Posts Tagged ‘viruses’

New Index to Educate Consumers About CyberCrime

Wednesday, February 16th, 2011 by jrajani

The newly developed Norton Cybercrime Index shows a daily risk and rating in the context of internet security. The numbers will reflect highs and lows similar to a stock index. In this case, when the numbers go up, consumers are more at risk for an attack or infection on their devices. The tool presents an easy to understand visual reflecting the day’s security risk. This index can be viewed online, mobile devices or downloaded to a pc.

“Most of us go online daily to work, play, and socialize, and yet it’s one of the most dangerous activities we engage in, because there are so many threats lurking online,” said Adam Palmer, Norton Lead Cyber Security Advisor. “Norton fights cybercrime in a number of ways, including through education. Our goal is to have people add the Norton Cybercrime Index to their daily routine to get a clear understanding of the dangers that are threatening them online, and to take preventative action to avoid falling victim.”

Consumers can look at the index to check on the daily threat level and compare the number to the past to determine the serverity of the threat. There is also information on search terms that will most likely result in a hijack attack and a list of sites that are most dangerous. 

The number is based on an algorithm that calculates data from three sources. The primary source is the Symantec Global Intelligence Network, one of the industry’s most comprehensive sources of intelligence about online threats. The Symantec Global Intelligence Network monitors more than 130 million servers worldwide to keep track of new threats and attacks.  In addition, consumer risk management firm ID Analytics, and DataLossDB, a research project from the Open Security Foundation, provide data about identity fraud and data loss, respectively.

All this raw information is fed into an algorithm, endorsed by the Institute for Cyber Security at The University of Texas San Antonio (UTSA), which assigns values to the number of online threats each day. This results in each day’s Norton Cybercrime Index number, updated every morning. An analyst provides ongoing commentary on each day’s threats, including warnings and recommendations about how to proceed with caution.

“Many people are leaving themselves wide open to identity fraud by sharing private information online, such as their birth date or home town.  We see the results of this risky behavior with our unique real-time visibility into identity activity,” said Tom Oscherwitz, chief privacy officer of ID Analytics. “By contributing to the Norton Cybercrime Index, ID Analytics is helping to provide consumers with daily insight into their risk level for cybercrime and how they can better protect themselves and their identities online.”

The tool can be found at this site.

Tags: , , , , ,
Posted in Security | No Comments »

Keep Your Business Safe From Security Attacks

Thursday, February 10th, 2011 by jrajani

95,000—that’s the number of malware pieces analyzed by SophosLabs every day in 2010, nearly doubling the number of malware pieces we tracked in 2009. This accounts for one unique file every 0.9 seconds, 24 hours per day, each day of the year. It’s a clear sign that the malware threat continues to grow at an alarming rate.

To defend against these attacks, organizations and users must strengthen their defenses and get proper malware protection in place.

Cyber attacks can happen to anyone. Our job is to make it as difficult as possible for someone to attack you and your company. With your help, we can become much less attractive targets.

Follow these rules to help you and us prevent any nasties from getting in:

1. Don’t be tricked into giving away confidential information
Don’t respond to emails or phone calls requesting company confidential information – including employee information, financial results or company secrets. There is nothing easier for someone who wants unauthorised information than to call us up and pretend to be an employee or a legitimate user of this information. Keep on guard about these types of tricks to avoid falling for a scam, and report any suspicious activity to IT.

2. Avoid using an unprotected computer – is the computer you are using secure?
If you access sensitive information from a non-secure computer, like one in an internet café or a shared machine at home, your might put the information you are viewing at risk. Ensure your company is running the latest approved security patches, anti-virus and firewall. Also be sure to work in user mode, rather than administrator mode, where possible.

3. Don’t leave sensitive info lying around the office
Don’t leave print-outs containing private information on your desk. Lock it in a drawer or shred it. It is very easy for a visitor to glance down at your desk and see sensitive documents. Keeping your desk tidy and documents locked away not only makes the office look more organised, but reduces the chance of an information leak.

4. Lock your computer and mobile phone when not in use
Always lock your computer and mobile phone when they are not in use. You work on important things, and we want to make sure they stay safe and secure. Locking your phone and computer ensures that your data and contacts stay safe from prying eyes.

5. Stay alert and report suspicious activity
Always report any suspicious activity to your IT team. Part of their job is to stop an attack from infiltrating the company. In the horrible situation that something does go wrong, the faster IT know about it, the faster they can deal with it and close down the leak.

6. Password-protect and encrypt sensitive files and devices
Always password protect and encrypt sensitive files on your computer, USB, smart phone, etc. Losing items like phones, USB keys and laptops can happen to anyone. While we all want to look after our belongings, things sometimes get stolen or misplaced. Protecting the data on the system with encryption and passwords means you make it incredibly difficult for anyone to break in and steal data.

