谈到互联网(Internet),没有什么叫做 100% 安全。阻止黑客(Hackers)进入您的计算机的最佳方法之一是关闭JavaScript和Flash,因为这两者被广泛用于将恶意脚本注入您的系统。
但这对某些人来说可能是不切实际的,因为互联网(Internet)依赖JavaScript和Flash来提供相当多的特性或功能——从登录网站到浏览、提供搜索功能等等。关闭JavaScript,你会发现你在Internet上无能为力。那么我们如何让黑客远离呢?这里有一些技巧可以防止黑客入侵,而不必通过关闭JavaScript和Flash来限制自己。
阅读(Read):为什么有人要破解我的电脑(Why would someone want to hack my computer)?
让黑客远离您的计算机
除了遵循保持 Windows 操作系统和软件最新、保持防火墙(Firewall)开启、使用良好的防病毒软件(antivirus software)或Internet 安全套件(Internet Security Suite)等基本步骤之外,您还应遵循以下一些预防措施。
- 关闭 JavaScript 和 Flash
- 为用户和在线帐户使用强密码
- 删除垃圾软件
- 明智地选择您的网络浏览器——使用(Use)安全插件
- 尽可能使用 HTTPS
- (Use)尽可能使用两步验证(Authentication)(或 MFA )(Or MFA)
- 关闭计算机(Computer)或互联网(Internet)连接
- 使用常识
保护自己免受黑客攻击!
1]关闭JavaScript和Flash
如果你可以禁用 JavaScript(disable JavaScript)和Flash,很好!它将使您的系统更加安全。还有一个禁用 Java 的组策略设置。
2]为用户和在线帐户使用(Use)强密码
简单的密码使任何人都可以更轻松地登录您的帐户并接管它。在大多数情况下,黑客会在接管您的机器后更改密码,使您无法登录。随后收回机器是一个繁琐的过程。始终建议使用包含字母数字字符和特殊字符的强密码。(strong passwords)
您可以强制Windows用户强化登录密码策略并创建强密码。您还可以使帐户在尝试三次后被锁定。阅读我们关于限制登录尝试的文章。
对于在线帐户,我建议使用密码管理器软件(password manager software),例如LastPass,它可以生成安全密码并安全地存储它们,这样您就可以使用它们而无需记住每个密码。此外,最好为不同的站点设置不同的密码,这样如果一个帐户被盗用,其他帐户仍然是安全的。防止黑客入侵的第一个技巧是使用强密码。
3]删除垃圾软件
购买新程序时,您永远不知道计算机上安装了哪种程序。联想(Lenovo)通过安装 Superfish 提供了一个很好的例子,它使网络犯罪分子可以发起中间人攻击(Man in the Middle Attacks)。一台新计算机带有大量您永远不需要的软件。获得新计算机后的第一步是删除所有垃圾软件(remove all crapware)和您不需要的程序。有某些第三方垃圾软件删除工具(crapware removal tools)让您决定保留哪些程序并自动删除垃圾软件。您可以使用任何此类程序,也可以手动删除不需要的程序和工具栏。手动方法更安全,虽然它需要你的一部分汗水。如果你看到一个你看不懂的程序,最好请教别人然后删除它。
4]明智地选择(Choose)您的网络浏览器 -使用(Use)安全插件
Web 浏览器(Web browsers)是允许我们连接到Internet并与之交互的媒介。市场上有很多浏览器。明智地选择您的浏览器。即使您在冲浪,它也应该能够保护您。例如,Internet Explorer具有SmartScreen 过滤器(SmartScreen Filter),它会尝试检查网站的可靠性。如果您使用的是Google Chrome,您会发现可以告诉您网站是否可靠的附加组件。同样(Likewise),对于Firefox,NoScript允许您通过阻止不需要的脚本来安全浏览。您只能在您想要的网站上允许脚本。更远(Further),请确保浏览器始终是最新的,因为它是黑客用来破坏系统的常见媒介。
5]尽可能使用HTTPS
HTTP代表超文本传输协议(Hyper Text Transfer Protocol)。HTTPS是一种高级版本,在协议中附加了一个 S,这意味着与网站的连接将是“安全的”。“安全”的意思是“加密的”。不能简单地将其设为 HTTPS(HTTPS)。一个网站要成为HTTPS,它必须通过各种测试来检查该网站是否确实像预期的那样安全。几乎(Almost)所有社交网站都提供HTTPS。所有的电子商务商店也提供HTTPS。使用HTTPS,您受到的保护比仅仅可能安全也可能不安全的HTTP连接更好。(HTTP)
为确保您不会忘记使用HTTPS ,您可以在Windows 8.1中设置组策略(Group Policy)。有一些可用于浏览器的插件,可确保网站始终强制加载HTTPS版本,以便您的登录凭据和银行或卡详细信息安全。一个这样的插件是“ HTTPS Everywhere”,它可用于基于Google Chrome和Firefox的浏览器。对于Internet Explorer,好吧,它正在与Windows 10一起退役,我希望新的“Spartan”浏览器迟早会有类似的东西。
6]尽可能使用两步验证(Use Two-Step Authentication)(或 MFA )(Or MFA)
如今,大多数网站都为您提供两步验证。也就是说,除了使用您的用户 ID 和密码登录之外,您还必须输入发送到个人设备(例如电话)的附加信息。银行(Bank)网站、云存储等为您提供双重身份验证的好处。一些社交网站和电子邮件服务提供商也为您提供该功能。这可以帮助您保持安全,因为即使有人可以破解您的密码,他或她也可能无法访问您的帐户,因为第二步通常与个人设备有关,最常见的是电话,PIN 码(PIN)就是发送。除非黑客也可以访问手机,否则登录尝试将失败,您将保持安全。
