West Virginia University

Security

Top 10 Security Tips

  1. Use the Automatic Update feature in Microsoft Windows to automatically install critical security updates. Go to http://update.microsoft.com to immediately install the latest security updates and configure the Automatic Updates feature.
    • Other operating systems (e.g. Mac OS X) and web browsers (e.g. FireFox) have similar automatic update features.

  2. Install an Internet security suite.
    • These suites employ anti-virus and anti-spyware scanners, along with intrusion prevention software and a firewall.
    • The firewall is particularly important if you have a notebook computer that you connect to public networks, such as ResNet and wireless networks in airports and coffee shops.
    • It is critical that you maintain the subscription and that the software is configured to get updates on a daily basis; otherwise, it cannot detect the newest threats to your computer.
    • WVU has licensed Symantec Endpoint Protection for student, faculty, & staff. Download Symantec Endpoint Protection.
    • Schedule a daily scan for viruses, spyware and other security threats.
    • There are viruses that target Macs, so you need an Internet security suite regardless of the operating system you choose.

  3. Use a Cable/DSL router.
    • The router will provide an additional layer of protection similar to a firewall. Defense in layers is a common and effective security tactic.

  4. Install and use Microsoft's Baseline Security Analyzer to identify and correct potential vulnerabilities.
    • It is an easy-to-use tool that helps you assess your computer's security state in accordance with Microsoft's security recommendations. It also offers specific guidance for correcting vulnerabilities.

  5. Secure your web browser.


  6. Make sure every user account on your computer has a password.
    • Accounts without a password make your computer an easy target for hackers and viruses.
    • Use hard-to-guess passwords such as "sUnE2daY!".
    • Passwords should be a minimum of 8 characters in length, and they should include a mix of uppercase and lowercase characters, numerals, and special characters, such as @, $, %, &, etc. Although special characters make your password more secure, some systems may not allow their use in passwords.
    • Change your password every 90 days.

  7. Do not open email attachments that you are not expecting, even if it comes from someone you know.
    • If the attachment is from someone you know, confirm with the sender that he/she intended to send the attachment.

  8. Do not click on pop-up ads.
    • The version of Internet Explorer in Windows XP Service Pack 2 and Windows Vista automatically blocks pop-up ads

  9. Do not download and install software, screensavers, etc. from websites with which you are not familiar - if it's free, it's probably spyware.


  10. Backup your data to CDs or DVDs regularly.

Top