Eastern Oregon Net, Inc.
The Internet Done Right

Top Free Safety Downloads | Definitions | Online Resources
Antivirus | Hoaxes | Firewalls | General Security | Phishing/Email Scams | Web Content Filters & Popup Blockers | Privacy | Spyware

P H I S H I N G   A L E R T

EONI customers have been receiving emails asking for their EONI account information or other personal identification information.

Please note that all of these emails are fakes. These emails are what is known as "phishing." Phishing is a scam where someone is trying to gain access to your accounts or personal information. There are a number of resources to learn about phishing. The links below offer some good advice and explanations about phishing:

http://www.antiphishing.org/consumer_recs.html

CNET's November 2009 FAQ: Recognizing Phishing E-mails

Example of Bogus Phishing Email Message

While in the past, fraudulent attempts at getting your personal information were mainly aimed at imitating financial organizations (such as banks, PayPal, and similar institutions), these scams appear to be getting more widespread and targeting other companies. EONI and other Internet service providers are seeing a significant rise in these scams aimed at our customers.

Remember, EONI will NEVER ask for your password or other personal information via email. If you are ever in doubt about any communication from EONI about your account, please call us directly at either 962-7873 or our toll free number 1-800-785-7873.

If you have responded to any of the fake phishing emails and provided your password, then please contact us immediately and ask us to assign your account(s) new passwords.

Top Free Safety Downloads | Definitions | Online Resources
Antivirus | Hoaxes | Firewalls | General Security | Phishing/Email Scams | Web Content Filters & Popup Blockers | Privacy | Spyware

Introduction and Definitions

Online safety is an increasing concern for all of us. However, the Internet can be a wonderfully useful and relatively hazard-free resource provided that you exercise common sense and are armed with some basic information. We believe that the prudent Internet user should be equipped, at a minimum, with the following:

• antivirus software
• firewall protection
• spyware detection
• popup blockers
• awareness of common hoaxes or how to identify them
• password common sense
• protecting your credit

---

Online Resources

You may wish to consider some of the following products and resources to help keep your computing environment safe. While we do not provide free support for any third-party products such as these listed below, we have had good experiences with them, or have received positive recommendations for them from others. Please contact the publishers of these sites or manufacturers of these products for more information and support.

AntiVirus

• Kaspersky Anti-Virus: Free Online Virus Scanner
  The Kaspersky Online Scanner uses Microsoft ActiveX technologies to scan your computer for malicious code. The scanner uses MS Internet Explorer to scan your machine while online.
• McAfee AVERT Stinger
  Tool for removing specific high-threat viruses. Not a complete antivirus solution, but useful if you already have a known infection.
• Microsoft Malicious Software Removal Tool
  Microsoft has released the Microsoft Windows Malicious Software Removal Tool to help remove specific, prevalent malicious software from computers that are running Microsoft Windows Server 2003, Microsoft Windows XP, or Microsoft Windows 2000. The Malicious Software Removal Tool supersedes all virus-cleaner tools that were previously released by Microsoft. You can download the Malicious Software Removal Tool from the Microsoft Download Center. You can also run an online version of the tool from the Malicious Software Removal Tool Web site on Microsoft.com. To run the Malicious Software Removal Tool from either location, you must log on to your computer with an account that is a member of the Administrators group. If you are running Windows XP, you can also run the Malicious Software Removal Tool from the Windows Update Web site or by using Automatic Updates.
• Norton Antivirus
  Symantec's antivirus products
• Panda Online Activescan
  Panda says: Are you really sure that your PC is not infected? ActiveScan 2.0 is an advanced online scanner based on Collective Intelligence (scanning in-the-cloud) that detects malware that traditional security solutions cannot detect.
• Symantec Online Virus Check
  Requires Microsoft Internet Explorer 5.0 or higher with ActiveX and Scripting enabled.
• Symantec Security Response
  advisories and information on the latest virus threats
• Trend Micro Housecall
  Online antivirus scanning
• VirusTotal
  Submit a suspicious program file to VirusTotal and it will be run against at least 17 different antivirus programs. Free service.

Computer and Internet Hoaxes

• Snopes.com
  everything from "stupid computer user" stories to virus warning hoaxes (and the occasional real warning)
• Sophos Email and Virus Hoax Reports
  Mostly virus-related, but some coverage of other types of Internet hoaxes and scams. From an industry leader in malware protection and data protection.
• VMyths
  Truth about computer security hysteria

Firewall Software

• Firewall Debate: Hardware vs. Software
  SmallBusinessComputing.com comments on the relative merits of hardware vs. software firewalls.
• Gibson Research Utilities
  Gibson Research (founded by a member of the legendary Xerox Palo Alto Research Center) has a number of freeware firewall and security-oriented utilities such as LeakTest, ShootTheMessenger, and DCOMbobulator, as well as an online test of the security of your machine's vulnerability to the outside world.
• LifeHacker Reader's Choices for Windows [2008]
  List of most highly-regarded firewalls by Lifehacker readers. Caveat emptor: do some current research, but this might be a place to start.
• Zone Alarm
  software firewall to protect from intruders and unwanted outgoing transmissions. (Usually works well for home users, but can be problematic for business networks.)