使用多个设备或客户端访问帐户时,两步验证可能有点烦人。例如,如果您尝试通过手机登录并且消息已发送到手机,则您必须退出应用程序以检查PIN 码(PIN)。这有时会令人沮丧。在这种情况下,您可能必须为每个客户端或设备创建一个应用程序密码,以便在手机或平板电脑等设备上进行操作变得更加容易。查看使用两步验证保护 OneDrive 帐户(securing OneDrive account using two-step authentication)的示例。正如他们所说,安全总比后悔好。
7 ]关闭(Switch)计算机或(Computer)互联网(Internet)连接
最后,请务必关闭计算机或关闭Internet连接。这是因为,随着高速Internet连接的增长,许多用户选择始终保持计算机开启,即使他们长时间远离计算机也是如此。这种“永远在线”的计算机更容易受到影响。
8]使用常识
不要下载来自未知发件人的电子邮件附件。这些天来,您还必须非常小心您下载的内容以及从哪里下载。还需要遵循这样和更多这样的规则。时刻保持警惕。(Stay)网络世界可能和线下世界一样糟糕!
没有针对黑客和恶意软件的可靠保护。这些防止黑客的技巧只是您在计算时需要采取的众多预防措施中的一小部分。
如果您想分享更多防止黑客和黑客的技巧,请分享。(If you wish to share any more tips to prevent hacking and hackers, please do share.)
阅读下一篇(Read next):适用于 Windows PC 的免费反黑客软件(Free Anti-hacker software for Windows PC)。
How to keep Hackers out of your computer
When іt cоmes to the Internet, there iѕ nothing called 100% security. One of the best mеthоds tо keep Hackers out of уour computer would be to turn off JavaScript and Flash аs these two аre widely used to inject malіcious scripts into your system.
But that may be impractical for some as the Internet relies on JavaScript and Flash for quite a few features or functions – from logging in to websites, to browsing, serving search functions and more. Turn off JavaScript, and you will find that you cannot do much on the Internet. So how do we keep hackers away? Here are some tips to prevent hacking without having to restrict yourself by turning off JavaScript and Flash.
Read: Why would someone want to hack my computer?
Keep Hackers out of your computer
Apart from following the basic steps like keeping your Windows operating system and software up-to-date, keeping your Firewall turned on, using a good antivirus software or an Internet Security Suite, here are a few precautions you should follow.
- Turn off JavaScript and Flash
- Use a strong password for the user and online accounts
- Remove crapware
- Choose your web browser wisely – Use security addons
- Use HTTPS as far as possible
- Use Two-Step Authentication (Or MFA) wherever possible
- Switch off Computer or Internet connection
- Use common-sense
Secure yourself from hackers!
1] Turn off JavaScript and Flash
If you can disable JavaScript and Flash, good! It will make your system more secure. There is also a Group Policy setting to disable Java.
2] Use a strong password for the user and online accounts
Easy passwords make it easier for anyone to log into your account and take it over. In most cases, the hackers will change the password after taking over your machine so that you cannot log in. What happens afterward to reclaim the machine is a tedious process. It is always recommended to use strong passwords, which contain alphanumeric characters and also include special characters.
