internet security « JusticeDept.com

October 21, 2009

IBM Says Web Is Insecure

Filed under: Uncategorized — Tags: computers, internet security, malicious, PDF, risk, threats, vulnerability exploitations, web — @ 2:20 pm

The IBM X-Force 2009 Mid-Year Trend and Risk Report revealed many security problems with the world wide web. The report’s findings show an unprecedented state of Web insecurity as Web client, server, and content threats converge posing a huge risk for web surfers. The report finds more than a 500 percent increase in malicious Web links and increased sophistication in vulnerability exploitation.

There has been a 508% increase in the number of new malicious Web links discovered in the first half of 2009. This problem is no longer limited to malicious domains or untrusted Web sites. The report notes an increase in the presence of malicious content on trusted sites, including popular search engines, blogs, bulletin boards, personal web sites, online magazines and mainstream news sites. The ability to gain access and manipulate data remains the primary consequence of vulnerability exploitations.

The report also finds that the level of veiled Web exploits, especially PDF files, are at an all time high, pointing to increased sophistication of attackers. PDF vulnerabilities disclosed in the first half of 2009 surpassed disclosures from all of 2008. From Q1 to Q2 alone, the amount of suspicious, obfuscated or concealed content monitored by the IBM ISS Managed Security Services team nearly doubled.

Comments Off

August 25, 2009

Using Caution with Email Attachments

Filed under: Uncategorized — Tags: attachments, email, internet security, protection, virus — @ 8:06 pm

While email attachments are a popular and convenient way to send documents, they are also a common source of viruses. Use caution when opening attachments, even if they appear to have been sent by someone you know.

Why can email attachments be dangerous?
Some of the characteristics that make email attachments convenient and popular are also the ones that make them a common tool for attackers:
Email is easily circulated – Forwarding email is so simple that viruses can quickly infect many machines. Most viruses don’t even require users to forward the email—they scan a users’ computer for email addresses and automatically send the infected message to all of the addresses they find. Attackers take advantage of the reality that most users will automatically trust and open any message that comes from someone they know.

Email programs try to address all users’ needs – Almost any type of file can be attached to an email message, so attackers have more freedom with the types of viruses they can send.

Email programs offer many “user-friendly” features – Some email programs have the option to automatically download email attachments, which immediately exposes your computer to any viruses within the attachments.
What steps can you take to protect yourself and others in your address book?

Be wary of unsolicited attachments, even from people you know – Just because an email message looks like it came from your mom, grandma, or boss doesn’t mean that it did. Many viruses can “spoof” the return address, making it look like the message came from someone else. If you can, check with the person who supposedly sent the message to make sure it’s legitimate before opening any attachments. This includes email messages that appear to be from your ISP or software vendor and claim to include patches or anti-virus software. ISPs and software vendors do not send patches or software in email.

Save and scan any attachments before opening them – If you have to open an attachment before you can verify the source, take the following steps:

Be sure the signatures in your anti-virus software are up to date (see Understanding Anti-Virus Software for more information)
Save the file to your computer or a disk
Manually scan the file using your anti-virus software
Open the file

Turn off the option to automatically download attachments – To simplify the process of reading email, many email programs offer the feature to automatically download attachments. Check your settings to see if your software offers the option, and make sure to disable it.

Consider additional security practices – You may be able to filter certain types of attachments through your email software (see Reducing Spam) or a firewall (see Understanding Firewalls).

Comments Off

August 8, 2009

Twitter And Facebook Attacked

Filed under: Uncategorized — Tags: attacks, denial of service, freedom of speech, internet security — @ 5:08 pm

Over the past several days, denial of service attacks have been launched at Twitter and Facebook. Twitter was shutdown for a couple hours. Facebook suffered from a slowdown.

Authorities believe the attacks attempted to silence a user from Russia. “It was a simultaneous attack across a number of properties targeting him to keep his voice from being heard,” Facebook’s chief security officer said. “We’re actively investigating the source of the attacks, and we hope to be able to find out the individuals involved in the back end and to take action against them, if we can.”

Comments Off

July 15, 2009

Facebook Spam Scam

Filed under: Uncategorized — Tags: Facebook, internet security, phishing, scam — @ 1:53 pm

There is a massive phishing scam posing as a Facebook notification. The incomding email looks like this:

facebook

Hi, myemail@exampledomain.com.
Click here
Thanks,
The Facebook Team

Learn More

This message was intended for myemail@exampledomain.com. If you do not wish to receive this type of email from Facebook in the future, please click here to unsubscribe.
Facebook’s offices are located at 1601 S. California Ave., Palo Alto, CA 94304.

—————————-

However, if you view the source code of the email, you will see the links are not Facebook links. There are at least 3 bogus links in the email: click here, learn more and please click here to unsubscribe. The links actually take you to a site with domain names like “checkout.kduziluv.cn” or “ticket.cjegufut.cn”.

Find out more about the Canadian Pharmacy Scam

Comments Off

May 8, 2009

Warning — Microsoft Powerpoint Alert

Filed under: Uncategorized — Tags: computers, internet security, Microsoft, Powerpoint — @ 7:40 pm

Microsoft Releases Advance Notification for May Security Bulletin
added May 7, 2009 at 02:58 pm

Microsoft has issued a Security Bulletin Advance Notification indicating that the May release cycle will contain one bulletin with a maximum severity rating of Critical. The notification states that the Critical bulletin is for Microsoft PowerPoint. The release is scheduled for Tuesday, May 12.

