Tech

The emergency tips from the experts: 2. PC hacks






Online fraud, virus attack or robbery in banking: when such an emergency occurs, you usually need help from experts. We asked four specialists how they should react correctly in an emergency or, better still, prevent them.

The second part is about emergency tips against PC hacks. Because the current home office also gives PC users a new type of hacker attacks. We spoke to Thomas Uhlemann, Security Specialist at the anti-virus manufacturer Eset Germany, about the subject.

Thomas Uhlemann is a security specialist at the anti-virus manufacturer Eset Germany.

Enlarge

Thomas Uhlemann is a security specialist at the anti-virus manufacturer Eset Germany.

© Thomas Uhlemann

PC WORLD:

Which attacks are currently the most common threats to Windows users?

Uhlemann:

The RDP protocol (Remote Desktop Protocol) contained in Windows is currently one of the most frequently attacked targets. Cyber ​​criminals try to access users’ computers via RDP. This often affects the RDP computer within a company, but it can also affect the RDP client at the user’s home office. There it depends on whether the user’s router has a configuration weakness that enables the attacker to access the client PC.

PC WORLD:

Why is RDP so popular with attackers?

Uhlemann:

Many of the RDP computers used are inadequately configured. This gives the attacker quick access to the Windows user accounts. If these are only protected with standard passwords, an attacker is already on target. But other protocols are also currently a frequent target for attackers. This affects, for example, SMB with the Eternal Blue vulnerability. Microsoft fixed this with an update four years ago, but attacks are still ongoing and criminals are still finding systems without the update. PC-WELT: What are typical user errors when it comes to virus protection?

Uhlemann

: I don’t want to talk about mistakes. The problem is more the out-of-date knowledge of a user, combined with standard settings in software and devices. For example, we are currently seeing attacks with alleged flash player updates again. The Flash player no longer exists. So an update offer makes no sense at all. But if you don’t know, you might fall for this trick.

PC WORLD:

The virus protection built into Windows 10 now delivers similarly good detection rates as commercial antivirus programs. What are the reasons for a paid internet security package?

Uhlemann:

Microsoft Defender, which is active in Windows 10, delivers more false positives compared to good internet security packages. In addition, the Smartscreen filter sends every file from the Internet to Microsoft for checking. I see that as a data protection problem. Another negative point: In January it became known that Windows was easily vulnerable to a bug in Defender. In addition, Microsoft updates cause serious errors up to blue screens again and again. After all, Microsoft Defender does not offer any protection against attacks on the RDP and other protocols and it does not check the entire RAM in real time. The providers of good, paid security packages, on the other hand, do that very well. And they go to great lengths to avoid false positives as much as possible.

PC WORLD:

How do I react correctly if my antivirus program reports malware?

Uhlemann:

If I use a good product, it is very likely not a false positive. So I should pay close attention to the report. Not all malicious files can be cleaned up. They have to be deleted. A second check is worthwhile. In addition, attentive users usually receive information about the report. And if I really don’t know what to do with a virus report, the antivirus manufacturers have a support team to help me.

Windows uses the RDP protocol for its remote desktop connection, which unfortunately is not configured securely in many companies.

Enlarge

Windows uses the RDP protocol for its remote desktop connection, which unfortunately is not configured securely in many companies.

PC WORLD:

What is the threat situation on Android? How urgently do I need antivirus protection for my smartphone?

Uhlemann:

Android has a dominance of 80 percent of the market, which makes the system interesting for cyber criminals for this reason alone. Because these follow the motto: high yield with little effort. To make matters worse, with Android I can not only download my apps from Google’s Play Store, but also from other sources. This gives cyber criminals the opportunity to slip dangerous apps on users. That’s why it’s a good idea to have an additional antivirus app installed on your smartphone.

PC WORLD:

Do you have any general advice for our internet users on how they can protect themselves from cyber attacks?

Uhlemann:

The following applies on the Internet: I don’t see people, I don’t know them, why should I trust them. In addition, there is the rule that an offer that sounds too good to be true is probably not true either. So you should always maintain a healthy level of suspicion on the Internet.

Tags

Related Articles

Back to top button
Close
Close