Slashdot Mirror

← Back to Stories (view on slashdot.org)

Consumer Reports on 'State of the Net'

Posted by CmdrTaco on from the we-trust-those-guys-right? dept.

netbuzz writes "A " State of the Net" survey to be released today by Consumer Reports contends that Americans lost $7 billion over the past two years to malware and myriad online scams. Not surprisingly, a significant portion of this financial pain appears to have been avoidable, as the survey reveals a widespread continuing negligence toward the use of home firewalls and virus protection. As for underage children using MySpace and the like? There, too, the risks in many case look to be self-inflicted, as 13 percent of children fail to meet the 14-year-old age minimum on MySpace, and, as the organization notes: "Those were just the ones the parents knew about."

11 of 95 comments (clear)

  1. viruses, malware, et cetera by SolusSD · · Score: 5, Insightful

    I guess I'm not surprised they came up with such a huge figure for dollars lost-- I hate to be the person that's just going to get modded down for this-- but maybe if >80% of computer users werent using windows and there was more diversity on the net (client-wise, at least) viruses and, to a lesser extent, malware wouldn't find it so easy to inflict such damage. A monoculture can be brought to its knees by a common vunerability.

    1. Re:viruses, malware, et cetera by CaptainPatent · · Score: 4, Funny

      I hate to be the person that's just going to get modded down for this-- but maybe if >80% of computer users werent using windows Why yes... how dare you bash such a wonderful and secure operating system on a windows-loving forum.

      Mods - Into attack mode

      --
      Well, back to rejecting software patent applications.
    2. Re:viruses, malware, et cetera by Bacon+Bits · · Score: 4, Insightful

      Security is a state of mind, not a software package.

      Malware will be no less prevalent if Linux takes over the home market from Windows because the average home user still doesn't understand computer security (and has no desire to try). The vast majority of malware today is not installed through IE security holes and drive-by-downloads like they were in Windows 9x days. They're all trojans. No matter how tight the security on Linux, you can never stop a user from downloading and installing a malicious trojan for a "FREE SCR33NS4VER!1!!!".

      --
      The road to tyranny has always been paved with claims of necessity.
    3. Re:viruses, malware, et cetera by turnipsatemybaby · · Score: 5, Insightful

      You can't put the blame solely on Windows for this. There's *plenty* that can be done even with a Windows box to protect it. The single easiest step being to plug a cheap $20 router between the computer and the internet. Hell, I'm even starting to see modems with built in routers now.

      One problem is education. A bigger problem is that users don't see this as being "their problem". The ISP should be protecting them. The banks should be protecting them. The gov't should be protecting them. They don't feel they need to bear any of the responsibility of what is going on. I remember one old neighbour who's computer was riddled with viruses, and their ISP cut them off. They proceeded to blast the ISP for cutting the service and not not protecting them in the first place.

      Until people becoming willing to take responsibility, the education won't happen. Until the education happens, these problems cannot be prevented.

    4. Re:viruses, malware, et cetera by ColdWetDog · · Score: 5, Insightful

      Have mandatory 'securing your computer' classes at the high school and college levels.

      That will work just as well as:

      Mandatory driving classes
      Mandatory civics classes
      Mandatory typing classes

      At a population level, people are Just Plain Stupid (TM, patent pending). It's the bell curve - the short bus tends to get pretty crowded.

      --
      Faster! Faster! Faster would be better!
    5. Re:viruses, malware, et cetera by UserChrisCanter4 · · Score: 4, Informative

      In addition to a 3DS Max course, I teach computer applications at the high school level. It, along with a few other courses (one called Business Computer Information Systems, Computer Science, and some specialized graphics courses) satisfy the state requirement for one year of computer credits. Those state level requirements are prescribed by the state, and are based on teaching certain concepts within a given type of program. Thus, we aren't told to "teach Word;" rather, we're told that any child passing our class should be able to do functions X, Y, and Z in a word processor. My course spends one semester on computer hardware and MS Office, and the subsequent semester on web design using HTML code and WYSIWYG editors, photo editing in Photoshop, and some simple animation in Flash. For an assortment of reasons, some which I support and some which I don't, nearly all of our software is closed-source. I say this only to provide a standard to analyze your statement:

