Great thread guys! I enjoy these back and forth, difference of opinions.
I agree with holdum333 that surfing habits, going to legit sites to download software, and having PC security software is a big part of the battle here. But I also agree with Neemobeer, that doing all that does not guarantee you'll have an infection free PC. The only way to do that is, well not get on the internet at all. But even if you did that, your information is being stored on a server somewhere (banking and government). So there really is no way to escape it.
Messing with computers and the internet since Windows 95, I've come to think that it
just takes a damn lot to protect yourself online. That's just the way it is today. First it started out that all you needed was a simple anti-virus like Norton (Symantec corp version is still great in my opinion, the home Norton is horrible). Then, firewalls came to be a security standard, the ZoneAlarm days. Then I remember more talk about home router security, especially when wifi routers started hitting the market hard when high speed became widely available.So updating the firmware on your routers. Then the rise of malware. Malware/Malvertising has been the major focus because it's so clandestine and sneaky on how it gets on your system. Anyone remember this guy, ugh! And those bloated spyware email apps that let you put "cool and funny" gifs in your email.
Ad-Aware was great in those days. Now it's junk. HiJackThis! was awesome back then too. (The guy sold out, don't blame him he deserved the money for how great that little tool was) WinPatrol was good too. Then I think more PC users started to become aware of the "services.msc" And I also think Microsoft and software companies started to respond in kind of the push back from tech media and tech users about properly locking down their OS and software.
Our web browsers then needed to be locked down. I'm positive everyone in this forum is using Firefox or Chrome with an adblocker and privacy protection. We'd never think of surfing the web without this type of protection. Yet there's still millions of people that surf without them. And nefarious people are still taking advantage of it. Just like that Yahoo malware injected ads debacle a few years back, smh. That was pretty smooth on the bad guys part. And now the adblocking has led to an entirely new conversation about legit websites being able to create sources of revenue and consumer protection from malware/spyware and the ads taking up bandwidth on their cellphone plans.
And now we've arrived at Ransonware! So I guess what I'm saying is it's not simple anymore. Just having the latest security software isn't enough. One also needs that layered defense that Neemobeer brought up and the safe web surfing habits holdum333 said. I would just add that in today's age of PC security Backing up and Network should be part of that regiment. If one surfs the web a lot their chances just statistically go up for getting hit with something. So having a back up of your files, especially if they get hit with ransomware, is extremely important. And everyone has wifi in their homes. Everyone is quickly adding an internet connected TV or device (wifi security cameras, Amazon's Echo, all the IoT devices hitting the market) to their network. So going checking our router's settings, locking it down, changing the default password, keeping the firmware updated, making sure the router itself doesn't have a hardware vulnerability that calls for upgrading the router itself. There's just so much once you really dive in.
Looking forward to ya'lls reply!