound to work, and BAM - full access to your bank account for example.
The best way to combat this is to keep all of your passwords unique. Whether you want them completely different to avoid confusion for yourself, or all similar but slight variations between each one, the important thing is to have all your passwords different. This means you will need to store the passwords for your reference. If you do so, keep them off your computer. Mine for example are written down, semi-securely kept so they don't get lost and prevent people from getting to them, and are also written in such a way that they are not so obvious that they are passwords to bank accounts. It would be a bit like writing your bank PIN on paper surrounded by a single dummy digit either side. This is something simple for you to remember but will confuse anyone who is not aware of your method.
So keeping passwords in the physical world is about as safe as the virtual world so slight discretion is required. Don't leave your passwords on your desk with the words HSBC.COM written next to them, that is an open invitation to someone should you have an unwanted intruder break into your home.
Chris - PC Disinfection Team
Here is the problem, with all the spoofing that goes on via the Internet people can get you to log into a false website and have you provide a username and password of your choice! Can you see where this is going? What you have just done is submitted your ideal username and the password that you are most comfortable using. These details can be used against you. Once someone knows your password preference, they can obtain some simple details from you computer such as web sites you visit (think bank account websites and work related secure sites) or e-mail addresses that you use, and try the accounts with the password details you have provided. Some of them are bound to work, and BAM - full access to your bank account for example.The best way to combat this is to keep all of your passwords unique. Whether you want them completely different to avoid confusion for yourself, or all similar but slight variations between each one, the important thing is to have all your passwords different. This means you will need to store the passwords for your reference. If you do so, keep them off your computer. Mine for example are written down, semi-securely kept so they don't get lost and prevent people from getting to them, and are also written in such a way that they are not so obvious that they are passwords to bank accounts. It would be a bit like writing your bank PIN on paper surrounded by a single dummy digit either side. This is something simple for you to remember but will confuse anyone who is not aware of your method.
So keeping passwords in the physical world is about as safe as the virtual world so slight discretion is required. Don't leave your passwords on your desk with the words HSBC.COM written next to them, that is an open invitation to someone should you have an unwanted intruder break into your home.
Chris - PC Disinfection Team
The eternal question - why do they do it? Whether it is programming a Virus, destruction of public property, terrorism or any other forms of intentional degeneracy. Without getting into the minds of someone who is responsible it can only be speculated as to why anyone would do anything such as create a virus that may bring the Internet to a standstill. It is obviously a lack of foresight in a case such as this. People who create viruses often sit at home like hermits, and live for the Internet as their real life is so dull and dissatisfying that they have to take their dejection and misery out on other people. If the Internet were to come to a stand still, these peoples life would come to a stand still too. As with any person committing a wrong doing there is a level of satisfaction. Think of an arsonist. They are destroying someone elses property and livelihood. However, the thrill of the flames and commotion and panic of the situation created by others is part of the excitement for the offender. This could be true of a virus programmer. The satisfaction of completing a project that can effect so many and cause so much destruction must be satisfying, almost like a drug. In a way, even the majority of terrorism is the act of someone fighting for something they believe in passionately, a virus creator isn’t even on this level, but lower. Creating a virus is not fighting for any moral reason, it is just plain malevolence and spite.
So the question can only be answered with a shrug. Personal satisfaction, fulfilment, stupidity, there are multiple reasons why someone would create a virus that can corrupt the information on your computer. But even if we did know the reason why, it would not give us the power or control to stop this sort of thing, society is always going to consist of a balance of good and bad on some level. And so there is no way of stopping this activity from occurring, we simply have to get used to it and keep coming up with ways to fight it. It is not an unusual concept for us.
Chris - PC Disinfection Team
So the question can only be answered with a shrug. Personal satisfaction, fulfilment, stupidity, there are multiple reasons why someone would create a virus that can corrupt the information on your computer. But even if we did know the reason why, it would not give us the power or control to stop this sort of thing, society is always going to consist of a balance of good and bad on some level. And so there is no way of stopping this activity from occurring, we simply have to get used to it and keep coming up with ways to fight it. It is not an unusual concept for us.