      The vast majority kids are not "computer literate" in any functional sense of the word. Honestly, this makes them much like the vast majority of adults, so it's no real surprise. When children (14-18) enter my class, they understand the mere basics of certain programs - thy understand how to instant message, but not necessarily how to uninstall an IM program. They know that some web-based proxy sites can't get around the myspace filter, but they don't understand what's going on or why it would be easier to type in a proxy server address for their browser. They don't understand the first thing about basic file management, or why naming files with descriptive names is a good idea, or why their Powerpoint presentation that's laden with images and sound won't fit on a floppy disk. And they really, really don't understand that a spreadsheet has uses beyond making tables of stuff, that the word "memory" can have different meanings, why their computer is "running slow", or that the concept of mail merge even exists.

      In short, they are exactly like most non-techies that you probably interact with on a daily basis. To say that the people teaching the classes don't know anymore is pretty absurd; I'll grant that there are bad teachers, but it honestly isn't that hard to know more than the average person. In my experience, the people who teach these courses (at least the ones I've met) seem intelligent and experienced enough that they certainly have plenty to teach. They may not be "running apache under Gentoo on their toaster" geeks, but they're educated and intelligent, and (most importantly) they know their material.

      At my school, the 10% who are geeks or gunning for extra GPA take our Computer Science AP course. The rest end up in my course or one of the similar ones. I assure you: most kids are not computer literate, and I truly believe they do benefit from some useful computer education.

    6. Re:viruses, malware, et cetera by MoonBuggy · · Score: 4, Insightful

      Anecdotal, I know, but all of the high school level ICT teachers I've come across honestly don't know as much as the geek contingent of their class. AFAICS the root of the problem is sending business studies teachers and the like into teaching kids how to use computers on the basis that they know how to use MS office - it means the teachers have the same issues as the kids you mention (although on a slightly different level, obviously): they can point and click to get a database in Access but look at you as if you have three heads if they see an SQL query.

      Interestingly, too, I almost decided not to post this; I started to think that maybe I was being unfair to expect people with a class comprised (by definition) of mostly 'average' students who don't really care, suddenly to know more than those students who have a genuine interest in the subject. Then I realised that I've never seen a maths teacher fail to be able to work through a formula written by a particularly bright student, or a language teacher fail to understand a particularly complex sentence from a fluent speaker. I've seen a few in these areas who couldn't communicate a concept to save their lives, but at least they understand the concept themselves.

      I really mean no disrespect to all the good teachers out there (and the parent poster certainly sounds like one of the good ones), I just think it's a shame that mediocrity in terms of knowledge seems to be accepted in the IT teaching field when it isn't in others.

  2. No wonder... by MarcoG42 · · Score: 4, Interesting

    When I was in school I was punished for doing anything with a computer that wasn't within the teacher's scope of instruction; making spreadsheets and word processing. Most parents know next to nothing about how to operate a PC outside of simple browsing and email. Anything else is intimidating techno-wizardry. Teaching more advanced computer classes in grade school could easily reduce that "cost." I've found parents are more than willing to take little Bobby's advice on computer related topics, because at least he can program the damned VCR.

    --
    If nothing else works, a total pig-headed unwillingness to look facts in the face will see us through.
  3. I'm pretty sure I know the response by Opportunist · · Score: 4, Insightful

    The response will be more cracking down on MySpace and other community networking sites (thinkofthechildren and all the crap), because it's beyond the comprehension of kids to understand it might not be a good idea to click on every single craplink offered to you. After all, that's something even 30 year olds don't understand, how should 13 year olds?

    Sure, it won't solve a thing. But hell, we did something. We didn't do anything that changed anything, but nobody can complain that we don't do anything.

    Instead, it could maybe be a good idea to educate people that they should use some AV kits, firewall kits and most important some brains when clicking up and down the 'net. Yeah, I know, I know, everyone wants to replace good ol' common sense (why is it called "common" sense is beyond me, but hey, you know, maybe in the old times when those idioms were created, it was actually common) with technology, we want to bubblewrap our kids instead of preparing them for life, but hey, it simply and plainly does not work. It never did and never will.

