Consumer Statistics Survey – 50% Of Computer Users Lost Data In 2010

According to a survey conducted online by ConsumerStatistics, between December 1, 2010 and December 4, 2010 – most of us are concerned, to some extent, about the loss of family photos stored on our computers. It seems the “concern”, is more than justified.

Of the 6,149 people in 128 countries who participated in the ConsumerStatistics study, 67 per cent reported having experienced the loss of digital photos, and additional files, through a Hard Drive failure, accidental deletion, a malware attack, theft, or exposure to a natural disaster including fire, flood, and so on. I found it most surprising, that just under 52 percent reported the loss of  irreplaceable data within the last year.

Survey methodology:

Survey conducted online between 12-01-2010 and 12-04-2010.

Survey methods include: Email, focus groups, surveys, social media.

Here’s a sample question from the survey: How often do you backup your home PC?

Survey Highlights:

89.1% of home PC users do not perform regular backups.

67.1% of home PC users have lost pictures and files on their home PC. 51.4.% within the last year.

69.2% of home PC users are most worried about losing their digital pictures.

Survey Summary:

The survey conducted found that people do neglect doing proper backups for their home PCs, and put their valuable data at unnecessary risk.

Over 89% of the respondents do not perform regular backups, and of these people, 76.6% have suffered from data loss. Yet, 91.3% of respondents surveyed believe that backups are important.

As a technologist, the survey stats are not a all surprising – data loss is inevitable; and it happens much more frequently than an average computer user might suspect.

As regular readers of this site are aware, there is a cornucopia of free backup solutions, readily available for download on the Internet, which range from the uncomplicated and easy to use, to the more complex specialty solutions designed for power users.

A good example of a simple backup solution can be found in this article –

Free EASEUS Todo Backup – Easy Backup For The Rest Of Us, posted here January 7, 2010. Additionally, a site search here for “backup solutions”, will return 20+ articles on free desktop and online backup applications.

Failure to mitigate the risks associated with the lack of regular backup, defies common sense. Experience tells me that you will experience data loss. Recovery of that data, while not entirely painless, will be possible – if you have prepared for the inevitable.

The ConsumerStatistics study makes for interesting reading, and I encourage you to read the full results here.

If you found this article useful, why not subscribe to this Blog via RSS, or email? It’s easy; just click on this link and you’ll never miss another Tech Thoughts article.

BitDefender Releases Free Antispam for Linux Mail Servers

BitDefender styles itself as “an award-winning provider of innovative Internet security solutions”, and I must admit that I agree. Moreover, BitDefender has taken a leading role in providing free security solutions, including a host of specialty malware removal tools – particularly, in the past few months.

Yesterday, BitDefender released a Free Antispam application designed specifically for Linux Mail Servers. This new application is driven by BitDefender’s award winning anti-spam engine, and according to Alexandru Balan, BitDefender’s Innovation & Technology Product Manager, the application is aimed at “small businesses and individuals who run mail servers in environments other than Windows, but are dissatisfied with the lackluster performance of existing open-source or proprietary antispam solutions.”

Fast facts:

Antispam – Using constantly updated blacklists and whitelists of known Spam sites, Bayesian learning provides another layer of detection that adapts to the changes made by Spammers to bypass static Spam filters.

Antiphishing – While considered more of personal threat than a corporate threat; phishing sites can also harvesting information from your company’s employees. Using a combination of constantly updated blacklists and whitelists, BitDefender prevents users from known accessing phishing sites and preventing compromise.

Content Filtering – Content filtering allows for the detection of predefined information such as credit card or account information, report names, client databases, etc. from passing outside the company’s control.

High performance NeuNet technology (advanced adaptive neural network).

Easy installation and easy to use web-based and command line administration interface.

Highly compatible kits that are available for all major Linux distributions (available as RPM, DEB, IPK) and are Linux FHS compliant.

System requirements:

Linux – Linux Kernel 2.6.18 or newer, glibc 2.3.1 or newer, libstdc++ from gcc 4 or newer.

