1. Ensure that you login to an official site
* Ensure that you login to an official site (eg. http://www.planetcreator.net)

2. Choose passwords that are hard to guess. Avoid using passwords that are:
* the same as your User Name
* the row of letters of the standard keyboard layout (e.g. qwerty1, asdf123)
* closely related to you (e.g. birthplace, date of birth, spouse’s name)
* a dictionary word (i.e. words that can be found in the dictionary)

3. Never reveal your User Name and Password via E-mail
* An official site will NEVER ask you to reveal your User Name and Password through e-mail.
* If you have received an e-mail requesting for your User Name and Password, there is a possibility that is a phishing attack. Do not respond to it and report it to the PlanetCreator SecurityTeam immediately

4. Change your Password frequently

5. Use your personal computer and avoid crowded places.
* Do not use computers in public places (eg Cyber Cafes). Do your online banking on your personal computer
* Never allow your personal computer to do auto-complete or save your password. If you are using Internet Explorer, disable it by clicking Tools > Internet Options > Content > AutoComplete. Uncheck option “User names and passwords on forms” and click on “Clear Password”. Click “OK” to save your settings. In the event being prompted, do not tick the “remember this password” box.
* Avoid crowded places, as it will attract shoulder surfers

6. Equip your personal computer with personal firewall, anti-spyware and anti-virus softwares
* Install a personal firewall, anti-spyware and anti-virus software
* Update the signature pattern files frequently
* Scan your personal computer regularly

7. Never carry your User Name and Password with you
* Do not write down your user name and password in a piece of paper

8. Monitor your account
* Monitor your account closely for any suspicious action

9. Clear your Internet cache
* Clear your Internet cache after you have logged out from visited sites. If you are using Internet Explorer, you can do so by clicking Tools > Internet Options > Delete Cookies and Delete Files

10. Be updated with the current Internet security threats
* Keep yourself updated with the latest Internet threats through PlanetCreator’s SecurityTeam (www.planetcreator.net and mail to admin{at}planetcreator.net)

Explore More

Basic MS-DOS commands

ADDUSERS – Add or list users to/from a CSV file ARP Address – Resolution Protocol ASSOC – Change file extension associations ASSOCIAT – One step file association AT – Schedule

Read More

How does a cross site scripting (XSS) attack work?

A cross site scripting attack works in the following manner: * The attacker identifies a web site that has one or more XSS bugs for example, a web site that

Read More

Critical SQL Injection (http://www.mysuboo.com)

Today we shall consider the SQL Injection error on the site http://www.mysuboo.com/. Applications: ———— PlanetCreator’s_Universal_Advanced_Internet_Security_T00L System Time: ———— (UTC+08:00) Kuala Lumpur, Singapore, 03/23/2010 01:01:56 AM Site : http://www.mysuboo.com/ SQL Version

Read More