בס''ד

How many of us realize we're computers, rather aptly called "wetware" by geeks? How many of us realize the the information we carry about ourselves and others is incredibly valuable to the bad guys out there?

Of course, I can't discuss the subject in depth here, but I do leave you with some notes and pointers for today. When I Think Like A Criminal here's what I'm looking for:

1. I don't need your online banking password. Any website password of yours will do! According to Trusteer 73% of users' passwords for other less important sites are the same as their online banking password!
2. I'll trawl your public information on social networks such as Facebook or Google Buzz to find answers to your secret questions. I could probably find your Mom's maiden name and your pets name easily enough.
3. I'll send you an email link, because I know you're smart enough not to click it. Then I'll send you a fake warning email from a bank about the previous email with a link in it too. That might link to the Bank's website but also spawn a fake pop-up to get your details - and I'll validate them too and then send you along to your online banking account. After you've done I'll empty it out.
4. I'll send out fan pages for you to 'Like' on Facebook, but they'll load another Facebook logon page that looks just like the real thing so I can gather your Facebook password and bust open your personal details and those of your friends! Maybe I'll be cheeky enough to ask that my application can access your profile information and update your profile page so that many more people can access it... think about the shark attack video and the myriad of free apps on Facebook that are doing the rounds. They might not be malicious, but how can you tell the difference? You'll even send it on because it's so cool and I'll get more info than I could ever have dreamed of.
5. I'll get some kind of malware (how much free stuff did you download this month without caring where it came from because it's so cool) on your computer that uses the awesome power of your fancy graphics card to crack the encryption on your spreadsheets and password caches (because it is convenient for you to tell your browser to remember your password!)

Let's think about this for a while. As computers become more secure it is the wetware between the chairback and the keyboard that is the most vulnerable. The wetware is you!

1. Concentrate whenever you get a dialog for your name, password or any other details. Consider whether the behaviour you're seeing is normal. If you've logged on already the pop-up or request is probably suspicious!
2. Secure your private information on social networks
3. Don't use dumb obvious passwords or the same passwords on multiple sites. With the capabilities of graphics processors in home PC's today you better use at least a 12 character password that is not a common word!
4. Never ever click on a link in an email from a bank or anywhere else, unless you're doing so to validate a site you've just signed up to. Even those friend status updates emails from Facebook could be your downfall.
5. Do not save your passwords for websites just because it is convenient.

Look after your computer like you look after your brain; maybe even more carefully. I can't hack your brain when you're dead but I can steal your information from a live or dead PC.