U.S. Plans for Online Defense on 2003
The U.S. government has asked Internet users and businesses to practice "safe computing" online and promised to bolster its own cyber-defenses in a much- anticipated online security plan released Friday.
More than a year in the making, the National Strategy to Secure Cyberspace seeks to protect the nation's myriad computer networks from damaging attacks like the "Slammer" virus that knocked out wide swaths of the Internet last month.
The report advocates increased spending on cyber-security research and a greater degree of coordination between high-tech firms and government agencies like the FBI that could track down cyber attacks.
But it imposes few new requirements on the private businesses that control 85 percent of the global computer network.
Instead, the Bush administration sees its role largely as a cheerleader, encouraging businesses to keep their networks secure and supporting publicity campaigns to encourage greater individual use of antivirus software, firewalls and other security tools.
"In general, the private sector is best equipped and structured to respond to an evolving cyber threat," the report says. "A federal role ... is only justified when the benefits of intervention outweigh the associated costs."
The White House released the plan with little fanfare, reflecting the fact that its primary architect, former cybersecurity advisor Richard Clarke, resigned his post abruptly two weeks ago.
Privacy advocates have worried the plan could lead to Big Brother-type surveillance online, while software makers and other businesses have feared increased liability and excessive regulation.
Security experts, meanwhile, say the state of online security will remain dismal as long as businesses do not make it a priority and have criticized preliminary versions of the plan as toothless.
The final version of the report is shorter and less specific than a previous version released by Clarke in September.
The report places many government responsibilities within the Department of Homeland Security. The new department is expected to lead a response when cyberattacks occur, set up programs to develop a more tech-savvy work force and encourage business sectors like banking and utilities to bolster security standards on their own.
The Commerce Department is directed to encourage the development of a next-generation Internet numbering standard known as IPv6, while the FBI, Defense Department and other intelligence agencies are encouraged to track down cyberattacks and possibly strike back.
"When a nation, terrorist group, or other adversary attacks the United States through cyberspace, the U.S. response need not be limited to criminal prosecution," the report says. "The United States reserves the right to respond in an appropriate manner."
Boots: online defense
Boots will soon be starting on a six-figure overhaul of its transactional website.
The merger of Alliance Unichem and Boots gave the companies a major boost in their distribution channels for health, beauty and pharmacy items, but Alliance Boots is not standing still. The two-year website development project should help protect Boots' share of the growing online market in the face of growing competition.
Rival Superdrug has this week launched its own transactional website offering the retailer's 1,200 best selling products. With its strong value focus and reputation it will put up a real challenge to Boots' online sales, particularly among younger consumers - where Superdrug has its strongest appeal.
Fulfilment costs have been a major deterrent from many value retailers putting low-priced products online - but the difference between Superdrug's and Boots' site prices is not as extensive as one might expect. Boots has become much more price competitive over recent years and both retailers are offering an extensive range of product promotions online to build volumes in the run-up to Christmas.
The typically brand-focused nature of health & beauty lends easily to price comparisons, which is particularly relevant online where comparing prices is faster and more convenient - and repeat brand purchases more likely in the absence of new products to touch and smell. Boots will be highly cautious of its position on key items, particularly with the arrival of a new and well known rival online.
Boots' website overhaul will include a fresh focus on its No 7 cosmetics range - items that cannot be purchased from rivals' sites, and therefore an important set of products to drive visits to Boots.com. If a consumer is buying at least one product from Boots.com, the delivery charge would be enough to offset many price benefits that may be available from shopping elsewhere.
Boots' loyalty scheme, promotional offers and extensive ranges further entice consumers to continue using the retailer. However, while Boots' wide range of available products is clearly an advantage, it can also make shopping on the site a fairly slow process - another factor the retailer will need to address during its revamp if it wants to increase average basket sizes.
Sources
Barracuda Spam Firewall FAQ
How does the Barracuda Spam Firewall protect against email threats?
