If you have more than 1000 Bitcoins in your wallet:
1. get yourself a low cost netbook.
2. Install not bloated linux (like archlinux) or FreeBSD or OpenBSD (in order of growing paranoia).
- make sure that the above is done with ecrypted partitions and swap (plenty of guides on the net).
- make sure that the above is done while offline as much as possible (for truly paranoid ones).
- make sure that you do not not even configure wireless hardware, let alone using it
- physically plug in Ethernet cable when you need connectivity for a minute or so
3. Install bitcoin client, generate a bunch of bitcoin addresses (current account)
4. Over time transfer in small amounts your funds from your existing client to the addresses created in step 3
5. Keep this used exclusively as bitcoin client and nothing else, plug in Ethernet cable when you need to transfer money.
6. Keep this hardware wallet safe.
7. Creating a bitcoin savings account and making secure backups is still need to be done as described in multiply guides elsewhere.
P.S. Do not forget your passwords.
1. get yourself a low cost netbook.
2. Install not bloated linux (like archlinux) or FreeBSD or OpenBSD (in order of growing paranoia).
- make sure that the above is done with ecrypted partitions and swap (plenty of guides on the net).
- make sure that the above is done while offline as much as possible (for truly paranoid ones).
- make sure that you do not not even configure wireless hardware, let alone using it
- physically plug in Ethernet cable when you need connectivity for a minute or so
3. Install bitcoin client, generate a bunch of bitcoin addresses (current account)
4. Over time transfer in small amounts your funds from your existing client to the addresses created in step 3
5. Keep this used exclusively as bitcoin client and nothing else, plug in Ethernet cable when you need to transfer money.
6. Keep this hardware wallet safe.
7. Creating a bitcoin savings account and making secure backups is still need to be done as described in multiply guides elsewhere.
P.S. Do not forget your passwords.
Is all of that really needed? Seriously?
Quote
I mean what do you think they are going to do to if you don't install any malicious software or run software that hasn't been updated, or an OS that hasn't been updated for that matter.
Ever heard of 0days?Quote
Also I saw another post that I forgot to quote about not having an anti-virus program and still never getting a virus, and people were saying I doubt it? How do you think viruses are aquired? Most of the time it's through blatent user error, such as running some random Java applet on a website, or not having your PDF reader updated, or turning off Windows Updates! Maybe you get attacked by the one in a million buffer overflow exploits before they are patched quickly enough, but aren't you running Windows 7 which has protection against it? 
No. Very often viruses are acquired through exploiting 0day vulnerabilities, using for example driveby exploit kits on websites. You don't need to click anything, you don't need to give permission for anything, you just have to open a webpage. That can be a random newspaper whose site has been broken into. Or did you really think all 'virus creators' were still kids in their parents basement?Quote
The best potential anti-virus is the person using the computer! Come on people, you just don't get exploited by clicking a link any more, we're well past the IE6 times!
See above, blatant bullshit.Quote
I will make an important point though for people who aren't as paranoid but do want to keep themselves free of malicious software, simply keep everything updated and really limit what you download software-wise. Make sure Windows Updates are on, turning them off is a deathwish.
Windows Update also likes to install software that transmits data about your computer and certain use of it to Microsoft. Without consent. Funny how spyware also comes in through the Windows Update feature, huh?Quote
Also on another note, try not to use many addons on browsers, addons are a bigger source of holes than the browsers themselves, one of the most commonly attacked one is Adobe PDF reader plugin, where you can literally get exploited just by browsing to a PDF on your browser, I'd avoid those kind of addons completely.
The Adobe PDF reader plugin is not exploited, Adobe PDF Reader itself is exploited. Not to mention that you can usually not just remove the Adobe Reader plugin from your browser after you installed Reader. On that note, get a better PDF reader like Foxit PDF Reader (also free).You are very much underestimating how vulnerable many systems are, and how easy it is to catch something bad without ever executing anything you downloaded yourself. Stop blaming the users and look at the systems first.
Of course I know about 0day exploits, the odds of you getting hit by one of those is very low. What kind of websites do you hang around in order to get hit by a 0day exploit? I don't really want to know, insecure websites maybe or else some black market websites that are suspicious in the first place. What are the odds you visit a large compromised website with a 0day exploit before either the website is fixed or your program has been updated?
Also I'm aware of the fact it's not the plugin that is exploited, but it is the main source of where people get exploited by it, because they click on a link to a malicious PDF file without even thinking about it, or even noticing that the link is to a PDF file. Also you can remove the plugin just fine after installing it. Also you're assuming that I use Adobe PDF Reader, when in fact you are incorrect, I use Foxit PDF Reader and have been for several years.
Please spare me your conspiracy theories about Microsoft, they aren't giving you spyware like you said.
Oh and in future when talking to me, please don't use such disgraceful language, I'm treating you with respect, I expect the same in return, even if you disagree with me. We're all adults here, so start acting like one by having a mature conversation rather than blatently attacking me verbally. If you do not start doing that, I will not respond to you again.