You're probably already aware that a deadly cyclone hit the southeast Asian country of Myanmar in early May. What you may not know is that criminals have set up fake donation sites in order to scam generous donors who want to help.
This fraud is known as phishing. Pronounced "fishing," this is a type of online identity theft that uses e-mail and also fraudulent Web sites that are designed to steal your personal data or information such as credit card numbers, passwords, account data, or other information.
For more information on how to help protect yourself from donation phishing scams, see Want to help? Take care to avoid online donation scams.
Safer ways to donate
Microsoft has encouraged employees who wish to donate to give through partner international humanitarian relief organizations, such as CARE, World Vision, The American Red Cross, or Save the Children. Microsoft has also partnered with NetHope — a nonprofit IT consortium of leading international non-governmental organizations (NGOs) — to provide technology resources and support as needed.
To learn about Microsoft's efforts to help in Myanmar and to learn about safer ways to donate money, see Disaster Response and Humanitarian Relief.
A Windows Live ID is your e-mail address and a password that you choose. After you've signed up for a Windows Live ID, you can use it on Windows Live sites like Windows Live Hotmail, Windows Live Messenger, Office Live, Xbox Live, and more.
To get tips on how to choose a strong password and how to help keep your Windows Live ID more secure, read Help protect your Windows Live ID.
This week Microsoft is hosting a week-long Protect Yourself from Phishing and Fraud online campaign. Each day we will post guidance on how to help avoid phishing scams, how to recognize phishing scams, and how to use technology to help protect yourself from phishing and fraud.
For more information about this campaign, see Protect yourself from phishing and fraud.
The annual security conference RSA kicks off in San Francisco today and as in past years, Microsoft will be active with representatives from the company offering keynotes, leading sessions, and blogging from the show floor.
Whether you're attending the conference or tuning in from your living room couch, stay up-to-date on everything that's happening at Microsoft at RSA Conference 2008.
Are you everyone's favorite computer geek?
And by that I mean, do you get calls, e-mail messages, and IMs from everyone you know about how to fix their computer?
Do you often get introduced at parties as "my personal tech support" instead of "my friend and neighbor?"
Do your holiday meals get cold before you have time to eat them because you're so busy explaining to your family why they need a firewall?
If you fit any of those descriptions, then take a look at Steve Riley's latest article on how to support your family, friends, and neighbors. Steve is Microsoft's Senior Security Strategist for Trustworthy Computing.
Read Viewpoint: Supporting your family, friends, and neighbors
If your family listens to Radio Disney Seattle you might have already heard new characters sharing tips on how to stay safer online. Microsoft and Disney recently launched a series of on-air and online safety programs aimed at Seattle's youth.
Here's an example of some of the tips you'll hear:
· Never give out personal information (like addresses and phone numbers) to anyone online.
· Only use e-mail and IM with people you know in the real world, never with strangers.
· Tell your parents about your online adventures and new Web sites you check out.
For more information on these programs, see Microsoft partners with Disney to help protect kids online.
This year experts predict that scammers will try to take advantage of people who file their taxes online. If you use common sense when it comes to offers that sound too good to be true, you can help avoid many different types of fraud.
Internet Explorer 7 can also help protect your personal information when you file your taxes online.
See Keep your identity safer this tax season.
How Internet Explorer helps you check the validity of a Web site
· Phishing Filter. Internet Explorer 7 includes Phishing Filter, which warns you if the site you're visiting might be fake.
· Extended Validation Certificates. Internet Explorer 7 includes support for Extended Validation (EV) Certificates. This means that your address bar will turn green if the site that you're visiting uses this technology.
For more information, see Help avoid online tax fraud.
Want to stay current on new security features in Windows Vista?
Bookmark the Windows Vista Security Blog. You'll get updates on the latest developments in Windows Vista security, plus a behind-the-scenes look at the development process from the people working on the product.
And like with any good blog, you can interact with the blog writers and readers in the comment section.
In recent weeks readers have sent us the following questions about Windows Live OneCare. This is the third in the series. For more questions, see Windows Live OneCare FAQ Part I and Windows Live OneCare FAQ Part II.
Q: I have both Windows Defender and OneCare and I run Windows Vista. Do I need Windows Defender?
