A video card, the right utilities, and an extra display or two can dramatically enhance the way you work, use multimedia apps, play games, or simply surf the Internet. Here’s how to tweak your rig.
By Serdar Yegulalp, InformationWeek
January 27, 2009
Crackers steal Monster.com database
In what must feel like a final kick in the teeth for the recently redundant, job site Monster.com is warning users that crackers have breached their servers and made off with personal data.
According to an article on BetaNews, the company has been breached by persons unknown with databases containing details of its customers – including names, user details, passwords, e-mail addresses, physical addresses, telephone numbers, and what the company described as “some basic demographic data” – being purloined for purposes perverted.
A note on the site dated January 23rd explains that the company “recently learned [that] our database was illegally access and certain contact and account data were taken” but assures users that “sensitive data such as social security numbers or personal financial data” was not included in the breach. Monster.com has also ascertained – although it isn’t clear how – that so far the digital thieves have not made use of the data, and has vowed to “continually [monitor] for any illicit use of information in our database.”
The company is advising those affected by the breach – which is everyone with a user account on the Monster.com site or the US-based USAJobs.gov site – to change their password immediately.
This isn’t the first such attack the company has suffered: in August 2007 crackers nabbed around 1.3 million account details which were later used to target phishing attacks in an attempt to gain financial data, and towards the end of 2007 ne’er-do-wells were able to plant malware download triggers on certain pages on the site.
Any Monster.com users here worried at the thought of their personal data going walkies in these times of financial trouble, or is the limited data kept by the company not worth anything anyway?
January 20, 2009
Simple, Proper Avira Anti-Virus Configuration
As computer consultants, we at Bay Geeks are constantly answering this question: “Which Anti-virus program do you recommend?”
Our answers change based on a variety of factors including our experience, technical articles and feedback from our clients.
We’re always on the look out for high quality, low cost solutions we can offer our clients. One of the latest up and comers has been Avira. We’ve seen this product more and more over the last year and some of the recent research results we’ve reviewed has brought this product into our favor, (assuming you don’t mind two pop-ups per day {for the free version}… once when it updates and once when it scans).
According to www.av-comparatives.org Avira has been beating out the best Anti-virus products, by albeit a small margin… but they’re winning none the less.
For an in depth look at the research, installation and configuration details… please check out this Avira Anti-Virus Research, Installation and Configuration Tutorial (2.64 MB).
We hope this helps!
January 19, 2009
GPS & Cellphones
Security is an important part of life in this day and age. With this recession, we anticipate an increase in crime (as unemployment increases so does crime typcially).
Few of us take the time to think about simple things we do that can put us in jeopordy. The following is an email I received that I thought was so important, I wanted to post it here. While I do not know who to give credit to as the author, I am greatful for this well thought out message.
GPS
A couple of weeks ago a friend told me that someone she knew had their
car broken into while they were at a football match. Their car was
parked on the green which was adjacent to the football stadium and
specially allotted to football fans. Things stolen from the car included
a garage door remote control, some money and a GPS which had been
prominently mounted on the dashboard..
When the victims got home, they found that their house had been
ransacked and just about everything worth anything had been stolen.
The thieves had used the GPS to guide them to the house. They then used
the garage remote control to open the garage door and gain entry to the
house. The thieves knew the owners were at the football game, they knew
what time the game was scheduled to finish and so they knew how much
time they had to clean up the house. It would appear that they had
brought a truck to empty the house of its contents.
MOBILE PHONE
I never thought of this…….
This lady has now changed her habit of how she lists her names on her
mobile phone after her handbag was stolen. Her handbag, which contained
her cell phone, credit card, wallet…etc… was stolen.
20 minutes later when she called her hubby, from a pay phone telling him
what had happened, hubby says ‘I received your text asking about our pin
number and I’ve replied a little while ago.’
When they rushed down to the bank, the bank staff told them all the
money was already withdrawn. The thief had actually used the stolen cell
phone to text ‘hubby’ in the contact list and got hold of the pin
number.. Within 20 minutes he had withdrawn all the money from their
bank account.
