Note: This information has been reprinted without the permission of the Microsoft Security Response Center but is widely regarded as one of the most important statements on computer security and should be on your must-read list. Many essential resources including security bulletins and whitepapers can be found at Microsoft's Security site, http://www.microsoft.com/security.

These are the Top 10 Immutable Laws of Security as they pertain to users. This article can be found in its entirety here.
  1. If a bad guy can persuade you to run his program on your computer, it's not your computer anymore.
  2. If a bad guy can alter the operating system on your computer, it's not your computer anymore.
  3. If a bad guy has unrestricted physical access to your computer, it's not your computer anymore.
  4. If you allow a bad guy to upload programs to your Web site, it's not your Web site any more.
  5. Weak passwords trump strong security.
  6. A machine is only as secure as the administrator is trustworthy.
  7. Encrypted data is only as secure as the decryption key.
  8. An out-of-date virus scanner is only marginally better than no virus scanner at all.
  9. Absolute anonymity isn't practical, in real life or on the Web.
  10. Technology is not a panacea.
These are the Top 10 Immutable Laws of Security Administration. This article can be found in its entirety here.
  1. Nobody believes anything bad can happen to them, until it does
  2. Security only works if the secure way also happens to be the easy way
  3. If you don't keep up with security fixes, your network won't be yours for long
  4. It doesn't do much good to install security fixes on a computer that was never secured to begin with
  5. Eternal vigilance is the price of security
  6. There really is someone out there trying to guess your passwords
  7. The most secure network is a well-administered one
  8. The difficulty of defending a network is directly proportional to its complexity
  9. Security isn't about risk avoidance; it's about risk management
  10. Technology is not a panacea

The below information has been partially reproduced without permission from content found here at Arizona State University's web site.

9 Steps to Protect Your Personal Information and Your Computer.
  1. Use Secure Passwords or Passphrases
  2. Keep Operating System & Software Up-to-date
  3. Install & Maintain Antivirus Software
  4. Implement Network Security
  5. Beware of E-mail Attachments & Internet Downloads
  6. Create Backups for Files & Folders
  7. Use Alternate Web Browsers
  8. Remove Unused Software
  9. Limit Access to Sensitive Information