I don't know if you've all heard/read about the software from companies such as "hacking team", see e.g. the remote control system:
- https://wikileaks.org/spyfiles/files/0/31_200810-ISS-PRG-HACKINGTEAM.pdf
- http://surveillance.rsf.org/en/hacking-team/
- hackingteam.it - and many other pages
I was a bit surprised about how easy it is for everyone to use such a tool to hack everything. What they do is to have a really really simply tool (the interface is simple, obviously the security penetration is for highly specialized hackers) that even idiots can use, to hack other people's computer - ALSO LINUX. So Linux is not safe.
For me, I normally don't click links in emails. I don't download pirate software. But I think if somebody should use such a tool against me, they should setup a webpage and after I've visited this webpage my pc would be injected. It's not that I have anything to hide, it's just I want to protect my pc against criminals and get the highest possibly security.
So I've been thinking about "sandboxing" my mozilla browser and chromium browser. I think that should make me >95% more safe, as this is where I imagine criminals potentially could take over my pc. Do you agree that sandboxing the browser is the best defense against criminals taking over one's pc? Exactly which tools/methods are recommended for increasing the security level against such dangerous attacks (they're invisible to virus/malware scanners and exploit 0-day vulnerabilities)?
I also have wireshark, but I'm not clever enough and haven't learned how to analyze my own IP traffic to look for such things in my home network although I would like to learn more about how to detect such attacks. I think this is indeed a very interesting topic, I hope to hear/read good guidelines other than just "don't click links in emails which is suspicious"...
