Hey I am wondering what would be recommended for online transaction security on windows7 machine. Currently there's McAfee Total Protection, Microsoft EMET and hardened browser with security plugins. I had running DNSCrypt and Trusteer among other solutions as well but removed them due to performance issues. Also how would you configure system? Would you create a special user in Windows7 just for this? Or maybe virtualized desktop? Cheers and thanks for answers.
i am not an expert on this, but hopefully some of the following is helpful... Is your network secure? here's a good list of tools to consider https://www.wilderssecurity.com/thre...-of-threats-with-only-four-strategies.376120/ check here to see products tested against financial attacks https://www.mrg-effitas.com/ Trusteer protects against logging attempts, checks for fake certificates... - you could look at similar products like Zemana AL that are lighter or look at using a secure browser like Safepay or Quarri MyPOQ that have similar protections to Trusteer or Zemana AL built in. Using a Standard User account is a good way to restrict malware - it's #4 on the list of strategies above - but i don't think a separate user account will help you & a VM is not any more secure then your real system - just easier to replace. i think something like Sandboxie would be more useful - it's easy to wipe a sandbox to make sure it's clean before any financial transactions.
First, make sure your computer is clean. I would prefer to use Hitman Pro and Zemana Anti-Malware for starters. That should detect most of the malwares. Then clean your browser of any unknown addons/plugins. I use DNSCrypt and DNSSEC Validator, but I am yet to see any banking sites support DNSSEC. I recommend HMP.Alert. Zemana Antilogger is good too. Check this guide too https://www.wilderssecurity.com/thre...are-a-hardtime-to-intrude-your-system.378631/
Thanks for comments, I don't really do much of that stuff was more like wondering because there are so many guides and advices and obviously some are wrong. As for DNSSEC and similar, I know, sadly there are many security features that are used by small private servers and sites that don't need any protection which makes them more secure than places like online shops or banks, but then I ain't the one to be worried here. The problem with programs like Trusteer is that they horribly lag even newest machines and are barely usable when it comes to general computer usage. I hope more people will post here too, cheers!
An isolated computer running whatever-OS that's blocked to necessary domains/ip at client FW and router.... Does that work for you? They would require malware served from your bank and/or a deeply targeted attack. If you hold a lot of cash, you should consider asking your bank for a secure console and naturally, dual authentication. Some banks will require additional auth when moving money. Some will even send you a snippet of the transaction including amount/rout/acct# Remember, you as a user can only do so much...