These are weekly reviews of the reports from CERT. The main highlights are some Realplayer vulnerabilities and the Cisco Unified Meeting Place. This is a weekly feature here at Managed Solutions.

Cisco Unified Meeting Place Bulletins

Popularity: 3% [?]

Connectwise PSA

Today Managed Solutions entered into a 3 year agreement with Connectwise to provide us with Professional Service Automation (PSA) software. ConnectWise PSA combines help desk, dispatching, service level management, project management and CRM into a single, web based application, with integrated time-tracking, billing and reporting. Designed based on 27 years of experience as an IT solution provider and used by over 36,000 IT professionals, ConnectWise enables IT services companies to streamline their daily workflow and operate using proven best practices.

By implementing this solution we will be able to provide our clients with great service quality, tracking, budgeting and transparency even as our business scales. The implementation process is estimated to take about 7 weeks. Should you have any questions please contact us.

Popularity: 6% [?]

Recently you may have noticed a new repetitive security warning in Internet Explorer 8. The feature is to protect internet users from non secure content while browsing a secure site. Some secure sites link content, images and advertisements that are not delivered securely. This could have ramifications if someone thought they were on a secure site and entered in sensitive data that was not encrypted. The truth is the warnings are so prolific that they almost defeat the purpose they intended. To be safe I recommend choosing the setting to disable the non secure content which is the selection I make in this video.

Another Youtube how to video from Managed Solutions:

Popularity: 6% [?]

We were made aware of an issue that ADP is reporting with some of their Payroll customers. Here is the text of the warning message they are sending their clients:

“ADP is receiving reports of a phishing email scam targeting ADP EasyPayNet clients who perform their payroll via the Internet.  Phishing email scams are designed to mimic legitimate websites and are intended to compromise your login credentials.  The email is fraudulent and did not come from ADP.  Please immediately delete the email and do not click on any links in the email or enter any login information.  Please be aware that ADP would never send an email asking you to provide or enter your login credentials for any reason.”

Here is a screenshot of the Phishing Email:

Sample of ADP Phishing Email

Popularity: 8% [?]

These are weekly reviews of the reports from CERT. Nothing too horrible this week, but I provide more insights into what to look for and why. I did review the Shockwave Player vulnerability after recording the video and determined that since it is not a common component for most of our audience it did not merit a separate bulletin and notice. This is a weekly feature here at Managed Solutions.

Popularity: 6% [?]

The US-CERT Cyber Security Bulletin is a tool that provides frequent alerts on threats that affect computer technology. It is an essential tool for individuals in the business to see in one place the majority of known security risks affecting an extremely broad range of platforms and technologies. Here are # reasons why every IT person should review this list weekly:

1. The list is not platform specifc and covers everything from drivers to your Mac or PC software and OS.
2. It is sorted by the range of how critical the vulnerability is including High, Medium and Low.
3. The layout is very logical and a basic description of the problem, scoring, links to info and to patches.

So if you’re serious about IT security or just wish to be more informed, the US-CERT bulletins can make you much more informed as to where the risks are. Don’t rely on the latest news of the hacking of Google accounts to learn about the issues, it’s already too late then.

Popularity: 9% [?]

Here at Managed Solutions we do not raise the red flag often, but after reviewing the latest CERT advisory, we’ve done just that. Do not delay, upgrade your Adobe Acrobat and Acrobat Reader Products immediately to the latest version, apply the security patches or install adobe updater recommended updates. The US-CERT Bulletin for today SB10-018 indicates 6 different CVSS Score of 10 vulnerabilities for Adobe Acrobat and Acrobat Reader. Basically a CVSS Score of 10 indicates the highest threat level due to the remote code execution capability and these issues should be taken very seriously. There is a link at the bottom of this article to the resources at Adobe’s website as well as a download for the Windows Version of Adobe Acrobat, please pass the word.

Popularity: 25% [?]

Axis has really listened to the feedback resellers around the world have given them. Here is a recent example of how simple some of their latest products are to install. Managed Solutions is a member of the Axis Partner program and we have been distributing their products for the past 5+ years.

Popularity: 10% [?]

Microsoft has created a new Application Compatibility List for Windows 7. While they state it is for IT professionals anyone can access it via their website. If you are unsure if applications you need will work (use this link to learn about how to make anything compatible if it is not on the list below) with Windows 7 this is a great place to start:

Popularity: 11% [?]