You can force it on the Windows users to harden the login password policy and create a strong password. You can also make it possible that the account is locked down after three attempts. Read our article on restricting login attempts.
For online accounts, I will recommend using a password manager software such as LastPass that generates secure passwords and stores them safely so that you can use them without having to remember each. Further, it is better to have different passwords for different sites so that if one account is compromised, others are still safe. The first of all tips to prevent hacking is to use a strong password.
3] Remove crapware
You never know what kind of programs are installed on your computer when you buy a new one. Lenovo presented a good example by installing Superfish that made it possible for cybercriminals to initiate Man in the Middle Attacks. A new computer comes with plenty of software that you won’t ever need. The first step after getting a new computer is to remove all crapware and the programs that you won’t need. There are certain third-party crapware removal tools that let you decide what programs to keep and automate the removal of crapware. You can use any such program, or you can remove unwanted programs and toolbars manually. The manual method is safer though it takes some perspiration on your part. If you see a program that you can’t understand, it is better to consult someone and then remove it.
4] Choose your web browser wisely – Use security addons
Web browsers are the medium that allows us to connect to the Internet and interact with it. There are many browsers out there in the market. Choose your browser wisely. It should be able to protect you even as you are surfing. For example, Internet Explorer has SmartScreen Filter that tries to check out the reliability of websites. If you are using Google Chrome, you will find add-ons that tell you if a website is reliable. Likewise, for Firefox, NoScript allows you to browse securely by blocking unwanted scripts. You can allow scripts only on the websites you want. Further, make sure that the browser is always up to date, as it is a common vector, hackers use to compromise systems.
5] Use HTTPS as far as possible
HTTP stands for Hyper Text Transfer Protocol. HTTPS is an advanced version that has an S appended to the protocol and means that the connection to the website would be “secure.” By “secure”, it means “encrypted”. One cannot simply make it HTTPS. For a website to become HTTPS, it has to pass a variety of tests that examine if the website is indeed as secure as it is meant to be. Almost all social networking sites provide HTTPS. All e-commerce stores also provide HTTPS. With HTTPS, you are protected better than just an HTTP connection that may or may not be secure.
To make sure that you do not forget using HTTPS, you can set up Group Policy in Windows 8.1. There are plugins available for browsers that make sure the websites are forced to load the HTTPS version always so that your login credentials and bank or card details are safe. One such plugin is “HTTPS Everywhere” and it is available for browsers based on Google Chrome and Firefox. For Internet Explorer, well, it is being retired with Windows 10, and I hope the new ‘Spartan’ browser will have something similar sooner or later.
6] Use Two-Step Authentication (Or MFA) wherever possible
Most websites these days provide you with two-step authentications. That is, in addition to logging in with your user ID and password, you have to enter additional information that is sent to a personal device such as a phone. Bank websites, cloud storage, etc. give you the benefit of two-factor authentication. Some social networking sites and email service providers too offer you the feature. This helps you stay safe because even if someone can crack your password, he or she may not be able to get access to your account as the second step is usually related to a personal device, most often, a phone, to which a PIN is sent. Unless the hacker also has access to the phone, the login attempts will fail, and you will remain safe.
Two-step authentication may be a little irritating when using multiple devices or clients to access the accounts. For example, if you are trying to login via your Phone and the message is sent to the phone, you have to quit the app to check the PIN. This becomes frustrating sometimes. In such cases, you may have to create an app password for each client or device, so that it becomes easier to operate from devices like phone or tablets. Check out an example of securing OneDrive account using two-step authentication. As they say, it is always better to be safe than sorry.
7] Switch off Computer or Internet connection
Lastly, always turn off your computer or switch off the Internet connection. This is because, with the growth of high-speed Internet connections, many users opt to keep their computers on all the time, even when they are away from the machine for a long time. Such “Always On” computers are more susceptible.
8] Use common-sense
Do not download email attachments from unknown senders. These days you also have to be very careful what you download and where you download from. Such and more such rules also need to be followed. Stay alert at all times. The online world can be as bad as the offline world!
There is no sure-shot protection against hackers and malware. These tips to prevent hackers are just a few of the many precautions you need to take when computing.
If you wish to share any more tips to prevent hacking and hackers, please do share.
Read next: Free Anti-hacker software for Windows PC.