The recent discovery and announcement of the new 'Flame" malware is generating quite a bit of mainstream press attention over the last day or so. Haven't heard of it? You probably will soon. It's a very sophisticated piece of malicious computer code (aka 'malware') that, given its complexity, had to be state-sponsored. In other words, this wasn't some basement kid on a lark - someone or something with money is behind this one. It doesn't do any damage per se but it can steal documents and record key strokes so it can listen in on Skype calls and capture e-mail and instant messaging conversations. It even uses bluetooth and can grab data from the computer's camera!
So far, it has primarily targeted computers in Iran and other middle-eastern countries (draw your own conclusions here!) and the estimates are that maybe only 1,000 targets have been infected so far. However, it has been operating undiscovered for several years and, because it is modular, it is easily modified and re-tasked by its controllers.
At this point, none of the major antivirus products on the market can detect or stop this malware. Scary huh? Don't worry... they'll figure it out. The really scary part is - now that the secret is out - that there will likely be many players in the web's black market trying to replicate the techniques used by Flame and incorporate these into future malware attacks. Those are the ones you and I have to worry about.
What to do? The best advice is still "defense in depth". Your business should have multiple layers of protection and, ideally, each layer should come from a different security vendor. For example, you'll have antivirus protection on your desktop systems from one vendor and your incoming e-mail is scanned by another vendor's product. You should have a smart firewall that also has virus, intrusion and spyware protection built in to it. Finally, user education is key. You should have a published Acceptable Use Policy for your office Internet, a good password policy, and staff should be regularly reminded of social engineering techniques used by scammers.
For more information on the Flame virus, check out these two articles:
http://www.darkreading.com/advanced-threats/167901091/security/attacks-breaches/240001129/flame-fans-notion-of-more-weapons-yet-to-be-found.html?pgno=1
http://www.theglobeandmail.com/news/technology/tech-news/flame-virus-set-to-spread-like-wildfire/article2447114/
Wednesday, May 30, 2012
Tuesday, May 29, 2012
Clumsy Scammer Gets Caught!
A link to a good article in the publication "Security Dark Reading" was passed on to me this week. It's a great story of a fake antivirus software scam company trying to fool a security expert. They tried to use a clumsy "it's Microsoft calling and your system has a problem" premise to get the target person to buy their junk and, probably, infect his computer with their malicious software. Unfortunately for them, the target was a security expert and he played them along to learn about their rather amateurish scam. It's kind of like the story of the incompetent burglar getting caught breaking into the police station.
It's an interesting story and you can read it at the link below. The key point is to remember that Microsoft (or Google or Apple or any other major computer vendor) won't ever call you at home and that, as our technical defenses get better, the bad guys (especially the incompetent ones) will resort to social engineering techniques to try to fool you. The lesson is always be wary... if it sounds too good to be true it probably is... if it smells fishy, it probably is... I think you get the point.
It's an interesting story and you can read it at the link below. The key point is to remember that Microsoft (or Google or Apple or any other major computer vendor) won't ever call you at home and that, as our technical defenses get better, the bad guys (especially the incompetent ones) will resort to social engineering techniques to try to fool you. The lesson is always be wary... if it sounds too good to be true it probably is... if it smells fishy, it probably is... I think you get the point.
Wednesday, May 23, 2012
App of the Week: Dropbox
Another cloud-based app that I use every day is Dropbox (www.dropbox.com). It's a cloud-based file repository where you can store files of any type and access them from just about anywhere. Just create an account and you're off and running! You can install it on on your Windows, MAC, or Linux system and immediately start copying or moving files to your Dropbox space. You can create folders and sub-folders to easily organize your files - just as you would on your local hard disk or network drive.
The cool part happens when you install the mobile apps. Just download and install the app on your mobile device, sign in with your Dropbox account and you'll have access to all the files you put there via your desktop app. Of course, you can go in the other direction too - files you put in Dropbox on your mobile device will then be accessible on your desktop. Most of the major platforms are covered - Apple IOS, Android and Blackberry.... but for some reason there doesn't seem to be a Windows Phone version.
You can even share folders in your Dropbox account with other Dropbox (and non-Dropbox) users. For example, you might want to share photos or you might want to collaborate on a project and share the project files.
You don't have to worry about backing up your Dropbox folder. It keeps snapshots of every change in your Dropbox folder over the last 30 days. So, if you damage or accidentally delete a file from Dropbox you can retrieve earlier copies.
The first 2 GB of file store is free but you can purchase additional storage to upgrade if you need it.
I use Dropbox to store files and documents that I want handy all the time - whether I'm at my desk or out of the office. I have installed it on my office laptop, my iPhone and on my iPad.
Give it a try! It's simple and, best of all, it's free.
The cool part happens when you install the mobile apps. Just download and install the app on your mobile device, sign in with your Dropbox account and you'll have access to all the files you put there via your desktop app. Of course, you can go in the other direction too - files you put in Dropbox on your mobile device will then be accessible on your desktop. Most of the major platforms are covered - Apple IOS, Android and Blackberry.... but for some reason there doesn't seem to be a Windows Phone version.
You can even share folders in your Dropbox account with other Dropbox (and non-Dropbox) users. For example, you might want to share photos or you might want to collaborate on a project and share the project files.
You don't have to worry about backing up your Dropbox folder. It keeps snapshots of every change in your Dropbox folder over the last 30 days. So, if you damage or accidentally delete a file from Dropbox you can retrieve earlier copies.
The first 2 GB of file store is free but you can purchase additional storage to upgrade if you need it.
I use Dropbox to store files and documents that I want handy all the time - whether I'm at my desk or out of the office. I have installed it on my office laptop, my iPhone and on my iPad.
