Best practice guidelines to defend against virus and spy ware attack
Install and update anti-virus software
Install anti-virus software across your entire IT infrastructure, and ensure it is kept up to date. New viruses are created every week and can spread extremely quickly, so it is important to have a procedure in place which can update all the computers in your company seamlessly, frequently, and at short notice. Whilst you can rely on manual implementation of such updates, CTSM provide anti-virus solutions that automatically update your entire system, without requiring any manual administration.
Establish a filtering solution at your email gateway to protect your business from the threats of viruses, spam and spy ware.
Remember to include remote workers who use laptops and desktops from home and on the road. If they are connecting wirelessly, ensure they are extra security-aware, switching off the wireless broadcast when not in use, up to date with all anti-virus updates and using a wired connection for highly sensitive or financial communications
Set stringent filtering conditions
Consider filtering potentially malicious emails at the email gateway as
this can provide a level of pro-active protection against new threats.
You could:
- Block file-types that are often virus carriers
- Block any file with more than one file type extension
- Ensure all executable code sent to your company is verified
- Ensure that all executables received via email from external parties are directed to your IT department for verification that they are:
- Virus-free
- Properly licensed
- Unlikely to conflict with existing software applications
- Of suitable content
Stay informed about the latest virus threats
Add CTSM to your favourites and keep a check on all the latest virus and hoax threats. Our site is updated as soon as new identities are discovered. You'll also find up-to-date information on support information and new product developments.
Defend your business with an effective firewall
All computers within your business and remotely should be protected with a firewall. Remote workers and laptops that don't benefit from the central company defences will need a firewall too.
Stay up-to-date with software patches
Microsoft and other software authors often issue advisory warnings on security issues. An IT department should subscribe to such mailing lists, and act upon the advisories as appropriate.
If a new security risk is found in an application or operating system, organizations should have a system for testing any patch supplied and rolling it out across their user base. Some vendors (e.g. Microsoft) provide automatic patch updating for home and business users, and such systems may be appropriate for updating your workforce and remote workers with the latest security fixes.
Back up your data regularly
Follow our guidelines on system back-up. Making regular and consistent backups of important work and data is crucial to ensure you don't come unstuck when the inevitable happens. Check the backups were successful and store in a safe place, preferably off-site in case of fire.
Disable booting from floppy disks
Boot sector viruses are less common these days but can still bring your system to a grinding halt. Change the CMOS boot up sequence on PCs so that rather than booting from drive A: if you leave a floppy in your machine, you boot by default from drive C: instead. This should stop all pure boot sector viruses (like Form, CMOS4, AntiCMOS, Monkey, etc) from infecting you. Should you need to boot from a floppy disk the CMOS can easily be switched back.
Introduce and communicate an anti-virus policy
Produce a policy for safe system usage and distribute it to all staff. Make sure every colleague is aware of and understands the policy and knows who to speak to, if they have any questions.
The following could be considered:
- Disallow the download of executable files and documents directly from the internet.
- Disallow running unsolicited executables/documents/spreadsheets.
- Ban the use of computer games or screensavers that didn't come with the operating system.
- Establish a standard procedure for the verification of executable files via email from external parties.
- All Word documents to be saved as RTF (Rich Text Format). DOC files can carry macro viruses.
- Treat with suspicion any unexpected email
- Inform your IT department or CTSM account manager of any virus warnings or hoaxes to confirm whether they are genuine or not.
- Inform your IT department or CTSM account manager of any suspected virus attack or breach of security