US-CERT will provide additional information as it becomes available.

Comments Off

April 24, 2009

What’s So Great About Firefox?

Filed under: Uncategorized — Tags: computers, internet security, networks, scammers, spammers, viruses — @ 5:23 pm

Mozilla has released a new version of the Firefox web browser. “Firefox has security, speed and new features that will change the way you use the Web. Don’t settle for anything less.”

The Safest Web Browser

Mozilla says, “Simply put, your online security is our top priority. Firefox includes strict anti-phishing and anti-malware measures, plus easy ways to tell the good guys from the bad like our new one-click site ID info. And, thanks to our open source process we have thousands of security experts around the globe working around the clock to keep you (and your personal information) safe.”

Comments Off

April 19, 2009

Microsoft Windows, Office and Internet Explorer

Filed under: Uncategorized — Tags: computers, Internet Explorer, internet security, Microsoft, Office, Windows — @ 1:49 pm

Microsoft has released updates to address vulnerabilities in Microsoft Windows, Office, Internet Explorer, and Forefront Edge Security as part of the Microsoft Security Bulletin Summary for April 2009. These vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or operate with escalated privileges.

Microsoft Windows Malicious Software Removal Tool
Microsoft has released an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services, and the Download Center.

Comments Off

April 15, 2009

U.S. Electrical Grid Attacked by Hackers

Filed under: Uncategorized — Tags: computers, hackers, internet security, malware, networks — @ 1:56 pm

Hackers planted malware onto the network of the U.S. electrical grid. It is likely their intent was to cripple the power infrastructure. According to security researcher Roger Thompson the hackers probably gained access like many others by exploiting holes in software, such as, Windows.

“Any computer connected to the Internet is potentially vulnerable. Getting to the actual infrastructure devices directly — that’s always possible, but a whole lot less likely. In any industry, critical or not, there are always plenty of PCs that have been compromised.”

There is debate over whether the owner of a compromised computer can be held criminally responsible for allowing their PC to be taken-over.

Comments (2)

April 11, 2009

Coordinating Virus and Spyware Defense

Filed under: Uncategorized — Tags: computers, internet security, networks, spyware defense, virus protection — @ 7:30 pm

by CERT

Using anti-virus and anti-spyware software is an important part of cyber security. But in an attempt to protect yourself, you may unintentionally cause problems.

Isn’t it better to have more protection?

Spyware and viruses can interfere with your computer’s ability to process information or can modify or destroy data. You may feel that the more anti-virus and anti-spyware programs you install on your computer, the safer you will be. It is true that not all programs are equally effective, and they will not all detect the same malicious code. However, by installing multiple programs in an attempt to catch everything, you may introduce problems.
How can anti-virus or anti-spyware software cause problems?

It is important to use anti-virus and anti-spyware software (see Understanding Anti-Virus Software and Recognizing and Avoiding Spyware for more information). But too much or the wrong kind can affect the performance of your computer and the effectiveness of the software itself.

Scanning your computer for viruses and spyware uses some of the available memory on your computer. If you have multiple programs trying to scan at the same time, you may limit the amount of resources left to perform your tasks. Essentially, you have created a denial of service against yourself (see Understanding Denial-of-Service Attacks for more information). It is also possible that in the process of scanning for viruses and spyware, anti-virus or anti-spyware software may misinterpret the virus definitions of other programs. Instead of recognizing them as definitions, the software may interpret the definitions as actual malicious code. Not only could this result in false positives for the presence of viruses or spyware, but the anti-virus or anti-spyware software may actually quarantine or delete the other software.
How can you avoid these problems?

* Investigate your options in advance – Research available anti-virus and anti-spyware software to determine the best choice for you. Consider the amount of malicious code the software recognizes, and try to find out how frequently the virus definitions are updated. Also check for known compatibility issues with other software you may be running on your computer.

* Limit the number of programs you install – Many vendors are now releasing packages that incorporate both anti-virus and anti-spyware capabilities together. However, if you decide to choose separate programs, you really only need one anti-virus program and one anti-spyware program. If you install more, you increase your risk for problems.

* Install the software in phases – Install the anti-virus software first and test it for a few days before installing anti-spyware software. If problems develop, you have a better chance at isolating the source and then determining if it is an issue with the software itself or with compatibility.

* Watch for problems – If your computer starts processing requests more slowly, you are seeing error messages when updating your virus definitions, your software does not seem to be recognizing malicious code, or other issues develop that cannot be easily explained, check your anti-virus and anti-spyware software.

Comments (6)

April 7, 2009

CONFICKER WORM IMPORTANT ANNOUNCEMENT

Filed under: Uncategorized — Tags: computers, Conficker, hackers, internet security, networks, worm — @ 6:30 pm

US-CERT saw no evidence of nefarious behavior associated with Conficker on April 1, 2009. It is important to understand that it is still unclear what Conficker is intended for and capable of doing. Systems with infections must be cleaned now. An infected system could enable an attacker to remotely take control of that system and install additional malicious software. Even though April 1, 2009 has passed, the exact time and intended purpose of the Conficker/Downadup worm remains unknown. The possible malicious uses of this worm range from data theft, phishing/spam efforts, and, the scenario of most concern, distributed denial-of-service (DDoS) attacks. Users must remain vigilant in detecting the Conficker Worm and systematically cleaning systems of these infections to prevent potential, future cyber events. PLEASE READ THE CURRENT ACTIVITY UPDATE for more information about the Conficker worm.

Comments (1)

Older Posts »