Give it a try! It's simple and, best of all, it's free.
Thursday, May 17, 2012
Cool New Search Engine Capabilities
The two online search giants - Google and Bing (Microsoft) - have each announced signficant upgrades that promise to take searching to a whole new level. Bing was first off the mark with what they're calling the "most significant update to Bing since we launched three years ago". Simply put, they're integrating search results with information provided by your friends via Facebook and other online services. They believe that most people consult with friends or experts before making a decision so Bing is trying to integrate that into their search engine. Search results will now complemented by information gleaned from your friends in connected social networking services. There will even be an "Ask Friends" box where you can directly post a query to a friend. While it's not completely out there yet, you can try it at www.bing.com/new and see the Microsoft announcement here.
Google was next with their announcement via a blog post by Amit Singhal, SVP, Engineering. You can find the full post here but the gist of it is a new "Knowledge Graph" feature that uses a database of more than 500 million people, places, and things to refine the searches. Quoting Singhal: "The Knowledge Graph enables you to search for things, people, or places that Google knows about—landmarks, celebrities, cities, sports teams, buildings, geographical features, movies, celestial objects, works of art, and more—and instantly get information that’s relevant to your query. This is a critical first step towards building the next generation of search, which taps into the collective intelligence of the web and understands the world a bit more like people do.”
Wow! Suffice to say that "search" is changing and it's improving quickly. This is a great example of what gets imagined and created when there is healthy competition. Which one to choose? The best part is that you can use both. Bing will still likely be stronger when you need a decision engine to help you decide on one thing or another. Google might be stonger if you just looking for information. Time will tell, of course. Stay tuned for further developments.
Google was next with their announcement via a blog post by Amit Singhal, SVP, Engineering. You can find the full post here but the gist of it is a new "Knowledge Graph" feature that uses a database of more than 500 million people, places, and things to refine the searches. Quoting Singhal: "The Knowledge Graph enables you to search for things, people, or places that Google knows about—landmarks, celebrities, cities, sports teams, buildings, geographical features, movies, celestial objects, works of art, and more—and instantly get information that’s relevant to your query. This is a critical first step towards building the next generation of search, which taps into the collective intelligence of the web and understands the world a bit more like people do.”
Wow! Suffice to say that "search" is changing and it's improving quickly. This is a great example of what gets imagined and created when there is healthy competition. Which one to choose? The best part is that you can use both. Bing will still likely be stronger when you need a decision engine to help you decide on one thing or another. Google might be stonger if you just looking for information. Time will tell, of course. Stay tuned for further developments.
Monday, May 14, 2012
Will you still have Internet access this July?
You may but.... you may not. You won't have Internet access as of July 9 if your computer was and is still infected with the DNSChanger malware that first appeared in 2007 and continued infecting computers until the FBI nabbed the culprits in 2011.
DNSChanger worked by re-routing any Internet request you made (web, mail, whatever) to bogus websites where they would try to trick you into giving them personal information. They were quite successful until the FBI executed a sting operation to shut them down.
However, if you were infected, the re-routing mechanism (fake DNS settings) used by the bad guys may still be in place on your system. Once the FBI got a hold of the perpetrators' servers they configured them so that they no longer directed infected systems to malicious websites. However, infected systems are still using the formerly compromised servers. The FBI originally planned to shut them down in March but there are still over 450,000 infected systems out there! So, they've pushed the shutdown to July 9, 2012. If your system is still infected on that date, your Internet will quit working.
Now the good news.... there is an easy fix! Simply go to this website http://www.dcwg.org/
There you'll find a test button called "Detect" that will test your system to see if you're infected and a "Fix" button you can use to clean your system if you are infected. You'll also find more information about the malware on that website.
Also, CNET has a good article with more information at:
http://news.cnet.com/posts/?keyword=DNSChanger&tag=nl.e497
DNSChanger worked by re-routing any Internet request you made (web, mail, whatever) to bogus websites where they would try to trick you into giving them personal information. They were quite successful until the FBI executed a sting operation to shut them down.
However, if you were infected, the re-routing mechanism (fake DNS settings) used by the bad guys may still be in place on your system. Once the FBI got a hold of the perpetrators' servers they configured them so that they no longer directed infected systems to malicious websites. However, infected systems are still using the formerly compromised servers. The FBI originally planned to shut them down in March but there are still over 450,000 infected systems out there! So, they've pushed the shutdown to July 9, 2012. If your system is still infected on that date, your Internet will quit working.
Now the good news.... there is an easy fix! Simply go to this website http://www.dcwg.org/
There you'll find a test button called "Detect" that will test your system to see if you're infected and a "Fix" button you can use to clean your system if you are infected. You'll also find more information about the malware on that website.
Also, CNET has a good article with more information at:
http://news.cnet.com/posts/?keyword=DNSChanger&tag=nl.e497
Friday, May 11, 2012
App of the Week: Evernote
One of the apps I use nearly every day is Evernote (www.evernote.com). It's a great tool for organizing information in almost any format. Primarly, I use it to take notes of all kinds. I use it at training seminars and client meetings or just to track can't-forget-this thoughts. Notes can be organized into notebooks and are completely searchable. You can embed files and documents right in your notes and can capture web pages, photos, voice clips and links. There is an Evernote client for your PC or MAC. There are also versions for Apple devices (iPhone, iPad), Blackberry, Android devices and Windows Phone. You simply create a FREE basic account on your PC and link your other devices to it so your notes are automatically synchronized no matter where you access them. Create a note on your iPad and it shows up on your PC or phone. How cool is that? It's a great example of cloud and mobile technology combining to create a truly useful app.
Subscribe to:
Posts (Atom)