A: OneCare and Windows Vista both include
Windows Defender. OneCare automatically turns off Windows Defender so that you don't get repeating messages. For more information, see Does Windows Live OneCare include Windows Defender?
Q: Do I need to open OneCare every time I go online?
A: No. After you download, install, and configure OneCare, it is always on. OneCare works quietly in the background on your computer to protect against viruses, spyware, hackers, and other unwanted intruders.
Q: Can I use OneCare and other antispyware programs?
A: OneCare includes Windows Defender, the Microsoft antispyware solution. Before you install Windows Live OneCare, you should disable or uninstall other security-related programs.
If you use more than one brand of antispyware program at the same time, your computer might suffer from decreased performance, become unstable, or restart unexpectedly. Note: If you already have Windows Defender, you do not need to uninstall it before you install OneCare. For more information, see Does Windows Live OneCare include Windows Defender?
To send us questions about OneCare or anything else related to security, click the EMAIL link above.
Q: Does OneCare include Software Explorer, like Windows Defender?
A: No, the Software Explorer feature is not available with OneCare. OneCare does integrate the real-time antispyware capability from Windows Defender.
This protects your computer against pop-ups, slow performance, and security threats caused by spyware and other unwanted software.
For more information, see Does Windows Live OneCare include Windows Defender?
Q. I have a trial version of antivirus software that came with my computer. If I subscribe to OneCare, do I need to renew my other antivirus software?
A: No. OneCare includes an antivirus feature. Before you install OneCare you must uninstall any other antivirus software from your computer.
Q: I have added my daughter's computer to my subscription. How do I designate my computer as the hub?
A: On a hub computer, you can monitor the status of other computers in your OneCare circle and perform high priority actions, such as backup.
To designate your computer as a hub:
1. Open OneCare by double-clicking the OneCare icon in your taskbar.
2. Click Manage your OneCare circle.
–or–
If you've already set up a OneCare circle, click Your OneCare circle.
3. Click Make this PC a hub PC.
4. Enter the Windows Live ID (The user name and password that you use to sign in to any Windows Live, MSN, or Office Live sites and services. If you have a Passport Network, Hotmail, or Messenger account, you can use it as your Windows Live ID.) that you used to install OneCare, and then click Sign in.
To send us questions about OneCare or anything else related to security, click the e-mail link above.
In recent weeks readers have sent us the following questions about Windows Live OneCare. We'll post a few of these questions every week for a few weeks. We hope these answers are helpful.
Q: How do I know if I already have OneCare?
A: If OneCare is running on your computer, you will see the green, yellow, or red "1" icon in the notification area of your Windows taskbar. The green icon in your taskbar means your security status is good.
You can also check for OneCare in your All Programs menu by clicking Start and pointing to All Programs. If you use Windows Vista, just start typing OneCare in the search box to find out if it's installed on your computer.
Q: Is OneCare updated through Automatic Updates?
A: No, the OneCare service is updated through OneCare's own servers for new features and enhancements.
However, OneCare does work with Microsoft Update and Automatic Updates to help ensure that your computer is always up to date with the latest security updates from Microsoft. When you first install OneCare, the setup dialogue box informs you that if you choose to proceed your computer settings will change so that they automatically download and install important updates from Microsoft Update.
Q: Does OneCare include spam protection?
A: No. Spam protection is often provided by your Internet Service Provider (ISP) or your e-mail client.
Microsoft SmartScreen is an intelligent spam-filtering program that is integrated across all Microsoft e-mail platforms, including Windows Mail, which comes with Windows Vista and the following free e-mail providers.
• Windows Live Hotmail
• Windows Live Mail
OneCare includes antivirus and antispyware scanners, a managed two-way firewall, and integrated anti-phishing technology to protect your computer from viruses, worms, Trojan horses, hackers, phishing, and other threats that may come through e-mail.
Q: How much does OneCare cost?
A: The OneCare subscription service costs $49.95 (USD)* per year for up to three computers. Right now, you can try the service for free by signing up for a free trial.
* Your final price will be confirmed at the point of purchase based on your country's location and currency, and might differ from the price that appears here.
To send us questions about OneCare or anything else related to security, click the EMAIL link above.
It's always important to be careful how much information you reveal to other people online. As Valentine's Day nears, this is even more important.