The Barracuda Spam Firewall, an integrated hardware and software solution, uses a multilayered approach to provide the most comprehensive email protection available against spam, viruses, spoofing, phishing and spyware attacks. An added benefit of the Barracuda Spam Firewall is the optimized processing of each email to maximize performance and capability to filter millions of messages per day.
Behind the industry-leading initiatives of Predictive Sender Profiling and Barracuda Real-Time Protection are 12 explicit defense layers including: Denial of Service and Security Protection, Rate Controls, IP Reputation Analysis, Sender Authentication, Recipient Verification, Virus Protection, Policy (user-specified rules), Fingerprint Analysis, Intent Analysis, Image Analysis, Bayesian Analysis, and a Spam Rules Scoring engine.
More information on the Barracuda Spam Firewall defense layers can be found on the
Spam Defense Layers page in our Technology section.
How is email filtered?
Deployed at the network perimeter, all incoming email must pass through all 12 defense layers of the Barracuda Spam Firewall before any of it can reach the intended recipients. The defense layers are grouped into two main classes: connection management, which involves dropping incoming mail connections before receiving messages, and mail scanning, which analyzes messages upon receipt. During the filtering process, emails are checked for new and familiar spammer attacks, viruses, and customized administrator policy violations. Based on administrator and user preferences, spam can be tagged, quarantined or blocked.
Why tag email? What happens to tagged emails?
Tagging email benefits organizations by easily identifying messages that meet set criteria. Tagged emails are delivered to the recipient with a customizable label, such as [BULK], that is added to the subject of the message.
Why quarantine email? What happens to quarantined email?
Quarantining emails is a safeguard that allows for examination of questionable messages prior to accepting or rejecting; typically, quarantined email does turn out to be spam. An administrator can choose two types of email quarantine: global or per user quarantine.
When configured for global quarantine, the Barracuda Spam Firewall routes all quarantined email to a mailbox specified by the administrator. When configured for per user quarantine, the Barracuda Spam Firewall stores the email locally and notifies users periodically of their quarantined email. Users can choose to delete quarantined email, forward it to their own mailboxes or whitelist the sender address to prevent future email from being quarantined. Per user quarantine is available with the Barracuda Spam Firewall 300, 400, 600, 800 and 900 models.
What are some of the underlying technologies used in the Barracuda Spam Firewall?
The Barracuda Spam Firewall uses a combination of proprietary and open source software. The Barracuda Spam Firewall operating system is based on a hardened, stable Linux kernel that has undergone strict scrutiny by top security researchers. The robust MTA is capable of handling a high number of SMTP connections and mail delivery volumes. Starting with firmware release 3.5, the Barracuda Spam Firewall MTA has a built-in journaling function that can be used in conjunction with the Barracuda Message Archiver. To learn more about these and other Barracuda Spam Firewall Technologies, please visit http://www.barracuda.com/technology.
If I am using Microsoft Exchange, how will the Barracuda Spam Firewall protect against “dictionary” attacks?
The Microsoft Exchange Accelerator, available on Barracuda Spam Firewall 300 and higher, uses the Lightweight Dictionary Access Protocol (LDAP) built into Exchange to verify recipients before delivering messages to the Microsoft Exchange Server.
What new technologies has the Barracuda Spam Firewall added to combat the latest spam campaigns?
In 2007 alone, Barracuda Networks has announced several initiatives against spam:
Multi-Pass Optical Character Recognition Engine: Image spam generally embeds text within images with the intent of hiding content and bypassing the text rules processing layers of spam filters. With Barracuda Networks’ industry-leading multi-pass OCR engine, Barracuda Spam Firewalls render the spammers’ tricks to hide text behind color or blurred images ineffective. Learn more…
Predictive Sender Profiling: Barracuda Networks’ industry-leading Predictive Sender Profiling probes deeper into sent email and digs into the campaign itself to identify anomalous sender activity, allowing Barracuda Networks to effectively block spam typically unstoppable by traditional reputation analysis. Learn more…
Barracuda Real-Time Protection: Barracuda Real-Time Protection uses an advanced set of technologies to immediately block the latest virus, spyware and other malware attacks as they emerge. Leveraging the Barracuda Spam Firewalls large and diverse customer base, Barracuda Networks leads in industry in detecting early trends and responding to email-borne threats. Learn more…
More information on these and other technologies can be found on our Barracuda Technology page at http://www.barracuda.com/technology.