7. Always use difficult-to-guess passwords
Many people use obvious passwords, such as “password”, “cat”, or obvious character sequences on the Qwerty keyboard, like “asdfg” and “12345″. It is much wiser to use difficult-to-guess passwords. Include different letter cases, numbers, and even punctuation. Try to use different passwords for different sites and computers, which means that if one gets hacked, your other accounts are not compromised.

8. Be cautious of suspicious emails and dodgy links
Don’t let curiosity get the better of you. Suspicious emails and links should be deleted. Even opening or viewing these emails and links can compromise your computer and invite in an unwanted problem without you even noticing it happening.

9. Don’t plug in personal devices without the nod from IT
Don’t plug in personal devices like USBs, MP3 players and smart phones without permission. These devices can be compromised with code waiting to launch as soon as they are plugged into a computer. Talk to IT about your devices and let them make the call to keep you and your computer safe.

10. Avoid installing unauthorised programs on your work computer
Don’t install unauthorised programs on your work computer without permission. Malicious applications often pose as legitimate programs, like a game, a tool and even anti-virus! They aim to fool the person into infecting their computer or network. If you like an application and think it will be useful, contact IT to look into it for you.

Source: Sophos

Tags: , , , ,
Posted in Security, internet | No Comments »

Biggest Online Fears Revealed in New Study

Friday, January 28th, 2011 by jrajani

Software company Opera found that Americans worry more about having their online privacy violated (25%) than declaring bankruptcy (23%) or losing their job (22%). “It is interesting to note the gap between what people say concerns them online and what they do in practice to protect themselves,” said Christen Krogh, Chief Development Officer, Opera Software. “We often see that it is human nature to fear traffic accidents but not wear a seatbelt or helmet, or dread bankruptcy but continue spending, and it very much seems like it is the same for online behavior.”

The security info-graphic below outlines security worries for US, Russia and Japan:

 
“It is insightful to speak to people about what worries them online. There are important lessons for all of us about expectations people have for their web experience, and what we can do to improve their feelings of safety and security,” said Christen Krogh. “Opera believes strongly in the Web as a universal right, and it is heartwarming to see that people so highly value access to information as a means to make the world a better place.”

Source: Opera Software

Tags: , , ,
Posted in Security | No Comments »

Web Security Threats and Solutions For Combating Them

Thursday, September 16th, 2010 by jrajani

Included below are the most common form of attacks that have been identified by webroot that both individuals and businesses should be aware of followed by solutions to thwart such viruses and malware from infecting your IT infrastructure.

Threats:
Malware, viruses and spyware.  Email viruses and malicious code continue to be a potential problem, but more of a risk today is that of spyware downloaded from the Web, which can be used to track the activities of the user to act as a host for sending out Spam emails or denial of service attacks on Web sites, or to serve as a relay point to infect other computers.

Web page drive-by infections. Malicious content can be picked up even from legitimate sites, if these have in some way been hacked. Such code can then infect a desktop computer without any indication, just by visiting the site.

Social engineering and fraud. In these attacks, a Web user is duped into doing something that will open them up to risks. Social
networking has made this easier than ever, bringing many more people into potential conversations with Web-based strangers.

Misdirection and phishing. This is where fake Web sites are set up to look like the real thing in an effort to get financial account information, social security info, credit card numbers, and so on. A user may be directed to a phishing site via email, another site and other avenues.

Denial of service and botnets. A denial of service attack may be launched on a corporate or governmental Web site, either for
extortion, or simply because of a difference in beliefs: the goal is simply to shut the site down, at least for a period of time.
 

Potential Solutions to Threats:

Gateway Security. While desktop protection is an absolute necessity, utilizing edge- or gateway-security threat protection prevents malware attacks at the network perimeter. The perimeter is also a logical place to check for confidential company data leaving the organization.

Endpoint Security. Securing a corporate network with industry-leading corporate antivirus, antispyware & malware protection is vital. Compare endpoint security software and find a solution that fits your needs

(SaaS). Software-as-a-service-based security applications offer protection by blocking threats “in the cloud,” away from your network. There are no software or hardware purchases, no single-point-of-failure risks, and no unexpected outages and
replacements.

Tags: , , , , ,
Posted in Security | No Comments »

Don’t Be a Victim of Trojans and Viruses in PDF Files

Thursday, September 9th, 2010 by jrajani

A new social engineered computer worm is spreading globally through an email attack. The worm arrives in an email that asks the recipient to click on a link inside the note which then points to a malicious program file that hisdes as a pdf file on a remote server. Once the link is clicked on the computer downloads the file and launches it. This process is initiated and completed without the user being aware of it.

The worm disables common antivirus products and once it’s running it attempts to email a copy of the original email to all addresses found in an address book on the infected PC.  The worm also tries to find its way to computers networked locally, so it can jump to multiple computers in a home. Once the virus is able to jump on another machine in the network the user only needs to open the folder with the malicious payload which causes it to repeat the process of replication and reach out ot additional hard drives and emails on the new machine.