Scammers can use e-card scams, social networking, online dating, and various types of chat sites to collect information from people for malicious purposes, such as fraud or identity theft.
Tips to help protect your personal information online
1. Never give out your personal information in a chat room.
For more information, see Safety tips for chat rooms.
2. If you receive an e-card from an unknown sender, do not open it.
For more information, see How to send and receive e-cards more safely.
3. Be careful meeting strangers in person whom you've met online. If you're a parent, insist that your children never meet someone in person whom they've met online.
For more tools for parents, see Protect your family from unwanted content and contact.
4. Limit the amount of personal information you give to online dating sites. Only share your primary e-mail address with people you know.
5. If you're asked to enter or sign up for a nickname, choose a name that doesn't give away your personal information. For example, you might use SavvySue instead of DetroitSue.
6. Read the Web site's privacy statement carefully. If something doesn't sound right to you, contact the company with questions before you divulge any personal information.
7. Be smart about details in photographs. Photographs can reveal a lot of personal information, including identifiable details such as street signs, house numbers, or your car’s license plate.
8. Use Microsoft Phishing Filter to help protect you from Web fraud and the risks of personal data theft.
Last month we told you about predicted Internet security threats for the coming year.
We also told you that the most basic ways to protect yourself were by:
· Turning on your firewall,
· Turning on automatic updates,
· Using updated antivirus software, and
· Using updated antispyware software.
Here are two more ways to protect yourself from social engineering threats, specifically phishing and fraud, which are on the rise.
1. Use Internet Explorer 7 and turn on the Microsoft Phishing Filter.
2. Look for the green address bar, as shown below, when you bank online or when you submit personal or financial data.
About the green address bar
Only sites that meet the highest validation and identity standards qualify for Extended Validation (EV) Certificates.
Internet Explorer 7 visually displays the validation of this certificate with a green address bar.
Experts at Microsoft spent the final days of last year analyzing numerous data from sources that include the biannual Microsoft Security Intelligence Report (SIR).
Here are their resulting predictions about the threats that are most likely to affect you and your family in 2008:
1. Phishing e-mail scams. E-mail and instant message fraud increased significantly between the second half of 2006 and the first half of 2007 (27 to 37 percent), and is predicted to increase even more in 2008. This year look for cybercriminals who take advantage of the U.S. presidential election or those who want to donate to the Olympic Games. For more information, see How to handle suspicious e-mail.
2. Electronic greeting card scams. This type of scam became big in 2006 and has increased steadily over time. According to the most recent Microsoft Security Intelligence Report, this type of scam e-mail accounted for close to one in every dozen infected e-mail messages in 2007.
These online cards typically have a subject line such as "You've received a greeting from a family member." When you click the subject line, malicious software installs on your computer. For more information, see How to send and receive e-cards more safely.
3. Telephone scams. Microsoft experts also warn that we will see an increase in social engineering attacks that involve e-mail that directs you to verify your credit card or IRS refunds through a phone number. The phone number turns out to be a computerized phone answering system that collects the information provided to use for fraudulent purposes. For more information, see Phone phishing e-mail scams direct you to call a phone number.
To help protect yourself from threats this year, take these four steps:
1. Keep your firewall turned on.
2. Keep your software up-to-date.
3. Use antivirus software.
4. Use antispyware software.
Technology alone cannot stop online crime. We encourage you to follow the online safety and privacy guidance available on the Security at Home Web site.
Features designed to help manage multiple computers are included in the newest version of Windows Live OneCare, which Microsoft released late last year. These features make it easier to manage security on home networks and small business networks.
Windows Live OneCare now supports up to three computers on one subscription.
"The OneCare Circle feature links all of the PCs together using a wireless network that's already in place," says Amy Barzdukas, senior director for Windows Live OneCare.
"Once they are linked, a person can monitor the status of all the computers on their circle through a simple red, yellow, green status indicator on the system tray of the 'hub' computer." The customer can designate which computer is the hub.
Windows Live OneCare, a subscription service, is available at major retail outlets in seventeen countries for $49.95. You can also download a free 90-day trial at the Windows Live OneCare site.
For more information, see 5 Reasons to use Windows Live OneCare to help protect your computer.