How does the Barracuda Spam Firewall protect against virus threats?
The Barracuda Spam Firewall provides comprehensive protection against virus threats through three powerful layers. The first layer consists of a well-respected open source virus scanning engine. The second layer is a proprietary virus engine maintained by Barracuda Central, an advanced technology center consisting of highly trained engineers who continuously monitor and block the latest Internet threats and develop strategies to mitigate those threats. The third layer is Barracuda Real-Time Protection, a set of advanced technologies that enable Barracuda Spam Firewalls to immediately block the latest virus, spyware and other malware attacks as they emerge without having to wait for a signature to be downloaded onto the Barracuda Spam Firewall.
How does the Barracuda Spam Firewall block real-time threats?
Barracuda Central engineers diligently work 24x7 monitoring spam and virus threats around the world. Since response times are crucial with real-time threats, when one is detected the Barracuda Spam Firewall uses Barracuda Real-Time Protection to mitigate these threats as they emerge without waiting for new updates.
How much time will I spend installing and maintaining the Barracuda Spam Firewall?
The Barracuda Spam Firewall is designed as an easy-to-install appliance requiring minimal administrative overhead. Without any tuning, the Barracuda Spam Firewall offers a 95 percent spam accuracy rate with a 0.01 percent false positive rate. Taking into account the six defense layers automatically tuned by Energize Updates, the Barracuda Spam Firewall is easily kept up-to-date for ongoing spam accuracy.
Will I receive a high number of false positives using a Barracuda Spam Firewall?
With no tuning, the Barracuda Spam Firewall is set to minimize false positives, typically at 0.01 percent or less – one of the lowest false positive ratings in the industry. As with any solution that allows for user customization, each customer’s false positive return will vary depending on how the administrator tunes the unit (i.e. a stricter spam score setting may result in more false positives).
What does Energize Updates include for the Barracuda Spam Firewall?
The Barracuda Energize Updates subscription provides the latest spam and virus definition updates that block new campaigns before they become an outbreak. Barracuda Central engineers constantly update spam and virus definitions and are able to remotely tune six of the 12 defense layers, thereby minimizing administration time. Energize Updates also gives you access to technical support, new firmware releases and the opportunity to participate in the Barracuda Early Release Firmware program.
Does the Barracuda Spam Firewall offer per user policies?
Per user policies are available in Barracuda Spam Firewall 300 and higher. Per user policies empower users with the ability to set their own individual scoring policies, Bayesian database, allow lists and block lists.
Can the Barracuda Spam Firewall filter outbound messages?
Yes. The Barracuda Spam Firewall filters outbound messages for viruses and basic spam scanning policies. For advanced outbound scanning, Barracuda Networks offers the Barracuda Spam Firewall-Outbound which includes different workflows for quarantining outbound email traffic for review by policy auditors.
How do I know which Barracuda Spam Firewall model is best suited to my needs?
A local Barracuda Networks sales representative can evaluate your environment based on the number of active users, email traffic and desired features. As your organization expands, the Barracuda Spam Firewall can be clustered to accommodate your additional growth.
What if I have more questions about the Barracuda Spam Firewall?
For additional assistance, please visit our technical support forum or contact your Barracuda Networks sales representative. To obtain a demo of the Barracuda Spam Firewall, please call 408-342-5400.
