While there is always risk associated with online activities, by following a few simple steps and setting up some basic security measures, you can minimize that risk and protect your computer. Here are some simple guidelines to follow:

• Don't open unsolicited or unknown email messages. If you do get an email or pop-up message asking for personal information, don't reply or click on the link in the message. Do not respond to solicitations for your personal or financial information. If you believe there may be a need for such information by a company with whom you have an account or placed an order, contact that company directly in a way you know to be genuine. Never send your personal information via email as email is not a secure transmission method.
• Many viruses sent over email or Instant Messenger won't damage your computer without your participation. For example, you would have to open an email or attachment that includes a virus or follow a link to a site that is programmed to infect your computer. So, don't open an email attachment even if it appears to be from a friend or coworker unless you are expecting it or know what it contains. You can help others trust your attachments by including a message in your text explaining what you're
• If you are shopping online, be careful about providing your personal or financial information through a company's website without taking measures to reduce the risk. There are some indicators that show vendors have taken measures to secure their sites such as a lit lock icon on the browser's status bar or a website URL that begins "https:" (the "s" stands for "secure").
• Read website privacy policies. They should explain what personal information the website collects, how the information is used, and whether it is provided to third parties. The privacy policy also should tell you whether you have the right to see what information the website has about you, whether they provide and/or sell your information to third parties, and what security measures the company takes to protect your information. If you don't see a privacy policy - or if you can't understand it - consider doing business elsewhere.
• It's remarkably simple for online scammers to impersonate a legitimate business, so you need to know whom you're dealing with. If you're shopping online, check out the seller before you buy. A legitimate business or individual seller should give you a physical address and a working telephone number at which they can be contacted in case you have problems.
• Anti-virus software protects your computer from viruses that can destroy your data, slow your computer's performance, cause a crash, or even allow spammers to send email through your account. It works by scanning your computer and your incoming email for viruses, and then deleting them.
• Firewalls help keep hackers from using your computer to send out your personal information without your permission. While anti-virus software scans incoming email and files, a firewall is like a guard, watching for outside attempts to access your system and blocking communications from and to sources you don't permit.
• Enable automatic updates.
• Anti-spyware software helps protect your computer from malicious spyware that monitors your online activities and collects personal information while you surf the web. It works by periodically scanning your computer for spyware programs, and then giving you the opportunity to remove any harmful surveillance software found on your computer. Some anti-virus software contains anti-spyware capability. Given the increasing sophistication of spyware programs, consider using two different anti-spyware program search one looks for slightly different sets of threats, and together they may offer increased protection.
• Many free downloads whether from peers or businesses come with potentially undesirable side effects. Spyware is software installed without your knowledge or consent that adversely affects your ability to use your computer, sometimes by monitoring or controlling how you use it. Not only can spyware programs affect your computer use and access your personal information, but in some cases they can also use your computer to access or launch attacks against others. To avoid spyware, resist the urge to install any software unless you know exactly what it is. You can install separate anti-spyware software, and then use it regularly to scan for and delete any spyware programs that may sneak onto your computer.
• Use strong passwords or strong authentication technology to help protect your personal information. Keep your passwords in a secure place, and out of plain view. Don't share your passwords on the Internet, over email, or on the phone. In addition, without your knowledge, hackers may try to figure out your passwords to gain access to your computer. You can make it tougher for them by:
  • Using passwords that have at least eight characters and include numerals and symbols.
  • Avoiding common words: some hackers use programs that can try every word in the dictionary.
  • Not using your personal information, your login name, or adjacent keys on the keyboard as passwords.
  • Changing your passwords regularly (at minimum, every 90 days).
  • Using a different password for each online account you access (or at least a variety of passwords with difficulty based on the value of the information contained in each.

• Back up important files. No system is completely secure. If you have important files stored on your computer, copy them onto a removable disc, and store them in a secure place in a different building than your computer.
• If your computer gets hacked or infected by a virus:

Immediately unplug the phone or cable line from your machine or disconnect from the wirless network. Then scan your entire computer with fully updated anti-virus software.

• If your computer is no longer able to connect to the campus network, it might have been automatically removed from the system when a threat was detected. Contact the Oxford College clean room to have your computer cleaned and put back on line.
• Take steps to minimize the chances of another incident by following weekly steps to protect the computer.
• If you believe you have mistakenly given your information to a fraudster, file a complaint at ftc.gov, and then visit the Federal Trade Commission's Identity Theft website at www.consumer.gov/idtheft to learn how to minimize your risk of damage from a potential theft of your identity.

More information on staying safe online can be found at http://staysafeonline.org/about/index.html.