Internet Interests

Surfing Responsibly

Isn’t it odd how we, as security professionals, are careful to pay attention to what is happening all around us and yet, when we get onto the Internet, we all too frequently overlook the obvious warning signs and allow ourselves to be duped by unscrupulous anonymous sources?

For instance, we’ve all received email hoaxes telling us about how Microsoft was going to send us $245 just for forwarding an email. How many of us actually took the time wonder why in the heck Microsoft would make such an offer before going ahead and forwarding the email message to others in hopes that maybe it was true and that maybe some generous stranger was indeed going to send us money (even though we hadn’t given anybody a mailing address to send it to)? Did you take a moment to look and see if who sent you the message were anybody that you actually know before you sent it on to others? Did you check to see if it was a hoax? Did you look at the email header to see who else had been sent this same message? Did you realize that by forwarding the message, you are providing SPAMMERS with fresh email addresses for them to use?

We are usually diligent when it comes to Human Resources background checks but do you investigate and validate your Internet sources before committing yourself to them? Do you consider where the information is coming from and what the presenter’s motivations are before delving into the content that they are presenting? Do you watch for signs of bait-and-switch practices, hidden agendas, or collateral associations before you believe what they have to say? Do you ever check their references or cross-reference their information?

If we see a crime, we report it. When you come across a website that is committing a crime, do you report it? Do you warn others about what the website is doing illegally? Do you document your Internet crime reporting just in case you are ever asked to be a court witness? Do you attempt to immediately document what happened before reporting the crime? Do you try to get print-screens so that you can show others what to watch out for and what happened to you?

We are usually very protective of our personal confidential information and there are certain key pieces of information that we would never give to a stranger. Have you ever given away your “mother’s maiden name” while doing a genealogy search? Have you given away your social security number or taxpayer ID in order to get a “free credit report”? When was the last time you performed a virus check on your computer to make sure that someone hasn’t installed a virus that is recording your keystrokes when you are online and then sending them off to the culprit so that they might find out what your passwords are?

Summary
The point that I am trying to make is that the Internet is every bit as untrustworthy as our everyday lives. There is a mixture of both really good and really bad. There are criminals of all kinds in real life and there are criminals of all kinds and many new ones on the Internet. Whenever you are on the Internet you should always be wary of the information you are being given, as well as the information you are giving away.

Respectfully submitted by Steve Duell
SFBA Chapter Webmaster
2003 ARVP Chapter Internet Development
Send replies to webmaster@sfasis.org