    Education and information is the key weapon against trojans. Sure, that requires you to learn how to protect yourself and how to defend yourself against malware. You don't want to? Ok, then I don't want you in my net. Get outta here 'til you learned how to operate safely in an environment where your clueless, careless actions cause harm to other people!

    How that harms me? Well, considering that there are DDoS sheeps worth a few hundred gigabit/sec, one could see (if one knows how BGP works) how this could be a minor inconvenience to the internet as a whole. So far, "critical mass" is not yet obtained, and they are not in a centralized hand. But I shudder at the thought that it might be. Imagine someone actually having the ability to bring the net to its knees with sheeps firing intercontinentally simultanously. We're heading there. Think he could do the Dr. Evil prank of asking for (pinky-at-mouth) a million bucks and he'll be paid?

    All made possible by clueless people who don't give a jack about security, ignorantly participating in DDoS attacks every day.

    And what's best about it, they're not even liable for it. I wonder, maybe one should set up a protest through the 'net, and whoever wants to participate and protest against some oil company that fills our seas with crud or clothing companies that employ kids at sweatshops, simply lets himself be infected by a trojan which then DOSes those companies' internet access lines. Hey, don't worry, you're not liable for it. You're just a poor victim yourself, infected by that nefarious trojan.

    --
    We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
  4. What To Do. by RealProgrammer · · Score: 4, Informative

    Part of this may sound like preaching to the choir, but bear with me. There is a tendency to want the government to do something about every problem, and the hassle of online scumbaggery is no exception. Individuals (and their guardians) need to take responsibility for their own protection, and not expect either the government to protect them (which it cannot) or for faceless strangers to be kind to them, which a tiny but significant portion will not.

    Each of these steps solves roughly half of the remaining problems not solved by the previous ones.

    1. A fool and his unarchived data are soon parted. If you want it, make an offline copy of it.
    2. Switch to Linux, a Mac, or Anything But Windows. Most of the following only apply if this one won't work for you.
    3. Switch to Mozilla Firefox.
    4. Buy and install a firewall box.
    5. Buy and install a virus scanner.
    6. Download and install Lavasoft Ad-Aware or similar spyware detector, even if your virus scanner says it provides that protection.
    7. Don't open email with attachments, or respond to spam with so much as a single click. You have been warned.
    8. Stay away from porn sites. They're bad for your computer.
    9. Stay away from online games except those you know to be crap-free.
    10. You don't know that any of them are crap-free.
    11. Don't download commercial music except from commercial vendors to whom you pay a fee. Yeah, sucks to be us. But you get what you deserve, and if you're trying to get something for nothing, you'll give something for nothing in return.

    So what do you do if your kids download some game, P2P app, or other crapware-laden piece of stupidity? Take away the computer. What if you have several kids, and you don't know who did it? Enlist their aid and hold them all accountable. Tell them that if any of them downloads crapware and the guilty party won't come forward, they all do their homework at the library (for a week or month or whatever).

    --
    sigs, as if you care.
  5. "Lost" 7 billion by fermion · · Score: 4, Insightful
    Over the past month I "lost" $1000 due to traffic.

    During a year of not working i "lost" 50K.

    By downloading my albums from itunes rather than buying locally, my local record shop "loses" perhaps $100 a year.

    Of course all of these are not even paper loses, as they do not represent money that is any way real. They barely qualify as opportunity costs.

    I really don't understand why these numbers are represented as losses. If a firm pays $.25 for each advertisement, do they lose that money for customers who do not buy anything, or do they just alginate the entire thing as a loss, or do they say it costs, say $2 to acquire a customer. When a computer is down, is this a loss, or cost of doing business with that computer. Presumable if the computer started generating actual losses, the firm would no longer use it. In fact machines are brought in because not using machines costs more money, and represent real losses. Of course, once the machines are in the savings are often not as great as one calculated, which some might consider a loss.

    Of course even if this is a loss, it hardly seems significant. It is like $20 per person. The recent price increase at Starbucks likely has a greater impact.

    --
    "She's a scientist and a lesbian. She's not going to let it slide." Orphan Black