General Security

• 10 dumb things users do that can mess up their computers
  From Tech Republic's '10 Things' blog
• An Analysis of Passwords Exposed in a 2011 Sony Security Breach
  This is an analysis done by a Microsoft MVP that shows what poor choices people are making when creating their passwords.
• Create effective passwords
  Microsoft's guidelines for the wrong and right way to deal with passwords
• Create Strong Passwords
  Microsoft's guidance for strong passwords
• Cyber Crime Black Market
  A January 2011 report from Panda Security (Adobe PDF document)
• Five Steps To A Good Password
  From About.com. Don't stop with just the first or second step; you should go through every step to achieve a reasonably secure password.
• Gibson Research Shields Up Test
  Online tests to determine Internet vulnerability of your computer to hacker attempts, file sharing, and open ports.
• GRC Ultra High Security Password Generator
  From Gibson Research.
• How To Create A Good Password That You Will Not Forget
  Some good tips from MakeUseOf.com
• Identity Theft: What, Me Worry?
  Some case histories from PC Magazine on the worst spyware scenario -- identity theft.
• Internet fraud has taken a sinister new turn
  June 2008 article on how malware can be delivered (by organized crime and others) to attack and compromise the computers of uninformed, unprepared and unsuspecting computer users.
• Internet Storm Center
  The SANS Institute tracks "Survival Time History" to show average times that an unprotected computer can be connected to the Internet before being attacked by a worm or virus -- about 20 minutes as of this writing. See the SANS guide entitled "Windows XP: Surviving the First Day." Also see lots of other useful (but often quite technical) information on this site.
• KeePass
  Open-source password manager, often used in conjunction with DropBox.com for multiple computers. If you use it, or any other password manager, be sure to set a VERY strong MASTER password.
• LastPass
  Online password manager. If you use it, or any other password manager, be sure to set a VERY strong MASTER password.
• Microsoft Password Checker
  Rates the relative strength of your password. NOTE: This does not guarantee the security of the password. This is for personal reference only.
• PCTools Secure Password Generator
  Online generator. Passwords CANNOT be recreated so store any generated passwords in a safe, secure location.
• Research Proves Your Password Sucks
  This article from Maximum PC shows the results of some recent research by Microsoft about password choices. And they are overwhelmingly BAD choices.
• Symantec Online Security Check
  Tests your computer for exposure to hackers and other online threats.

Phishing and Email Scams

• Anatomy of a Phishing Email
  The How-To Geek shows you how to examine an email message in detail and discover whether it might be a phishing trap. April 2011.
• Anti-Phishing.org
  Phishing attacks involve the mass distribution of 'spoofed' e-mail messages with return addresses, links, and branding which appear to come from banks, insurance agencies, retailers or credit card companies. These fraudulent messages are designed to fool the recipients into divulging personal authentication data such as account usernames and passwords, credit card numbers, social security numbers, etc. See the Phishing Archive for examples!
• Opting into Identity Theft
  PC Magazine [7/21/04] on how "phishing" requires that you "opt-in". Read on ...
• Phishing: Spam that can?t be ignored
  From ZDNet: What is 'phishing' and how to protect yourself
• Security Tip: Support your candidate, not scammers
  Beware of phishing scams during the presidential election campaign.
• What to Do If You've Given Out Your Personal Financial Information
  Antiphishing.org's checklist of steps you take if you have been victimized

Popup and Content Blockers

• Configure Your Browser
  General instructions for configuring your browser to block popups and to adjust other settings
• K9 Web Protection
  free web content filter/parental control
• NetNanny for Mac and Windows
  web content filter/parental control
• OpenDNS FamilyShield
  free basic content filter works with Mac, Linux, Windows, and most any Internet connected computer
• Parental Controls Product Guide
  This web site has information on various types of parental controls. See the product guide link in the upper left corner of the web site for comparisons of various solutions.

Privacy

• Don't Be An Inadvertent Spammer!!!
  Learn how to send Email to undisclosed recipients without exposing email addresses of others.
• Google Yourself
  CNet on how and why to 'Google yourself'

Spyware Detectors

• Ad-Aware
  Detect and remove "stealth" software installed on your system without your knowledge
• Beware of Rogue Antispyware and Antipop-up products
  ZDNet comments on how to identify bogus anti-spyware
• How To Avoid Spyware
  Sound advice from PC Magazine.
• PC Magazine: 11 Signs of Spyware
  Some ways to discover whether your system is infected with spyware.
• SpyBot Search and Destroy
  Freeware detection system for finding spyware, adware, "drive-by downloads" and other troublesome software you didn't know exists
• SuperAntiSpyware
  Free desktop and portable editions available for personal use.
• Windows Defender
  Windows Defender is software that helps protect your computer against pop-ups, slow performance, and security threats caused by spyware and other unwanted software by detecting and removing known spyware from your computer.