Sygate Personal Firewall
Sygate Personal Firewall Pro by Sygate Technologies, Inc. automatically protects your PC from hackers and other malicious attacks. It includes full-ICS support, protocol driver-level protection and enhanced logging. This firewall can stop intruders from hacking into your system, and that’s the point with a firewall. But Personal Firewall Pro doesn’t offer all the perks that our top ranked products do to block ads, popups and other undesirable content online. Sygate Personal Firewall is also a challenge for beginners.
Sygate Personal Firewall is more than an advanced, user-friendly personal firewall, it's a bi-directional intrusion defense system. It ensures your personal computer is completely protected from malicious hackers and other intruders while preventing unauthorized access from your computer to a network. In essence, it makes your protected machines invisible to the outside world. That makes it a must-have security measure for any PC that connects to a private network or the public Internet. Once you've been compromised, every other network you connect to is at risk; including your home, business and online bank accounts.
Sygate Personal Firewall PRO covers all the bases covered by Personal Firewall, but adds new network layer protection measures, an application-based detection system (IDS), and operating system security protection. It can automatically terminate common attacks, such as known Trojans and Denial of Service Zombies. This firewall's defense mechanisms can also keep malicious code or users from disabling the firewall.
Sygate’s Personal Firewall control panel has an informative graph that details incoming and outgoing traffic as it is blocked. The program also offers an attack history graph, helpful for tracking intrusion trends. Sygate Personal Firewall Pro’s control panel allows you to view and manage running applications so you can instantly stop a data transmission if you want.
Sygate has some advanced firewall features, but these are best suited to experienced computer users since understanding them requires extra reading. For example, Sygate Personal Firewall Pro is one of the only software firewalls that will let you assign specific port rules and time restrictions, but doing so is challenging.
Features:
- Application-Based Intrusion Detection System
- Protocol Driver-Level Protection
- Active Response
- Anti-IP & Anti-MAC Spoofing
- Application DLL Authentication
- Firewall Termination Prevention
Homepage - http://smb.sygate.com
Home User Security: Your First Defense
The need for a firewall
It used to be that an anti-virus program was a home user's first (and perhaps, only) line of defense against the spread of viruses, worms, trojans, and other malicious code. Times have changed. In the era of pervasive, always-on broadband connections, today simply having your Microsoft (R) Windows (TM) computer turned on is enough for it to get infected with the latest virus or worm. Have you applied your weekly set of critical Microsoft security patches, or your monthly Microsoft mega-patch? What if you've been on vacation for the past few weeks? The swiss cheese approach to applying security patches that are required to keep desktop computers safe and useable just doesn't work for the average home user. A firewall should now be a home user's first line of defense.
What is a firewall?
The original firewalls, literally physical walls constructed to slow or cease the expansion of fires through buildings, performed a serious function in a basic way. Like their namesake, network firewalls were originally quite similar in concept. They were physical units blocking activity coming into and out of computer networks, thus protecting the network's users from harm. These hardware boxes acted as data filters connected on one side - to the Internet, and on the other - to the internal network. As the Internet grew, the need for more complex analysis of incoming data rose. Today, we have a myriad of firewall hardware and software options available for networks large and small, with features ranging from simply watching the traffic to analyzing, refusing, and reporting in great detail. The terms personal firewall and desktop firewall are synonymous with software you install on your computer to keep the bad guys out.
Identity theft
These days, there are a nearly infinite number of uses outsiders can have for your computer. Yet many security threats simply don't hit the radar of home computer users, who might say for example, "I don't have that much important data on my computer" or "I really don't care so much what somebody sees if they poke around." Thus, the impetus to prevent attacks and protect your information may simply not be there for home users. However we must think about the following, which may hit closer to home:
If any document on the computer holds social security numbers, addresses, or other personal information, those identities can be stolen and immediately abused.