Moral of the lesson:
Do not disclose the relationship between you and the people in your
contact list. Avoid using names like Home, Honey, Hubby, Sweetheart,
Dad, Mom, etc…. And very importantly, when sensitive info is being
asked through texts, CONFIRM by calling back. Also, when you’re being
text by friends or family to meet them somewhere, be sure to call back
to confirm that the message came from them. If you don’t reach them, be
very careful about going places to meet ‘family and friends’ who text
you.
January 18, 2009
3.5 Million Windows PCs Attacked
The worm Downandup, Conficker, or Kido!, has affected 3.5 million computers with Windows operating systems according to various tech sites.
It targets the vulnerability in Microsoft’s server service which was patched in October 2008. It resets the System Restore point of the affected machine which means that administrators could not delete it.
The article at topnews.us notes that the worm shields itself by disabling Windows security, networking, and updating.
“The vulnerability is potentially wormable on older versions of Windows, XP and earlier; we’re encouraging customers to test and deploy the update as soon as possible,” said a security program manager at Microsoft.
Source: TOPNEWS
No end in sight for massive Windows worm outbreak
The largest corporate malware outbreak in more than seven years may be affecting organizations that are fully patched, researchers said Friday.
Nearly nine million machines worldwide have been infected with the Downadup, or Conficker, worm — including some 6.5 million in the past four days alone, said Mikko Hypponen, the chief research officer of anti-virus firm F-Secure. That makes this the biggest corporate virus outbreak since Nimda unleashed its fury in 2001.
What makes the malware particularly viable, he said, is that it can spread in three distinct ways, only one of which can be closed off by applying an emergency fix (MS08-067) that Microsoft issued in October for a Windows Server Service vulnerability.
At the start of this month, the exploit morphed into a worm that can propagate through removable media devices or by copying itself to network shares, through brute-force password-guessing, Hypponen said. It bucks the trend of modern malware, which largely is spread via the web or through email.
“The user doesn’t have to be on the computer,” he told SCMagazineUS.com on Friday. “He can be away and still get infected.”
As soon as this worm correctly guesses the password of a user who belongs to the administrator group, the malware will browse the network shares of other machines, mount the C-drive and then use its privileges to schedule a task, in this case, infect that share with a copy of itself.
“Once the worm is able to crack the password of any user who belongs to an admin group, then it’s game over,” Hypponen said. “Once you have one infected machine in house…it can spread like wildfire. It can happen even if every single machine is patched.”
At this point, it remains unclear what the motive is of the malware writers, Hypponen said. Even though the worm has capabilities to “phone home” to receive additional instructions from a command-and-control center, researchers have not spotted any botnet traffic.
The only tangible impact on businesses is that employees may be unable to reach certain websites and may get locked out of their accounts, a product of the worm trying to guess passwords, he said. Also, the virus turns off Windows updates.
Either way, the individuals behind the attack are amassing an enormous botnet, researchers said. IP addresses from across the globe are affected, with the most victim machines residing in China, Brazil, Russia and India, according to F-Secure. But there are thousands of compromised computers in the United States.
To stop the spread, organizations, among other things, should ensure end-users are not using local administrative rights, Hypponen said.
A Microsoft spokesperson could not be reached for comment, but the software giant has said its Malicious Software Removal Tool will detect and eliminate the malware. But Hypponen warned that anti-virus solutions may not always work because the malware is constantly changing to evade detection.
January 12, 2009
Tired of automated systems?
Here’s a nifty little website one of my professors mentioned in a class I was taking (can’t recall which professor or class off hand). I also received this as an email and thought I’d share with you the email and of course… the goodies (website).
You may well need a little help, maybe something isn’t working correctly. Or, maybe you need a question answered. That means you’ll need to call tech support with regards to a purchased product.
Unfortunately, most companies use automated voice systems, getting through to a live person can be a real hassle.
So, before you call tech support, visit www.GetHuman.com and you’ll find phone numbers for many major companies, stores, government agencies and more.
Some of the numbers let you skip voice menus altogether, they connect you directly to a customer service rep.
In other cases, you’re told how to bypass the voice prompts and spend less time on hold!!
Hope this helps!