How not to get hacked

This is not an article on how to get hacked and manage it in an embarrassing way. That would be a fun article, but I haven't written it yet.

This is what you should know in order to avoid getting hacked.

Use good passwords

The average person will need to know a dozen passwords if they create passwords like they are told to, and many more if they work in the IT or Financial industry. I do both, so I've learned a good bit about how to handle them both safely and conveniently.

There are many bits of standard advice that you'll hear, not all of it good:

Questionable advice

Better advice

Get computer protection

Antivirus

Hopefully you already realize that you need an antivirus program. If you don't have it, and you're using Windows or Mac, then you should get antivirus. It's free, in most cases.

Malware

You should also consider an anti-malware program. Most antivirus comes bundled with it, and there are also some good free ones, Spyware Blaster as an example. My favorite for cleaning an existing infection is Malware Bytes. I don't really consider malware to be the same class of threat as viruses because malware is generally something that people inflict on themselves. If you use caution and have good habits, you may not need malware protection, and many antivirus programs include malware protection, so your needs may vary.

Firewall

A really good firewall is essential for some people; a decent firewall is enough for some; some people already have a firewall and don't need a second and a few people don't need a firewall at all.

When you plug your computer into the internet, work network, or use it through a wireless connection, you're allowing information both out of your computer and into your computer. A firewall is a tool that controls how that information is allowed out and how it is allowed back in. People need a firewall if they don't have enough control of their computer to ensure that only the very specific things they intend are allowed. A good rule of thumb is that every Windows user needs some sort of firewall and machines that are used by users without lots of caution and experience need a good firewall.

Windows and Mac come with a decent firewall. Unless you consider yourself both a cautious and expert user, it is a good idea to have a firewall, but for just a cautious user, the ones that are already there are good enough. Linux users have a great firewall that may or may not have been enabled by default. Linux users should get to know about their firewall options so that they can determine if it is right for them.

If you're using a home router and it has a firewall option, you should turn it on.

Caution: Firewalls can interfere with some programs. It is important to know what your firewall options are and be able to turn it off if you suspect it may be the cause of a problem, but you should always end up turning it back on. For this reason, it is important to not only know what you're using, but also how to adjust it.

If you're needing a firewall with easier to use options than the one on your router (and you know that the other computers connected to it are firewalled as well)  then you should consider a really good firewall. I've never found a better one for Windows users than Zone Alarm. It can learn what is normally okay for your computer, is easy to adjust and can make it easy to find out what is being blocked if you have a firewall induced problem.

A good setup for the average home user with a router is to have the router firewall on and have Zone Alarm learn the normal traffic for your computer for a day or two, then leave it in place. When you have a problem that you believe is caused by a firewall, you can turn off the router firewall and let Zone Alarm tell you what is being blocked in order to find out if it really is a firewall problem. If it is something that needs unblocked, you can use the information you got from Zone Alarm to reconfigure your router firewall as well when you turn them both back on.

Most home users won't need something as sophisticated as Zone Alarm and can just leave Windows firewall and their router firewall alone and be fine. You'll only run into a need for something more sophisticated when you are doing something like setting up an IP based telephone and don't have sufficient technical assistance to adjust them yourself.

Don't tell people stuff

This is THE rule for keeping yourself safe from hackers. Nobody should ever need you to tell them your password. I work for a financial institution and if we need access to test something for a customer, we will set their password to something only we know during testing and then have them set a new password we do not know when we are done. If we need access to an employee's windows login, we will set their password to something we know and have them set it to something we don't know when we're done. If we need access to their voicemail, we set the password to something we know, and (you guessed it) have them set it to something we don't know when we are done.

The lesson here is that anyone who has a legitimate need to know your password should be able to set it themselves and you should always reset it when they are done. This means that you should NEVER need to tell someone your password.

Do not tell people who call you... anything. If you don't know their voice then you shouldn't tell them anything personal at all beyond confirming what they tell you. If they really do need to know something, then you should call them back at a published number you look up yourself. Anybody who calls you and doesn't have a published number you can call them back at is someone that has no requirement for you to tell them anything personal.

Never follow a link in your email to provide your personal information. It is DEAD COMMON for people to get emails that look legitimate from people who send them to a site that looks legitimate in order to steal their log in or other personal information. If you get an email from a company that you believe is legitimate and you need to provide information to them, do NOT follow the link in the email, instead find them on the web yourself (not using information from email) and do it there. This goes triple for PayPal and your banking information.

Don't be Admin

Windows has a poor reputation for security. The number one reason for that isn't that Windows is badly programmed, but because people use Windows as an Administrator. When you have your computer set up, the next step should be to create a regular use login and use that instead of your administrative login. When you encounter a virus, malware or trojan, it has all the abilities you do. If you are using Windows as an unprivileged user then the damage is limited to what that user can do. If you are running as an administrator, there is pretty much nothing that can't be damaged. This is important that it makes the Ten Tips page.