Every single computer connected to the Internet can be used as a vehicle for attacking others, and those attacks will ultimately be traced back to you. This includes not only the spawning annoying email viruses that liken address books to hackers' dream mailing lists (remember the Nimda virus?) but also using your computer as a SPAM server, or have it serve up child pornography which one again, will get traced back to you. These are real threats.
First off, if you don't know what 'identity theft' is, go read about it, then come back and finish this article. An estimated ten million people were victims of identity theft in the United States this year alone. On average, individual victims lost somewhere between two and ten thousand dollars each per incidence, and the number grows every year.
Any way you slice it, identity theft is rampant and it is achieved through a number of standard methods employed by even the most novice of hackers. Some of those methods include the use of:
Viruses and Worms, well known by anyone who's used email in the last five years, these often carry or fetch other programs that can unleash attacks.
Remote Login, the "duh" of any UNIX administrator, this is an obvious entry point on many unprotected operating systems, and one that is easily overlooked.
Denial-of-Service Attacks, where attackers barrage the network with so much data that they ultimately render your computer unusable and in need of a reboot, or else open doors for full access into your computer.
Trojan Horses, programs pretending to be innocuous when reality they invite intruders inside and give full access to your computer.
Session Hijacking, the fancy name for using mail servers or programs used as vehicles for sending out viruses and other malware.
Bugs and Holes, the human errors in nearly every piece of software ever written, allow for easy access to those in the know.
Spyware, often synonymous with application backdoors, are programs or features in programs allowing for information flow in and out of networks without the user's knowledge, often utilized by dubious corporations as a means of profiling user data. These can also be a major security threat.
How firewalls work
Firewalls are great tools for enhancing security and privacy. Essentially, they control the traffic flow in and out of networks or computers. They work like customs agents, determining who is safe to come and go, for what purpose, and what they can bring with them. The "in" part is easier to understand: firewalls keep out intruders and destructive programs. The "out" part is trickier: firewalls prevent users from unwittingly sending private data into the wrong hands. For example, some browsers enable cookies which collect data about the browser users and send that data to the web sites or external networks. Firewalls can prevent those cookies from sending that data, thereby protecting users' privacy.
Firewalls cannot be used alone and by no means give the user permission to sleep at the wheel. Hardware firewalls, the standard for large networks and organizations, provide for a level of security that is easily controlled centrally and acts as a gateway to internal networks. Hardware firewalls are essential for multi-user and multi-computer environments, nearly all of which are connected directly to the Internet all the time. More small organizations and home users are installing inexpensive hardware firewalls in the form of broadband routers. This is recommended. A few popular routers are made by D-Link, NetGear and Linksys. Hardware firewalls will not be reviewed in this series, but can be researched through some of the links listed in the References section at the bottom of this article. These routers are more like the old style hardware boxes providing basic traffic monitoring. They guard the door, but one of their limitations is that they don't pay any attention to what's inside.
Basic firewall configurations
Two basic firewall configurations for a home office include:
Option 1:
Internet <--> Firewall Hardware or Software <--> Internal Network/Individual Computer
Option 2:
Internet <--> Hardware Firewall/Router <--> Personal Firewall Software <--> PC
Any method of protection with two levels of security is stronger than one. Think of birth control, for example. A system of using diaphragms or condoms alone is good, but one where both are used together is much more resistant. If at all possible, set up option 2.
On the most basic level, firewalls operate by denying certain types of traffic with specifically outlined exceptions (default deny), and accepting other types of traffic with different exceptions (default permit). The firewalls can inspect, modify, and route data according to defined rule sets. They employ a few different manners of sorting data including:
Packet filtering - a simple method, packet filtering entails analyzing small packets or chunks of data through a series of filters.
Proxy service - some information is transmitted by proxy, automatically responding to the source with some small amount of data.
Stateful inspection - this method looks at parts of packets to see if they match specific characteristics that are allowable. Most modern firewalls offer stateful inspection.