The worm brings in the malicious W32.Imsolk.B@mm virus and can clog networks with the PDF link email and can bring the entire IT infrastructure down by overwhelming a corporate network. Here are some tips on preventing this threat from taking a hold on a home or corporate IT network:

Disable network sharing and/or disconnect infected computers from the local network and Internet.

Block outbound traffic to the domains/ IP addresses contained in the social engineered e-mail to prevent users connecting to distribution sites to download.

Use a complete Internet security suite like Norton Internet Security 2011, which can detect and remove the threat.

Tags: , ,
Posted in Security | No Comments »

Be Careful Where You Click On Your Next Search

Saturday, July 31st, 2010 by jrajani

According to a new Norton study, more than one in three of the top-trending search terms returned at least 10 percent malicious results, putting people’s computers and personal information at risk from cybercrime. It turns out that between February and May, searching for “tropical dreams sweepstakes” could actually have been a nightmare, and searching for “red hot laugh riot” could have been anything but funny. At the peak of their popularity, these two particular search terms returned a staggering 99 malicious links out of the first 100 results.

A recent report from Norton finds 1 in 3 top-trending search terms are returning malicious results atleast 10% of the time. In February and May when searching for “tropical dreams sweepstakes” and “red hot laugh riot” lead to 99% of links being malicious in the top 100 results. More recently, terms such as “constance francesca hilton,” “atomic dove” and “melorheostosis” returning more than 45 percent malicious links out of the first 100 results.

Norton Safe Web Lite, a free downloadable tool that identifies risky sites before users click on them in search results. Once downloaded from http://safeweb.norton.com/lite, Norton Safe Web Lite is accessible as a small toolbar within either Internet Explorer or Mozilla Firefox. The free toolbar is powered by Norton Safe Web site-rating technology, which is included in Norton Internet Security and Norton 360. Catching risky results before clicking through is critical because nearly 60 percent of unsafe sites identified by Norton Safe Web are found to contain drive-by downloads – threats that can infect a PC without requiring the user to download or install files.

“Cybercriminals are always looking for the next opportunity to find victims, as evidenced by the high volume of SEO poisoning. Unfortunately for consumers, simply searching for a popular topic and clicking on a poisoned link can have serious consequences,” said Jens Meggers, vice president of engineering, Norton. “Consumers need to arm themselves with tools like Norton Safe Web Lite that are specifically designed to defend against these types of threats.”

About the Norton Study:

The Norton study monitored a major search engine’s top 300 trending search terms and analyzed the top 30,000 search results daily for SEO poisoning over a three-month period, between February and May 2010. The search topics ran the gamut from sporting events to song lyrics to breaking news on criminal cases. Using unethical techniques to “game” search engine algorithms, hackers are poisoning search results, taking advantage of spikes in a topic’s popularity to redirect computer users to misleading applications such as fake antivirus scanners. Some days, more than 250 of the top 300 daily search terms returned more than 10 percent malicious links within the first 100 results. Clicking on these poisoned search results could infect a user’s PC and result in exposing personal information to cybercriminals.

Tags: , ,
Posted in Security | No Comments »

10 Tips to Keep you Safe Online

Saturday, July 17th, 2010 by jrajani

virusprotect

Cyber-criminals are always targeting consumers online for theft of finance and personal information which can result in identity loss and untold amounts of time and finances to repair the damage caused. Here are some tips from Verizon and McAfee to keep you safe from cyber-theft:

1. Education—Educate yourself about the types of scams on the Internet so that you are better equipped to defeat them. Read up on the latest phishing scams, for example, and learn how to recognize them.

2. Use a firewall—Firewalls monitor traffic between your computer or network and the Internet and are your first and best line of defense. Most operating systems come with a firewall, but it won’t help you if you don’t activate it.

3. Click with caution—When checking e-mail or instant messaging, be careful not to click on links in messages from people you don’t know.
Such links could connect to phony websites designed to solicit personal information, or they could download Trojan horses or other malware designed to steal personal information. Even if the message is from someone you do know, it could still contain a computer virus; check with the sender if you have any concerns about the validity of the message.

4. Surf safely—When browsing the Web for financial institutions or other sites, take steps to avoid fraudulent sites that ask for personal information. Most legitimate sites don’t ask for such information, but instead require registration ahead of time. Use a search engine that corrects misspellings so that you navigate to legitimate sites and avoid landing on a fake webpage. Creating fake sites with a similarly spelled address is a fairly common scam known as “typosquatting.”