Supported Distributions:

Debian GNU/Linux 3.1 or newer, Fedora Core 1 or newer, Novell SuSE Linux Enterprise Server 9, Linux 8.2 or newer, Mandrake/Mandriva 9.1 or newer, RedHat Enterprise Linux 3, Linux 9 or newer

BitDefender Security for Mail Servers, is the only product to have won a VBSpam award in every single VBSpam test – and with one of the highest spam catch rates in this test, and no false positives, it outperforms all other products and achieved the highest final score in the September 2010 test.

Download Free AntiSpam for Mail Servers at: BitDefender – registration required.

A user guide, in PDF format, is available here.

If you found this article useful, why not subscribe to this Blog via RSS, or email? It’s easy; just click on this link and you’ll never miss another Tech Thoughts article.

Download Immunet Protect 2 – Free Cloud Based Antivirus Application

When I first reviewed Immunet Protect in May of this year ( while it was still in Beta), I was impressed with it’s light use of system resources and bandwidth. Now, with the official release of Version 2, (June 17, 2010), I’m even more impressed.

Immunet Protect is a lightweight cloud based, community driven, antivirus application, (available in both a free, and a fee version), designed to add a layer of protection while working in partnership with the most popular antimalware solutions.

On my principal home machine for example, Immunet Protect lines up with Microsoft Security Essentials and ThreatFire, to shore up any vulnerabilities my system might have to to zero-day threats.

Zero-day threats are those that are defined as malware that has been written and distributed to take advantage of system vulnerabilities, before security developers can create, and release, counter measures.

In real time, Immunet Protect keeps track of the state of security in the collective community (network), and should a member of the network (the community), encounter malware, you (as a member of the protected community), are instantly protected against the threat.

A rather more impressive security solution than having to wait for a malware definition database update. An update that may take several days. Days in which you are effectively open to infection.

The Beta version had limited functionality since it did not provide complete scanning – it acted as a defender only. But, all that has changed with the addition of new features in the final release, which include:

Two active scanning engines

Custom Scan

Scheduled scan

Context menu scan

And more

Just like the Beta, the final release was equally straightforward to install, and ran without complication.

If you’ve used the Beta release you’ll find (as the following screen capture illustrates), a substantially improved user interface, with much more functionality.

Setting the operating parameters (the protection settings), is straightforward. In the following screen capture you’ll notice tooltip pop outs which explain the function of each setting. A very cool feature for less experienced users.

During my initial full scan, CPU usage ran at roughly 20% on a dual core machine. And, system memory usage was surprisingly low at only 36 MB, as the following screen capture shows.

I have a preference for antimalware solutions that include the ability to launch a specific file scan from the Windows Explorer context menu, and Immunet Protect has included this feature.

Should you consider installing, and running, a Cloud Antivirus as supplementary antimalware protection?

If you are uncertain, then consider this:

The Internet is an uncertain world at the best of times

Cybercriminals design specific malware to exploit vulnerable systems without user interaction being required.

No single security application is capable (nor should we expect a single application to be capable), of providing adequate computer system protection. Gaps exist, in protection capabilities, in even the most sophisticated security applications.

Layering (or stacking) security applications, offers the best chance of remaining infection free, by closing these gaps.

A cloud based protective solution, in this case Immunet Protect, is a major step in shoring up any weaknesses, or gaps, and significantly increase your overall ability to detect malware.

Keep in mind however, that even the best layered protection strategy will not make up for lack of experience, and intuitiveness, when surfing the Internet. So, I’ll repeat what I have said here, many times – “knowledge, awareness, and experience are critical ingredients in the escalating battle, against cybercriminals.”

Immunet Protect Fast facts:

Fast Antivirus: Immunet leverages the speed of cloud computing to deliver real-time protection to your PC

Light Antivirus: Immunet is up to 35 times lighter than traditional antivirus solutions

Real-time Antivirus: Immunet provides cloud-based protection that is always up-to-date against viruses, spyware, bots, worms, Trojans, and keyloggers without slowing down your PC. No need to download any virus signature files!

