my friends were scammed
My low-tech friends got trapped in a scam while using their old white iMac. When trying to find a fix for their printer, they clicked on a fake Canon tech support link. The guy they reached had them go to logmein123 and enter his key number. Then he took over their computer, gave them totally bogus advice, and probably grabbed whatever info he wanted.
Normally Logmein files would be somewhat findable among the visible and invisible files, including in the Application Support folder. But in this case, there was nothing I could find anywhere. Except in the console log, where his footprints were clearly visible.
I finally copied their docs to an external drive, zeroed out the internal HD, and reinstalled Snow Leopard. Also told them to contact all sensitive accounts, like bank, and change passwords.
I doubt they'll make this mistake again, but I'd like to protect them from other online problems. The steps I'm considering:
1. Turn on FileVault.
2. Turn on the firewall, limit connections to signed software, and turn on stealth mode.
3. Have them run normally in a non-admin account.
4. Increase the strength of their passwords.
5. Disable Java and Flash.
6. Disable automatic login.
7. Maybe install some third-party protection like the Intego internet security suite --- preferably something that will work in the background without getting them confused.
Anything else? Thanks.
Mac Pro, Mac OS X (10.6.8)