Chris - PC Disinfection Team
Not only do we have to be aware of spoofed websites (replications of the original that are designed to trick you into entering your details such as password and e-mail addresses) but we now have to worry about telephone spoofing. It appears people are ringing users and trying to coax details over the phone. It is possible for a virus or spyware to send information to someone about your Internet Service Provider. A caller could then contact you about your "account" with the ISP and coax your details from you. This has been done in the past where people have pretended to be a national bank, or pretend to give cash prizes and request bank detail to pay into. So this situation is not new, it's just being approached from a new angle. As with website spoofing, if they come to your, do not trust it and do not give nay details. Only give the details if you go to them. For example - If someone calls you, ignore it. But if you call them, thats fine. It is the same principle as websites. Don't follow a link in an e-mail to go to the official website, it is most likely be a site set up to look the same. Type the website address your self, or perform a web search using a search engine like www.google.com. Only trust the source if you did the leg work!Chris - PC Disinfection Team
This is a testament to how low virus creators can go. As ever it is always urged to not open ANY e-mail attachments unless you are expecting them, and in this case the attachment comes attached to an e-mail that claims to be a tsunami appeal. Again please do not respond to, open mails, or donate to ANY un solicited mails sent to you. If you wish to find information, or donate to the appeal you must visit the official sites. The virus in question that is being passed around is the W32/VBSun-A worm which spreads via e-mail tempting the user to open the attachment in the aid of the appeal. The worm will then spread to everyone in your address book.
As sad as this situation is, be sensible and don't fall prey to the twisted minds of the virus creators. Again, if you wish to donate or aid the appeal, don't respond to any e-mails, go directly to a legitimate web site.
Chris - PC Disinfection Team
As sad as this situation is, be sensible and don't fall prey to the twisted minds of the virus creators. Again, if you wish to donate or aid the appeal, don't respond to any e-mails, go directly to a legitimate web site.
Chris - PC Disinfection Team
Today I have come across a fine example of the type of trouble you can run into without any Anti-Virus protection on your computer. After speaking to a client today I had trouble installing their Anti-Virus program. The file said it was corrupt even though the copy the client had was a fresh download. After clearing the Internet cache and history, the machine was re-booted and the file re-downloaded. Still however, the corrupt file error message was displayed. We deleted the files and started a search for the same product from a different location. After re-downloading the software from a different server location the same error message appeared. In some cases I have known the computer to have problems with .exe files, and also problems with downloading files straight to the desktop of the machine. Again, we tried various methods such as downloading to a different location on the computer Hard Disk with no resolution.
What did perplex me was the lack of hindrance the client had when installing the firewall. It appeared the only software that fell pray to the corrupting issue was the Anti Virus software. This is not uncommon as many viruses are designed to interrupt known Anti-Virus software. With this in mind, a stinger was downloaded which can be run at any time, and looks for a specific set of viruses that may cause issues such as harming the AV software. Sure enough, within 2 - 3 minutes of running the stinger, the Netsky virus was found, shortly followed up by Bugbear. Bugbear is quite a nasty virus, and it is this that is most likely responsible for blocking the AV installation. The virus also has a backdoor capability and probably acted like a magnet to a further set of viruses. Once the stinger had finished and the viruses removed, the AV software installed with no problems. A further full system scan performed with the newly installed AV software showed a clean system. Another interesting fact that has been presented to me is the likely a web user will encounter a virus whilst surfing the Internet. Ten years ago the likely hood that you receive a virus was 1 in 10000, now with broadband available and the increased complexity of viruses, it has come down to a scary 1 in 10! A sobering thought, but thankfully there is little need to fret if your Anti-Virus is installed and functioning correctly.