Companion Antivirus: Immunet is compatible with existing antivirus products to help protect you better. Add an extra, lightweight layer of protection for free

Community Antivirus: Immunet’s Collective Immunity technology protects all users the instant that a virus is detected on one PC

System requirements: Windows XP with Service Pack 2 or later, Vista (32-bit and 64 bit), Windows 7 (32-bit and 64-bit).

Download at: Developer’s site

A final note: I recommend that you approach installation cautiously, since you will be offered the opportunity to install the Ask.com toolbar. There are reports that some users had the toolbar installed despite their refusal. If, this is the case, Immunet Protect needs to address this issue immediately.

In March of this year, I wrote a piece “We Don’t Want No Stinkin’ Toolbar!”, which drew a large number of outraged comments from readers, aimed at software developers.

So, I’ll repeat, for the benefit of developers, a statement I made in that article –

“Stop with the crapware already. If you’re pissing me off, just consider what you’re doing to an average user. Like it or not, there’s a lesson here. In the long run, your behavior will cost you – big time.”

Update – June 21,2010: Immunet Protect is a highly responsible company which listens to its community of users. And, based on feedback received, the company has chosen to remove the Ask toolbar from the application installer as a recent posting (shown below), on the community site clearly indicates.

“Now that our release is out, we’ve had a moment to sit back and reflect on the feedback we’ve gotten from our community. Some of the feedback we received was clear that our implementation of a build with the ASK toolbar gave some people a degree of discomfort.

As a result we’ve released a new build – Version 2.0.11.4. This new build fixes some outstanding UI issues and completely removes the ASK toolbar. In the next couple of weeks we’ll discuss this issue with our Community to review our next steps.”

Kudos to Immunet Protect, for taking this responsible position that other companies should learn from, and emulate.

If you found this article useful, why not subscribe to this Blog via RSS, or email? It’s easy; just click on this link and you’ll never miss another Tech Thoughts article.

Download Immunet Protect – A Free Community Based Cloud Antimalware Application

I have a number of computers; not all of which face the Internet, but those that do, are protected from compromise by a layered (or stacked), security approach.

Here’s an example of a layered security approach – one that I use on my principal home machine. The following applications are stacked on this machine, in order to cover any potential gaps in security coverage:

• PC Tools Firewall Plus. (Freeware)
• ThreatFire. (Freeware)
• Microsoft Security Essentials. (Freeware)
• WinPatrol. (Freeware)
• GeSWall. (Freeware)
• Zemana AntiLogger. (Commercial) – free trial available.

I should add, I use two additional free security applications, SuperAntiSpyware and Malwarebytes Anti-Malware, as secondary scanners on a weekly basis, as an added precaution.

Nothing is static though, when it comes to ensuring that my machines continue to be protected in the “real” Internet world. A world which is generally a much more demanding world, than that experienced by an average computer user.

Since I operate in this real world – not a test tube environment, I expect my antimalware applications to pass “real world” testing – not “test tube” testing, before relying on them for protection.

For this reason, when I test anti-malware applications, it often takes considerable time in order to get to the heart of the matter – does an application work in “my real Internet world?”

Arguable, the majority of available antimalware applications continue to rely on well established technologies. You could, if you like, replace “well established”, with “old”, or, some might say – “outdated”.

Since most viruses, worms, Trojans and other types of Internet threats only last 24 hours, how do security applications that rely on a definition database to identify malware files (most anti-malware applications), keep up with this onslaught? The simple answer is; they don’t.

Contrast this, with new and emerging security technologies, particularly Cloud based antimalware applications.

I was recently introduced to a new Cloud based antimalware solution,  Immunet Protect, which I have since come to rely on, and have now added to my layered security approach.

Immunet Protect, despite the fact it is Beta (a new enhanced final version is scheduled for release at the end of May which will include active scanning), is a community based antimalware solution which makes it just a little bit different – but in a highly positive way. If you’re familiar with the Browser protection application WOT (Web of Trust), then you have a sense of “community based” applications.