Firewall analysis is based on address, port, protocol, or application. Here are examples:
Address - Every computer or network gateway on the Internet has an IP (Internet Protocol) address, such as 126.1.228.4. They also have names corresponding to those addresses, known commonly as 'domain names,' like mail.yahoo.com. Firewalls can block particular sites from sending data through them based on their IP addresses. This can go as far as blocking certain subnets (126.1.228.x), meaning nothing from any computer in that realm of addresses will get through.
Protocol - Certain types of data conform to different communication standards or protocols. For example, the HTTP (Hyper Text Transfer Protocol) encompasses all web-related communications, and FTP (File Transfer Protocol) encompasses an older method of file transfers.
Port - Operating systems have entry points for certain types of data. Those entry points are called "ports". For example, HTTP requests go through port 80, and FTP requests go through ports 20 and 21. Firewalls can block or restrict transmission based on a port or series of ports. More common ports closed off are Telnet and FTP ports since more secure methods of transmission are available, and these are generally not used by the average home user anyway.
Application - Is it an Instant Messenger client that's sending the data? Is it an interactive computer game? Or is it attempted access by some unknown program, spyware you didn't know was installed, or some backdoor bot that wants to control your computer? Firewalls can observe the application level as well and warn you of attempted communications. We'll discuss how this works more in part two of this series.
When are firewalls most necessary?
Unfortunately, the Internet has grown to a point where every computer needs a firewall to be secure. If it's online, it's a target. Luckily, today's firewall software works as much more than just a traffic cop. Most options provide a variety of features which liken the software to a complex suite of security measures that are not only extremely useful, but can be fun to watch as well.
Features of typical desktop firewalls include those noted above: Port Control, Application Monitoring (also known as 'Program Control'), and Packet Filtering. Some personal firewall products have also started to extend beyond the traditional role of a firewall and additionally offer features useful to a home users, such as:
Data encryption - Rather than letting all data that's acceptable for transmission be sent in the clear, some firewalls will encrypt it.
Hiding your presence - Some firewall software will attempt to "hide" PCs from the outside world, making them less visible to hackers and self-propagating worms.
Reporting/Logging - Modern firewalls can report in detail what packets came from where, when, and provide analysis as to their purposes. This reporting can be essential information for understanding network traffic and preventing future attacks, as well as an indication of who gained access if a compromise has occurred.
Email virus protection - While traditionally in the realm of anti-virus software, this feature inspects individual email messages for red flags or known executables that are dangerous and rejects those messages.
Pop-up ad blocking - A dream come true, some firewalls can stop these things from ever getting onto the desktop where they so annoyingly flash and flutter in your face.
Cookie digestion - This feature will munch away at the cookies before they have a chance to transmit any information back to their source.
Spyware protection -- Some personal firewalls attempt to limit your exposure to Spyware by stopping the software's ability to contact its remote server and, in some cases, informing you of the attempt so that you can take further action.
Laptop protection - You can take it with you! But only if you have the right kind of firewall or are technical enough to know what you are doing. Often, personal firewalls are configured for one network: home or office. Once the computer is removed from that network, it is vulnerable due to the fact that every network is configured differently. Therefore, features that ensure secure mobility are key for traveling users.
A few noteworthy concerns
First, some personal firewalls create traffic flow problems for computers connected through corporate VPNs (Virtual Private Networks), so when using a VPN, be sure to choose compatible firewall software. Second, it is not advised to install most types of personal firewall software on large corporate networks. This reasoning is based on inconsistency issues. Network administrators cannot monitor how each user and machine is configured when a personal firewall is in place on large networks and as a result, cannot be sure of their relative security. One machine may have the latest version of a certain personal firewall program, whereas the computer in the next cubicle could have a totally different version with known security holes. Vendor consistency helps, but the best thing to do is look into newer versions of personal firewall software that incorporates central management through a server. For more information on these, see the subsequent article in this series.
