Buyer beware: Reading the fine print

When I tell people that I am an analyst in the information security industry, it inevitably leads to a series of questions. How do I get rid of spyware? Is the spam problem really as bad as I think it is? Why do large organizations keep losing personal data?

There is certainly a lot of interest in security and pent-up consumer demand for good security products. Despite this, I'm confused by a security service offered by consumer electronics giant BestBuy.

In BestBuy's advertising circular from the Sunday Boston Globe, the company inserted some ad copy in an orange text box beside the weekly PC specials that said the following:

"We'll Help Keep Your PC Corruption-Free. Get your new computer running smooth and secure before you leave the store. Our 3-tiered procedure includes system customization, antivirus installation, and a functionality check by a Geek Squad Agent."

In exchange for this service, the good folks at BestBuy want you to part with $84. Now I haven't actually talked to anyone in this "Geek Squad" though I do know plenty of geeks. I just wonder what you actually get for your money.

Let's analyze this official sounding "3-tiered" procedure: Step 1 is "system customization." I figure that the geeks remove all of the garbage software that ships on new PCs and perhaps set up a firewall. Not much work there. Step 2 is "antivirus installation." Last time I checked almost every new PC ships with antivirus software already installed thanks to the good folks at McAfee and Symantec. Don't see any value here. Finally, the geek squad performs a "functionality check" on your brand new PC. I've set up my fair share of PCs and have no idea what this means.

Perhaps I'm being cynical but it seems to me that the $84 fits into the same category as the infamous "extended warranty," (i.e. a margin-buffer that goes straight to the store's bottom line).

Note to consumers: Security is ugly for everyone including professionals. The one time you are relatively safe is with a new PC, so I'd walk away from the geek squad if I were you.

To protect your PC, follow these simple rules: 1) Make sure to regularly download signatures from your security software vendor; 2) Keep the Windows Update service turned on; 3) Don't download software from untrusted Web sites; 4) Don??t open emails or attachments from unknown or unexpected sources; 5) Create passwords with at least 8 alphanumeric characters (combination of upper and lower case as well as symbols); and 6) Never give your user name and password out either verbally or electronically.

These tips should help keep you safe online. Feel free to donate the $84 to the charity of your choice.