I'll issue a standard disclaimer before I dive in. Although these items may be considered best practice they are in no way a silver bullet to keeping your PC from getting infected with malware. If they are followed and if you remain diligent, you can greatly decrease your risk.

Now that we have that out of the way, CERT has 9 tasks that they recommend in their article. I'll list them out one by one followed by a short blurb after each.

Task 1 - Install and Use Anti-Virus Programs. I'll add onto this that it is not enough to simply install and use the program, but rather that it must also be kept as up to date as possible. Ensure that you are downloading updates regularly and that your subscription is up to date. Your anti-virus program is only as effective as the last update it downloaded.

Task 2 - Keep your System Patched. This includes not only your operating system itself, but security updates for all of the applications that are installed on it. Virtually any installed software application has the propensity for a vulnerability, and that vulnerability is the open door for a hacker to inject malware onto your PC.

Task 3 - Use Care When Reading Email With Attachments. This is something that we have been preaching for quite some time given that we are in the email defense space. The utmost of care needs to be given when opening any email attachment whether it comes from someone that you know or not. If an attachment arrives from someone you know and you weren't expecting its' arrival, contact them and make sure that it is truly from them. Of course, never open attachments from people that you don't know.

Task 4 - Install and Use a Firewall Program. Since the release of Windows XP Service Pack 2 a software firewall has been included in as part of the operating system. Make sure that any software firewall that you have installed, however is inspecting both incoming and outgoing traffic from your PC. It is one thing to keep intruders from getting to your PC, but should it become infected your firewall needs to be able to stop malicious outbound traffic from either downloading more malware or communicating with the PC that is controlling it.

Task 5 - Make Backups of Important Files and Folders. Make sure that documents, spreadsheets, reports, pictures, articles, and anything else that you have written or otherwise has value to you is backed up outside of your PC. This can be either on an external USB drive or even on an online file storage system. This way if your PC does get infected with malware and deletes files from your PC or even if your PC has a hardware failure like the loss of a disk drive you won't lose work that is important to you or that you wouldn't want to redo.

Task 6 - Use Strong Passwords. A good strong password generally has a mixture of upper and lower case letters along with numbers and some form of punctuation. A common method of password cracking is called brute force where the hacker attempts every combination of characters in order to find out what your password is. The more complex your password is the longer it will take the hacker to figure it out. There are lots of ways around passwords, however since passwords are generally meant to only protect users from other users. If a criminal wants to get your password, they have plenty of methods to try to get at it whether it be keyloggers, sniffers, or other forms of malware. Although strong passwords are a good practice to follow, it isn't going to protect you from a criminal.

Task 7 - Use Care When Downloading and Installing Programs. This is especially true if you frequently download and install applications that you found online or obtained via a peer to peer network. The same quality standards do not exist online as in other regulated industries. As a result, the new screen saver that you just downloaded which shows pictures of your favorite sports team's stars may actually be a front for a backdoor that could be a prime malware injection point for a hacker. Always be sure you understand what you are installing onto your computer before you run the setup program.

Task 8 - Install and Use a Hardware Firewall. The CERT article sums this up well where they said "Complement your firewall program by installing a hardware firewall. Together, these two firewalls stand between your home computer and the Internet." This is a good practice to follow. Everyone should do it.

Task 9 - Install and Use a File Encryption Program and Access Controls. Access Controls are especially important if you share a computer with your children. Kids will browse the internet, download, click, and install anything that they can get their hands on with no eye for security (Adults aren't off the hook for this either...they do it too!). As a result, it is important that access controls be implemented which prevent or at least limit this type of behavior to mitigate as much risk as possible. Encryption of your important files will keep the contents of the documents that you want to keep secret reasonably hidden from prying eyes.

Although these practices are not going to keep you, your PC, or your personal information protected with 100% certainty, they provide a solid roadmap to follow such that you can keep yourself safe from most computer related threats.

Technology is only part of the solution and will only provide so much protection. The biggest weapon in the fight against hackers and malware is user education and diligence. Without arming ourselves, our users, and our customers with the knowledge that they need in order to prevent themselves from online crime the risk level will always remain very high.