A firewall is not the panacea to personal security
While a personal firewall should be on the first step that leads to your computer's front door, it should never be your sole form of protection. No matter how great the firewall, if passwords are compromised or email programs are left open, intruders can still walk right in. So before you put all your faith in a firewall, make sure to do the following:
Regularly install new Microsoft security patches - Critical patches for Microsoft operating system vulnerabilities often come out on a weekly basis. The infamous Windows Update needs to be run regularly to ensure the latest round of worms, virus and other vulnerabilities have been patch and your computer is no longer vulnerable.
Use anti-virus software - If you own a Windows-based PC, this is an absolute necessity. Windows is targeted more than any other operating system and viruses are generally written for Windows applications. These are easy to install, and some even come with firewall packages of their own now. The only trick is that virus definitions must be updated regularly. If not, the software is virtually useless. New viruses and worms come out constantly so keeping the latest virus definition on your machine will reduce the risk of infection. Most modern anti-virus applications now update themselves automatically, by default. In addition, many anti-virus applications will scan email before it reaches your inbox.
Install spyware blocking software - There are many freeware and shareware anti-spyware applications that will help mitigate the threat of spyware, software that was unknowingly installed on your computer and is used to watch you or track your movements on the Internet.
Install spam blocking software - This is another step in the mail protection process and not just one to limit junk mail. Spam often contains pesky viruses or scams, so if you can find a spam blocker you like, use it!
Change password(s) - Make them strong, and change them often. Also, make sure not to use the same passwords used on external networks, such as Amazon.com in case those sites are compromised without your knowing. For more information on good password practices, see: "The Simplest Security: A Guide to Better Password Practices." Also, if you run Windows XP, beware of hidden accounts and passwords. Check to make sure every account is secure, and create a schedule for changing passwords regularly. It's a pain, but it's important.
Disable ActiveX and Java in Internet Explorer - Both of these technologies are regularly exploited in malicious web pages and can be used to infect your computer with viruses, worms, trojans, or spyware. Unfortunately, disabling ActiveX in recent versions of Internet Explorer causes a warning to be displayed when visiting legitimate sites that use this technology.
Disable auto-download or auto-open features - It's difficult to know what comes in and out when programs have free reign to transmit at will, particularly with applications that you've installed and forgotten about. Disabling those that auto-transmit lowers the chances of attack.
Turn off file and printer sharing - If you don't need it on your home network, disable it. This should be a given, as file and printer sharing should never be made available over the Internet by a home user.
Consider a new method of receiving email - It's a sensitive topic, but email programs are historically full of security holes, particularly in the areas of attachments and HTML rendering. To be sure yours isn't one of those, do a little research. Install the latest version of whatever program you choose, and configure it such that attachments are not automatically downloaded or executed. This is more useful than any virus checker. Keep in mind that the more popular a mail program is, the more it will become a target. Outlook Express is a prime example of this. Keep on top of the security patches offered by the vendor, as many attacks are based on holes that were discovered (and patched) many months before.
Install a hardware firewall - As noted above, many routers provide this functionality. It's a smart, simple way to protect new PCs that may be added to your home network.
Consider a different operating system - Windows gets hacked far more than any other platform. If this is a major concern for you, during your next computer purchase consider an alternate operating system. MacOS X still has no confirmed viruses spreading in the wild, compared to more than 65,000 viruses for Windows-based computers. Or try Linux on your desktop.
Backup, backup, backup - Do it early and often. Keep full backups as well as incremental backups. With external media becoming cheaper all the time, there is no excuse for not having a solid backup solution. And to be really safe, keep one offsite, like in a friend or family member's fireproof safe. Swap it every three to six months. If the house burns down, precious notes, photographs and work will be preserved.
This is a long list, but inevitably these simple measures are often overlooked by the average home user. No one wants to fall asleep at the wheel. The results can be much more time-consuming and costly than basic maintenance of you home office security. And when all else fails, work offline for a while. It will throw off any would-be attackers for a while and it can be a refreshing change.