In real time, Immunet Protect keeps track of the state of security in the collective community (network), and should a member of the network (the community), encounter malware, you (as a member of the protected community), are instantly protected against the threat.

Or, as the developer puts it  –  “Every time someone in this collective community encounters a threat, everyone else in the community gains protection from that same threat – in real time.”

A rather more impressive security solution than you having to wait for a malware definition database update. An update that may take several days. Days in which you are effectively open to infection.

Nevertheless, Immunet Protect has been developed to work in conjunction with the most popular antimalware solutions, for added protection. A list of compatible antimalware solutions follows, later in this article.

Installation was straightforward and ran without complication, as the following screen capture indicates.

Immediately following installation you may choose to run a “Flash Scan”, which probes running process, and load point process, for contamination.

Having the ability to share Immunet Protect with your Facebook and Twitter contacts, I though, was a very cool feature. After all, there is strength in increasing numbers.

Setting the operating parameters (the protection settings), is, again, straightforward.

The following screen capture illustrates the results of my first Flash Scan. Notice that Immunet Protect tracks programs installed over a selectable time frame, and indicates the safety of the installs. As well, the total number of current threats for which protection is offered, is indicated. In this case, 12 Million, plus.

The History function provides you with a database of scans completed and the results of those scan.

When active, an Immunet Protect icon (far left), sits in the Taskbar as the following screen capture shows. In this screen capture you can also see my primary security solutions are active and responsive.

I must admit, I feel an added sense of security when following boot up, Immunet Protect runs an automatic Flash Scan.

Finally, there is virtually no draw against system resources while running Immunet Protect, on a dual core Windows 7 test platform.

Should you consider installing, and running, a Cloud Antivirus as supplementary antimalware protection?

If you are uncertain, then consider this:

The Internet is an uncertain world at the best of times

Cybercriminals design specific malware to exploit vulnerable systems without user interaction being required.

No single security application is capable (nor should we expect a single application to be capable), of providing adequate computer system protection. Gaps exist, in protection capabilities, in even the most sophisticated security applications.

Layering (or stacking) security applications, offers the best chance of remaining infection free, by closing these gaps.

A cloud based protective solution, in this case Immunet Protect, is a major step in shoring up any weaknesses, or gaps, and significantly increase your overall ability to detect malware.

Keep in mind however, that even the best layered protection strategy will not make up for lack of experience, and intuitiveness, when surfing the Internet. So, I’ll repeat what I have said here, many times – “knowledge, awareness, and experience are critical ingredients in the escalating battle, against cybercriminals.”

The following Anti-Virus packages have been tested to work alongside the Immunet Protect beta. Immunet Protect should be able to install alongside these packages and significantly increase your overall ability to detect viruses.

AVG 8.5 (Free) (Windows XP SP2 / Vista)

AVG 9 Free (Windows XP SP3 / Vista SP1 / Windows 7)

Avast! Free & Premium 4.8/5.0 (Windows XP SP3 / Vista SP1 / Windows 7)

Avira 2009 Personal Free (Windows XP SP3)

Norton Anti-Virus 2008 (Windows XP SP2)

Norton Anti-Virus 2009 (Windows XP SP2 / Vista)

Norton Internet Security 2008 (Windows XP SP2)

Norton Internet Security 2009 (Windows XP SP2 / Vista)

Norton Internet Security 2010 (Windows XP SP3 / Vista SP1 / Windows 7)

Norton 360 2009 (Windows XP SP2 / Vista)

Norton 360 2010 (Windows XP SP2 / Vista SP1 / Windows 7)

Mcafee Security Center 9.3 (Windows XP SP3 / Vista)

Mcafee Security Center 2009 (Windows XP SP2)

Microsoft Security Essentials (Windows XP SP3 / Vista SP1 / Windows 7)

Trend AntiVirus 2010 (Windows XP SP3 / Vista SP1 / Windows 7)

Trend AntiVirus + AntiSpyware 2010 (Windows XP SP3 / Vista SP1 / Windows 7)

Trend Virus Buster 2010 Vista (Japanese Marketplace) (Windows XP SP3 / Vista SP1 / Windows 7)

K7 Total Security 2010 (Windows XP SP3 / Vista SP1 / Windows 7)

System requirements: Windows XP with Service Pack 2 or later, Vista (32-bit and 64 bit), Seven (32-bit and 64-bit).