5. Practice safe shopping—Shopping online or planning vacations via the Internet can be a terrific tool for consumers, but be careful when you’re on sites you’ve never used before. When on the checkout page, look for the lock symbol or some other indication, such as the prefix “https,” that the page is encrypted or scrambled. Use a credit card instead of a debit card; if the site turns out to be fraudulent, your credit card company may reimburse you for the charges. And evaluate the site’s security and privacy policies regarding the use of your personal data.

6. Use regularly updated security software—Use security software, such as Verizon Internet Security Suite powered by McAfee, that updates
automatically and often to provide maximum protection from viruses, spyware and other cyberthreats, which also are being constantly
updated. Conduct regular malware scans of your computer, and update your operating system and browser with the manufacturer’s latest
security patches.

7. Secure wireless networks—Don’t let your home network’s wireless router be a welcome mat for hackers. Enable the firewall on your
router and regularly change the router’s administrative password. Check the support section of your ISP’s website or your router
manufacturer’s website for instructions on how to take these precautionary steps. And make sure your router has a strong
encryption, such as WPA or WPA2.

8. Strong passwords—While short, simple passwords may be easier to remember, they’re also easier for hackers to crack. When banking
online or accessing other sites that may reveal personal or financial information, use passwords with at least 10 characters and include
combinations of letters, numbers and symbols. Change passwords regularly.

9. Common sense—Cybercrime continues to accelerate and it’s being fueled by common mistakes people make when online, such as responding to spam or phishing scams or downloading attachments from people or sites they don’t know. Use common sense and caution; never post personal information online; and be careful about clicking on links or prompts to download software. If you’re concerned about your children’s online activity, use the Family Protection parental controls that come with your Verizon Internet Security Suite (VISS) and talk to your children about being safe online.

10. Be skeptical—Many victims of scams may have thought they were cybersavvy and let their guard drop long enough for a cyberthief to
strike. Back up data regularly in case a virus infects your computer, and monitor accounts and credit reports to make sure your identity has not been stolen.

Tags: ,
Posted in Security | No Comments »

Protect Your IT Infrastructure Ahead of Security Intrusions

Saturday, July 17th, 2010 by jrajani

virus_protection

IT administrators deal with security challenges such as targeted attacks, bot nets, worms, intrusions and phishing scams on a regular basis. According to IBM Managed Security Services, 2010 study enterprise IT systems are attacked 60,000 times a day. So what’s the solution to these constant threats to the infrastructure?

IBM has introduced a new security network intrusion prevention system (IPS) that consolidates intrusion prevention with data and web application security in a single appliance. The system is preloaded and fully configured IBM security software to deliver efficient
protection against attacks from cyber-criminals.

The unified platform helps administrators manage security functions such as automated virtual patching, blocking network threats, client-side application protection, data security and web application protection and application control. Security flaws can occur at anytime and can result in unscheduled system downtime and productivity inefficiencies while the system is patched. An IBM X-Force report noted that 52% of vulnerabilities had no patch from vendors of products through the end of the year.

Emergency patching of security flaws requires unscheduled system downtime and can leave enterprises vulnerable until every system, workstation and application is patched. Despite the critical nature of these vulnerabilities that open the door to attacks, the 2009 IBM X-Force Trend and Risk Report reported that 52 percent of vulnerabilities had no vendor-supplied patch by year’s end.

The IBM X-Force research team had identified risks enterprises may face from the payload that the well publicized Conficker threat posed two years in advance. Enterprises that deployed this solution were provided with preemptive protection for their IT infrastructure through virutal patch protection. The virtual patch technology enables IBM to provide customers with direct access to latest updates and the ability to block threats before vendors are able to provide patches and solutions to security flaws found in their system.

“Effective threat and vulnerability management needs to focus on preventing problems, not responding to them,” said Steve Robinson, general manager, IBM Security Solutions. “Through our new intrusion prevention system, IBM is helping organizations save valuable time and money by giving them a single view of security to better thwart potential threats before their networks can be compromised.”

The solution includes the following features:

Advanced Network Protection—Enhanced security to combat “zero-day threats” to block threats before they have the chance to cause damage.

Web Application Protection—The protection of a web application firewall. Through integration with IBM Security AppScan, the updated
solution can automatically generate custom security policies to help protect Web applications based on the specific vulnerabilities
identified by AppScan.

Data Security—Updated data security protection, which monitors and identifies if any confidential information is leaving the network.

High-Performance Network Appliances—Re-engineered platform that more than doubles the performance of earlier-generation appliances. This
allows enterprises to reduce the number of appliances they use to protect their networks while protecting today’s high-speed networks
and bandwidth-intensive applications.

Enhanced User Experience—Simplified deployment and day-to-day management capabilities to help organizations more easily perform
routine security management tasks.

IPv6 Protection and Management—New support for IPv6, the Internet’s updated communication protocol. This is increasingly important as IPv6 continues to become mandated by agencies around the world as an industry standard.

Tags: ,
Posted in Security | No Comments »