May 18, 2012

Posts Comments

You are here: Home / Archives for 2007

IE7 and Adobe Security Alert

October 24, 2007 By Leave a Comment

We have received a notice from US-CERT about a security flaw involving Internet Explorer 7 and Adobe Acrobat. The flaw only affects windows based machines that have Internet Explorer 7 and Adobe Acrobat products. If you have both of these products installed your system could be compromised if you opened a pdf file that was crafted to exploit this flaw. This flaw has been labelled critical, and we are prioritizing addressing this flaw with our customers.

Who should be concerned?

  1. Anyone with both Internet Explorer version 7 and Adobe Acrobat installed.
  2. Anyone using Adobe Acrobat products version 8.1 or earlier in conjunction with Internet Explorer 7.

If I meet the criteria that makes me vulnerable, what should I do?

  1. You should avoid opening PDF files from untrusted sources.
  2. You should apply an update for your Adobe Acrobat as soon as possible.
  3. If unable to install an update, you should disable the mailto: URI handler on your Adobe Product (See Adobe Security Bulletin APSB07-18 for details on how to do this).

Where can I get more information about this problem?

Popularity: 1% [?]

Filed Under: Security, Technology Tagged With: , , , , , ,

Phisher Shutdown

August 30, 2007 By Leave a Comment

Phisher ShutdownThis morning I happened to get a Phishing message from the contact form on this website. It was carefully crafted and was devised to obtain routing and bank information to most certainly relieve us of any and all funds in the account. When I went to investigate the site, I quickly learned that it had already been removed from the dns records of the hosting provider – precisely what I had intended to inform them of. Someone had already reacted to this would be phisher and stopped them in their tracks. This is always nice to see because often times when we do something as a responsible netizen administrators of websites and hosting companies lack the resources to respond and address the threats.

Popularity: 3% [?]

Filed Under: Security, Technology Tagged With: , , , ,

Speakeasy VOIP Partner

June 4, 2007 By Leave a Comment

We are pleased to anounce that we have passed all requirements to be a Speakeasy Certified VOIP (Voice Over IP) partner. This means our customers and prospects can confidently consult with Managed Solutions for their VOIP communications needs. VOIP offers growing and established businesses optimal flexibility, cost and features for all their communications needs. VOIP allows you to merge your data and voice communications into one package in most cases providing an upgrade of features or qualities to one or the other. Speakeasy is a proven provider in the VOIP market and an ideal partner for Managed Solutions.

spk_voiplogo_rgb_medium

Popularity: 1% [?]

Filed Under: Speakeasy Tagged With: , ,

419 Death Threat Spam

May 8, 2007 By Leave a Comment

A particularly despicable scam is circulating this week. It involves a Spam email that contains a “death threat” the sender claims to be a hit man hired to kill you. In typical fashion the grammar and spelling are poor. This could indicate the authors are not skilled in the English language though it could also be an attempt to protect the guilty and obscure the trail of the actual perpetrator(s). If you happen to receive this Spam don’t worry, just delete the message. They are using this method to validate targets for future scams and Spam. If you do respond you will become a validated target. You can also contact the IC3 in the United States at www.ic3.gov to file a formal complaint. The entire text of the Spam is as follows (compliments of Swa Frantzen @ ISC):

“Hello, I wish to let you know that i have been paid by a client to assasinate you at convenience,and i have signed a contract of $650,000 yesterday for this.I have never met you before,but they gave me the full description of your identity and contact,together with your photograph which my boys have used to trace you.

The reason why they want you Dead is not disclosed to me as i was not allowed to know,but you are now not better that the dead ok.

My BOYS are now contantly watching you,they are following you-home,office,everywhere…..,you go and they are waiting for my instruction to terminate you.And they will strike at convenience.

THIS IS MY MESSAGE-

LISTEN VERY WELL !!!!,the Police cannot do much to help you out in this right now because you are being watched,any such attempt is very risky cause you will push us to terminate your life without option. Your calls are not safe also.In fact you are traced. I have no business with you but at least i have cleared the way as a pro-,but you may have one chance to live again if you can contact me not latter that 24 hours after this mssage.

GOODLUCK!!!”

Popularity: 2% [?]

Filed Under: Security, Technology Tagged With: , , , ,

Very Simple Solaris Root Exploit

February 12, 2007 By Leave a Comment

There is an incredibly simple root exploit for computers running the Solaris operating system with telnet enabled. While in general terms it is a bad idea to have telnet enabled and particularly so on a forward facing or internet connected machine, this exploit is so simple and Solaris boxes are popular for forward facing roles such as web servers, etc. In general we would not be concerned with Solaris exploits at Managed Solutions. However this particular exploit has ramifications for all of us. Anything that has the potential for a very successful internet worm has the potential to affect the general availability of services we rely on. It could also lead to a compromise of our personal information should one of the hosts that we might have made a credit card purchase through become compromised. We will continue to monitor activity of this worm and update this article of any significant details.

As of 2/28/2007 there is a worm circulating for this previously reported simple exploit. We are actually surprised it took this long for something to hit the wild. Hopefully most organizations patched the vulnerability. Unfortunately it seems like things like this are far too often dealt with in a reactive fashion.

Popularity: 3% [?]