Download at: Developer’s site (IMMUNET)

If you found this article useful, why not subscribe to this Blog via RSS, or email? It’s easy; just click on this link and you’ll never miss another Tech Thoughts article.

Geeks and Techies – Get Off Your High Horse!

It has been my experience (shared by most average computer users I know), that Geeks, Techies and computer industry pundits have a tendency to be arrogant and contemptuous of others who do not posses the level of technical understanding that they suppose themselves to have.

This trait of course is not restricted to those involved in computer technology. I’ve met more than a few auto mechanics that were as arrogant as any arrogant computer Techie I’ve come into contact with.

It seems to me however, that in the computer industry it is epidemic; from low level consumer oriented technical support at some of the popular retail chains, to software developers who choose to forget that the Computer World/Internet is populated by average users who generally lack sophisticated skills.

I never fail to be amazed when I read the barrage of techno language and techno babble speak aimed at that mythical computer user who, in reality, doesn’t exist. The computer industry needs to come to an understanding that there is a substantial knowledge gap that exists in the real world of computing.

Recently, I read an article by Larry Dignan, Editor in Chief of ZDNet, in which he described the continuing debate surrounding the viability of the anti-malware industry. It seems, at some senior levels of the industry, it is a commonly held belief that anti-malware software is virtually worthless since it cannot keep up with rapidly evolving threats. The proposed solution then is the elimination of anti-virus software.

In my view, this is an arrogant and condescending approach to a real world problem, a real world inhabited by real people, and not just by Techies who are familiar with all of the issues surrounding system security. This is the type of pseudo advice that could lead to chaotic consequences for a typical user.

Fact: Typical users simply don’t know how to protect themselves adequately against the ever evolving threats on the Internet.

The reality is, the majority of computer users are undereducated when it comes to the dangers and threats that the Internet poses to their machines, and to their personal privacy.

Anti-malware applications are designed to help average users; not the technically sophisticated. So, of course there is a need for them.

I have a computer sophisticated Internet friend, one who teaches University level Computer Sciences, who frequently reminds me “Too much security is still not enough”. Sadly, he is right.

I find most tech people (remember I am one), can’t see past the end of their nose when it becomes necessary to look at the broader picture. For example, it would be helpful to develop a view that encompasses the various degrees of computer competency that exists.

The following comment, from one of the forums I participate in, sums it up nicely, “Until folks stop trying to exploit/cripple/destroy others, we will need anti-malware software as part of the mix of security solutions. To those who think not … try a virus … you’ll change your mind.”

McDonalds Email Christmas Offer is Scroogy Malware

Who’s going to turn down an email savings coupon from that great American institution – McDonalds? The cyber-criminals behind this spam/scam email are counting on the fact that not many of us will turn it down.

Let’s face it – we’re all pretty used to McDonalds wishing us a “Merry Christmas” so getting an email with that heading is likely to entice many of us to “Simply print the coupon from this Email and head to your local McDonald’s for FREE giveaways and AWESOME savings” as the email instructs.

(Pic courtesy of Panda)

According to PandaLabs, Panda Security’s laboratory for detecting and analyzing malware however, you won’t get a coupon, you won’t get “FREE giveaways and AWESOME savings”, but you will get infected by the P2PShared.U worm.

“Once on the computer”, according to Panda, “the worm sends out emails with the same subject and appearance to other users. Finally, it copies itself to folders of various P2P file-sharing programs (eMule, LimeWire, Morpheus, etc.) with names relating to security software, image editing programs, program cracks, etc. This way, any user that tries to download any of these applications will be actually letting a copy of the worm into their computer”.