Interestingly enough, with the advancement of hand held and portable technology such as PDAs and mobile phones, virus creators are turning to these mediums to create havoc. Viruses are now available on PDAs and mobile phones which can erase all of your data such as your phone book, messages and personal data being carried. More complicated viruses are also being transported onto these devices and then passed onto computers when the devices are connected through cables, or wireless connections thanks to the ability to synchronise the mediums with a personal PC. So it won't be long before all mobile phones come with anti virus as standard. This is still in the very early stages just yet, so don't panic. We will all be aware of the danger as soon as it becomes a serious threat.
Chris - PC Disinfection Team
What did perplex me was the lack of hindrance the client had when installing the firewall. It appeared the only software that fell pray to the corrupting issue was the Anti Virus software. This is not uncommon as many viruses are designed to interrupt known Anti-Virus software. With this in mind, a stinger was downloaded which can be run at any time, and looks for a specific set of viruses that may cause issues such as harming the AV software. Sure enough, within 2 - 3 minutes of running the stinger, the Netsky virus was found, shortly followed up by Bugbear. Bugbear is quite a nasty virus, and it is this that is most likely responsible for blocking the AV installation. The virus also has a backdoor capability and probably acted like a magnet to a further set of viruses. Once the stinger had finished and the viruses removed, the AV software installed with no problems. A further full system scan performed with the newly installed AV software showed a clean system. Another interesting fact that has been presented to me is the likely a web user will encounter a virus whilst surfing the Internet. Ten years ago the likely hood that you receive a virus was 1 in 10000, now with broadband available and the increased complexity of viruses, it has come down to a scary 1 in 10! A sobering thought, but thankfully there is little need to fret if your Anti-Virus is installed and functioning correctly.
Interestingly enough, with the advancement of hand held and portable technology such as PDAs and mobile phones, virus creators are turning to these mediums to create havoc. Viruses are now available on PDAs and mobile phones which can erase all of your data such as your phone book, messages and personal data being carried. More complicated viruses are also being transported onto these devices and then passed onto computers when the devices are connected through cables, or wireless connections thanks to the ability to synchronise the mediums with a personal PC. So it won't be long before all mobile phones come with anti virus as standard. This is still in the very early stages just yet, so don't panic. We will all be aware of the danger as soon as it becomes a serious threat.Chris - PC Disinfection Team
Welcome to PC Disinfection. This website has been a long time in the making - around 4 months. Bear in mind at this point there are still some finishing touches to make. This section will be home to regular updates with information on the latest threats and issues. For now though, after making the whole web site, this section is just going to be a slight introduction. The mystery person who wrote this is me, Chris. I am responsible for the maintenance of the website and so most of the entries on the site will be from me. The content of this website is all my own and original, and not copied and pasted from any websites unless specifically stated.
If you have any problems or issues with the website, send a mail to me, or click on the forums, quickly register and then voice your opinions for all to see. The website was created using XHTML and CSS which can on some browsers make the positioning of some of the objects on the page out of place. In some cases the page may be illegible. If you have any problems contact us. Make sure you keep coming back here every few days to keep up-to-date with the latest issues on the Internet. I'm aiming to update once a week or quicker depending on the latest threats and concerns.
Remember, any problems, queries or questions just mail us or post a message in the forums.
Best Regards,
Chris - PC Disinfection Team
Chris - PC Disinfection Team
- Contents -
PAGE ONE 01/03/05 What is Identity Theft - 14/02/05 Random Passwords 01/02/05 Why create a virus? 28/01/05 Telephone Spoofing 27/01/05 Tsunami Spoof Appeal 25/01/05 AntiVirus Blocker 24/01/05 Introduction
- PC Disinfection Team -
The PC Disinfection team are based in Bristol in the United Kingdom. If you have a problem with a security threat, are concerned about your security level, or have any general questions that are not answered on this website, you can contact the PC Disinfection team and we will respond to you as soon as possible. Please see the contact details page for information on how you can contact us.
We can give you individual support on your problems by e-mail and if necessary, by phone or in person.