Filed Under: Security, Technology Tagged With: , , , ,

Virtualization Technology Pays

February 9, 2007 By Leave a Comment

You may have read our primer on Virtualization technology where we detailed some compelling reasons to consider virtualizing some or all of your servers. At the time of writing that article we were not aware of a new program from PG&E that can give you up to $300 rebate per server that you virtualize. While the process is not without some invasive steps, such as before and after inspections, a large project would be well worth the work. Let’s say you were planning to consolidate 20 servers in your data center, that could mean up to $6,000 back from PG&E, not a paltry sum by any means. Even for a smaller business looking to consolidate a small server closet the savings could pay a portion of your installation and configuration costs. This is the sort of creative incentive that shows PG&E is a technically aware organization.

Popularity: 1% [?]

Filed Under: Technology Tagged With: , , , , , , , ,

Cisco IOS Multiple Vulnerabilities

January 24, 2007 By Leave a Comment

The United States Computer Readiness Team (CERT) is reporting today that multiple vulnerabilities exist for IOS. We recommend you review the bulletin if you use any Cisco networking products.

Popularity: 1% [?]

Filed Under: Security, Technology Tagged With: , , , , ,

Beware of Predatory Domain Name Registrars

January 22, 2007 By Leave a Comment

This may sound familiar to you, you’re going through your business mail and setting aside the bills for your payables department. Oh, here is one for our website, Liberty Names of America. I guess our domain is expiring we better renew …. uh wait a minute, we don’t use Liberty Names of America. Why are they sending me a bill? It seems that some companies are founded with at the least ill advised business policies or perhaps far worse. Over the years as the operator of a small business I have seen a number of these predatory notices. The first one years ago was for some yellow page listing. It looked just like a bill you might get from the publisher of the yellow pages you run your advertisements in, only it was for some company you’ve never heard of and some book that no-one will see. Evidently people with similar scruples decided to get into the domain name business. There was even a allegation at one time that Verisign, Inc. (formerly Network Solutions) had sent similar notices to GoDaddy.com customers. We were unable to find evidence that these allegations were proven one way or the other.

Basically what these companies do is determine when your domain names are going to expire. They then send you a notice in the present example a “Domain Expiration Notice” and they encourage you to “renew today”. They will even bundle multiple domains you might have expiring at the same time in these notices. To make matters worse the prices in these letters is likely to be much higher than what you are already paying with your current registrar. If you receive one of these notices or worse yet are the victim of these predatory practices by mistaking them as legitimate, you can report a problem to InterNIC using their Registrar Problem Report form.

Popularity: 1% [?]

Filed Under: Technology Tagged With: , , , ,

Education: the Answer to Zero Day Exploits

January 18, 2007 By 6 Comments

A Zero Day Exploit is an exploit that is circulating before the software vendor has learned of it. They can linger around as un-patched vulnerabilities if the vendor is slow or unable to respond to them.

Security software with lots of bells and whistles tends to encourage end users to feel more secure. They have firewalls, Antivirus protection, all sorts of resident programs and pretty icons. Something pops up now and then asking for their input; again insuring them it is working hard to protect them. They pay good money for this software, so it must give them some reason to rest easier at night. The sad fact is that even the best network protection scheme short of not having a network, is never safe. Let’s take a look at the situation today, and let’s talk about what we know. As of the writing of this article there are 3 un-patched vulnerabilities affecting Microsoft Word that have been known for over one month. That means that in spite of your efforts to protect yourself it is possible that a user at your company could receive an email containing an attached word document with an exploit designed to compromise your systems and your user would be the only line of defense. You’ve done everything you can do to layer your defenses, keep your systems up to date, and protect them pro-actively with other security software but there still is a chance that it could come down to the actions of that end user. That is why you should not overlook the human element in your security apparatus. Building a security aware culture is an important step in any IT security strategy. Teaching end users to get confirmation from third parties when they receive a message containing a suspicious attachment for example; can go a long way in preventing exploitation of your valuable resources. Scheduling regular training sessions where current issues are addressed can pay large dividends if even one compromise of your security apparatus is avoided. Educated users are safer users.

At Managed Solutions we advocate quarterly training sessions for existing employees and orientation for new users of our clients systems. By keeping the humans up to date with the latest information, our customers can substantially lower the chances of experiencing costly cleanup operations, loss of reputation and most importantly lost customers. What does your company do to educate its users? Perhaps it is time for you to consider a shift towards a more educated end user base. A security aware culture is the main protection we have against zero day exploits.

Popularity: 1% [?]

Filed Under: Business/Productivity, Security, Technology Tagged With: , , , ,

3 Critical Updates for Microsoft Products

January 9, 2007 By Leave a Comment

There are some critical patches available today to address bugs in Internet Explorer (nearly all versions), Outlook (numerous versions) and Excel (numerous version). We recommend you take these precautions for the coming few days even if you are able to install the update.

  • Exercise caution with your web access habits.
  • Do not open any attachments in Outlook that you are not expecting.
  • Delete any suspicious emails you receive.

These updates will be available immediately from microsoft, to download them manually:

Microsoft Windows Update

We will also push these updates out to customers machines that have requested in advanced that we do so. If you would like to see to it that this is done for your systems please contact us. Otherwise advise your users that when prompted by windows update to install critical updates to do so. These issues are significant and could cause extensive problems if they were to be exploited on one or more of your systems.

It is likely that you will not actually be prompted to install these updates until Wednesday January 9th as most windows update servers synchronize early in the morning. Running a manually synchronization is not adding the updates as of the authoring of this notice.

If you’d like to read more about this:

Microsoft’s Security Bulletin

Or:

Advisories for Week of January 8th @ Cert

Related Posts Plugin for WordPress, Blogger...

Popularity: 1% [?]

Filed Under: Security Tagged With: , , , ,
« Older Posts