At this time of the year, we can expect to be bombarded by socially engineered email spam/scam with a Christmas or Holiday Season theme, so be more vigilant than you normally would be.

Don’t open unknown email attachments

Don’t run programs of unknown origin

Disable scripting features in email programs

Ensure your anti-virus software scans all e-mail attachments

If you are interested in staying on top of the latest in Internet security news, consider adding Panda Security news to your feed reader by adding the following URL – http://feeds.feedburner.com/PandaSecurity.

IRS Tax Notification Refund Scam – Don’t be Victimized!

After the last annual calculations of your fiscal activity we have determined that you are eligible to receive a tax refund of $939.40. – Fraudulent IRS email

Now who wouldn’t be thrilled to receive an email informing them that U.S. Internal Revenue Service is going to play Santa Clause and give them $939.40? Well I wouldn’t object, and I suspect you wouldn’t either. Like you, I can think of a few places where this unexpected windfall could be put to good use.

Despite the fact that I am a Canadian, and I reside in Canada, it seems the U.S. Government is eager, and determined, to give me money for the third time in just a few months. Yes, this is the third such scam email I have received in just the last few months.

Since I am a Canadian I do not file U.S. income tax returns and I do not qualify for a refund from the IRS. Despite this, the cyber-criminals responsible for this fraudulent email were optimistic that I would click on the enclosed email link.

Clicking on the link would have redirected me to a spoof IRS page, comparable to the original site, and I would then have begun a process in which the scammers would have stripped me of all the confidential information I was willing to provide.

Information requested on the spoof IRS page includes; social security number, credit card and debit card numbers, postal address, and date of birth. The financial and personal details entered into this fraudulent web site are harvested by cyber-crooks who would have used this information to commit identity and financial theft.

The reality is of course, the IRS doesn’t send out unsolicited emails asking for personal or financial information. Credit card numbers, ATM PIN numbers and additional financial information would never be required to enable you to discover the current status of your tax return, or your tax refund.

According to the IRS there are over 1600 IRS phishing sites operating, or online, at any given time in search of potential victims willing to hand over sensitive financial data. It’s easy to see that the emails I received are not isolated incidents. The IRS confirms that by their estimates, 1% of all spam email is an IRS phishing scam.

What makes this particular type of scam so potent is, the average person on receiving an email from an authoritative source, generally lowers their defenses. As well, giving the time of year, the timing is right. Be warned, IRS scam emails always ramp up before tax day and continue for some time afterwards.

You know what to do right? Follow the tips below to protect yourself against these threats:

• Your bank, the IRS, or any other legitimate organization will never ask you to divulge account information or passwords via email. Never give out this information, especially via email.
• Don’t open emails that come from un-trusted sources.
• Don’t run files that you receive via email without making sure of their origin.
• Don’t click links in emails. If they come from a known source, type them in the browser’s address bar. If they come from an un-trusted source, simply ignore them.
• Keep your computer protected. Install a security solution and keep it up-to-date. Also, before carrying out any kind of financial transaction on the Web, I recommend that you scan your computer with a second-opinion security solution, such as NanoScan.

Be kind to your friends, relatives, and associates and let them know that these types of scams are now epidemic on the Internet. In that way, it raises the level of protection for all of us.

To help you fight back, the following information has been taken from the official IRS web site and provides instructions on how to assist the IRS in shutting down these schemes.

The good news is that you can help shut down these schemes and prevent others from being victimized. If you receive a suspicious e-mail that claims to come from the IRS, you can relay that e-mail to a new IRS mailbox, phishing@irs.gov.

Follow instructions in the link below for sending the bogus e-mail to ensure that it retains critical elements found in the original e-mail. The IRS can use the information, URLs and links in the suspicious e-mails you send to trace the hosting Web site and alert authorities to help shut down the fraudulent sites. Unfortunately, due to the expected volume, the IRS will not be able to acknowledge receipt or respond to you.

IRS reporting site