Commentary on Information Technology and Security in the new millenium.
An excellent paper has been published by the HoneyNet Project that describes monitoring networks of infected PC's, or BotNets. This paper shows what happens when PC's are infected with software that allows them to be controlled remotely then grouped together into army's that propagate spam or do worse.
posted by Paul at 4:17 PM
|
2 comments
Some cookies just need to be thrown away -- Internet cookies, that is. Be sure to delete your Internet cookies at least every month and more frequently if possible.
posted by Paul at 4:05 PM
|
0 comments
I'm not quite sure an apology from ChoicePoint will be sufficient restitution of those whose identities were stolen recently, but it does provide an good start in making things right. Law suits will be keeping them busy while they revisit internal procedures for verifying who is asking to buy or lease data.
posted by Paul at 4:01 PM
|
0 comments
The next laptop for the Digerati: leather & wood appointments. This will sure look nice when visting an important client. :-)
posted by Paul at 3:58 PM
|
0 comments
Here is a good article on the top 5 Internet scams. The article gives a brief description on how the unwary are lured in then fleeced. The bottom line: if it sounds too good to be true, it is probably a scam!
posted by Paul at 3:50 PM
|
0 comments
New Scientist has an article about Ciphire, a public key encryption tool for email that runs transparently for the user. This class of tool takes into account the need for crypto ease of use for the non-technical user. I hope we see more products like this.
posted by Paul at 10:23 AM
|
0 comments
If you manage a wireless network, one of the parameters you must deal with is the Service Set Identifier (SSID), a name for your wireless network. Broadband Reports forums has a listing of some humorous SSID's. Have a look.
posted by Paul at 9:48 AM
|
0 comments
It appears that spyware is being installed by using Microsoft DRM functionality. Two new Trojans, Trj/WmvDownloader.A and Trj/WmvDownloader.B have been detected in video files circulating on the Internet. When the user attempts to play the infected files, a notice that a valid license is required is presented. Then a redirect is made to download the required license, however the web site destination then installs spyware and adware.
posted by Paul at 9:29 AM
|
0 comments
Sometimes the only sure way to rid a machine infested with spyware and adware is to erase the hard disk and reinstall the operating system from scratch.
posted by Paul at 10:34 AM
|
0 comments
An interesting article at Baseline magazine talks about IT executives and managers hacking into competitor systems. How would you feel if your management team participated in such activity? Do you have written policies that deal with this behavior? This may be a good time to review your policies and management practices.
posted by Paul at 10:32 AM
|
0 comments
$69 per gallon can provide your office with wireless security. A new paint developed by Force Filed Wireless contains copper filings and an aluminum compound the reflect RF signals in the 100MHz to 5GHz range. You would need to pint all walls, ceilings and floors, an possibly doors to enclose a room completely in a virtual Faraday Cage. You will also need RF screens to prevent signal leakage from windows. Just don’t open those windows when the office gets stuffy!
posted by Paul at 12:20 AM
|
0 comments
Email has become an important part of
posted by Paul at 10:55 AM
|
0 comments
An excellent article at Security Focus covers how the Information Technology Information Library (ITIL) can improve information security. ITIL can also provide a framework for regulatory compliance, such as SOX, HIPPA, and GLBA. The article provides a comprehensive summary of ITIL and shows where information security can play a key role in IT Service Delivery and IT Service Support. Highly recommended reading.
posted by Paul at 1:35 PM
|
0 comments
