Archive for the 'Security' Category
Michael Fiola, pictured with his wife, Robin (Photo by Matthew Healey), was just another state employee with a laptop doing his job. One day he was called in and questioned about the content his employer had found on his hard drive after investigating why his Verizon wireless broadband data use was four times that of the average worker. What the Department of Industrial Accidents found was a slew of child pornography and it wasn’t listening to anything Fiola had to say. Immediately terminated on March 14th, 2007, the Department of Industrial Accidents then informed the state police of the evidence which then involved the Boston Municipal Court. The court issued a criminal complaint against Fiola in August of 2007.
Nationally recognized computer forensic analyst Tami Loehrs told the Herald Michael Fiola’s ordeal was “one of the most horrific cases I’ve seen.”
“As soon as you mention child pornography, everybody’s senses go out the window,” she said.
Loehrs found the laptop to be running a corrupted anti-virus program which allowed for a flood of spammers and crackers to hijack the laptop. Loehrs’ investigation for the defense was thorough which lasted a full month. Filled with images of incest and pre-teen porn not visible to the naked eye stored in a temporary “cache” folder, evidence showed that Fiola never downloaded the offending images.
DIA spokeswoman Linnea Walsh confirmed Fiola “was terminated,” but would not recognize the fact that Fiola was completely innocent. “We stand by our decision,” she told the Herald.
Fiola’s attorney Timothy Bradl can’t understand this response.
“Imagine this scenario: Your employer gives you a ticking time bomb full of child porn, and then you get fired, and then you get prosecuted as some kind of freak,” he railed.
“Anybody who has a work laptop, this could happen to,” he said. “Mike Fiola is a hunt-and-peck kind of computer guy. He can barely get on the Internet.”
Fiola, a self-described computer illiterate is taking the DIA to court for “destroying our lives.”
“Our lives have been hell,” said Fiola. “I hope to recover my reputation, but our friends all ran.”
The court officially dropped Fiola’s case Tuesday.
Apple Nailed with Nasty Trojan That Takes Over Macs Emailing, Passwords, and Even Takes Your Picture
Mac fanboys love to point out the fact that Windows users must waste immense systems resources to protect themselves from the millions of viruses, trojans, and spyware that live on the Internet. Even Apple makes light of this Windows malware problem in its commercial entitled Viruses in which Mac says to PC, “I run Mac OS 10 so I don’t have to worry about your spyware and viruses”. Sadly, however, Macs are no more protected from such attacks as is the Windows operating system. With holes and security vulnerabilities found in OS X and its default applications, such as Safari’s Zero-day exploit, Apple needs to start taking some defensive moves as it increases sales of its shinny machines to unsuspecting “switchers”.
Point in case, today SecureMac is reporting that the AppleScript.THT Trojan Horse runs hidden on a Mac and , “Allows a malicious user complete remote access to the system, can transmit system and user passwords, and can avoid detection by opening ports in the firewall and turning off system logging. Additionally, the AppleScript.THT Trojan horse can log keystrokes, take pictures with the built-in Apple iSight camera, take screenshots, and turn on file sharing. The Trojan horse exploits a recently discovered vulnerability with the Apple Remote Desktop Agent, which allows it to run as root.” Ouch! The trojan is distributed through web sites, iChat, and Limewire. This trojan only effects OS X 10.4 and 10.5.
There are a few ways to protect yourself from this trojan. One, do not download an AppleScript named ASthtv05 (60 KB in size), use sharing services such Limewire, or use a virus scanner such as SecureMac’s MacScan. SvenOnTech does not endorse this product; however, it would recommend it over Norton or McAfee as we have tested those on the Mac and they are horrible.
President of SecureMac, Nicholas Raba, cautions OS X users by telling SvenOnTech, “The increased number of threats, security advisories, and security updates is an indication that Mac users must pay attention to computer security issues. As Apple’s market share continues to grow, so will security research and hack attempts against OS X.”
Recommended reading: MacForensicsLab Malware document.
I can still remember my first piece of spam. It was way back in 1996 and I just sat at my computer staring at the screen for the longest time trying to comprehend how this “person” got a hold of my sacred email address and why they were trying to sell me something I had no interest in. About four years later, I had to retire that email address because the spam became unbearable (over 500 pieces of spam a day.) But with each new address I created, spam eventually found me.
Through the years of my spam fighting career, I’ve used many different weapons in this ongoing warf. Software on my computer, server based fighters, and challenge response schemes. Really, nothing worked until I discovered the beta of SafetyBar about five or six years ago. Using software that installed in Outlook as a plug-in, it would take the community of SafetyBar users response of what was and what wasn’t spam and then “rate” those votes. The higher the rating of validity, the more likely that spam would never be in your Inbox but rather be moved to your Spam folder. My Inbox was over 90% clean of spam an achievement never yet accomplished to that point in time. It was great! I used it all these years until I came to the Mac. SafetyBar, now Cloudmark Desktop, was only for Windows and only for Outlook and Outlook Express (when I left it behind a couple of years ago.) But rejoice Mac fans, now it is here for you as well!
Today Cloudmark has announced the public beta of Cloudmark Desktop for Thunderbird on the Mac! If you’re a user of Mozilla’s freeware mail client that looks and feels much like Outlook Express, then you’ll be a happy camper to know that you can now protect yourself with one of the best spam fighting vehicles out there! You can download Cloudmark Desktop for Thunderbird (OS X) and use it free for 90 days after which you can sign up for the monthly subscription. Knowing how good Cloudmark is, I highly doubt you will even notice that this a beta while using it. I strongly encourage anyone looking for spam control to download this now and use it today!
Now my only gripe is where is the Mail.app and Entourage versions?
Russound, the #1 brand in multiroom audio, and HAI (Home Automation, Inc.), leading manufacturer of integrated automation and security products, have signed an agreement that will allow the two companies to collaborate in a new program that will bring an enhanced level of features, usability, and value to their installers and end-users.
Christened “EnCompass,” the program will ultimately provide a new, comprehensive selection of integration solutions for custom installers who demand “Best of Breed” performance from all aspects of their systems.
Though Russound and HAI products have always integrated easily and efficiently, EnCompass will at first support their integration with an extensive education and training program. The first EnCompass webinar will be Wednesday, March 26 at 2:00 pm CDT.
Subsequent plans include the creation of turnkey Automation/Entertainment packages that raise the bar on performance, reliability and ease-of-installation. The first “Kick-Off” package will include a Russound CAM6.6T Controller with six UNO-S2 Keypads, a system remote, six IR emitters, a punchdown tool, wall plates and rack ears. Also included are an HAI Lumina Pro 44A00-2 with an Ethernet port, controller in enclosure with lock and keys, LCD keypad, UPBT Powerline Interface Module and cable, phase coupler, serial cable, transformer and battery, manuals, and accessories, an OmniTouch 5.7 Touchscreen, two HLC Plug-in Lamp Modules, a serial cable, Lumina PC Access, and Snap-Link.
“In just a few short years, we’ve seen the custom installation industry move closer to truly integrating our products and technologies into whole-house networks,” said Charlie Porritt, Russound’s Vice President of Sales. “In order for this to become a reality, we know that it is essential to work with the leader in home control products. With our two companies working in tandem, Russound and HAI are poised to make seamless integration of entertainment and environmental controls a reality.”
“This is truly a best of breed solutions program that will provide outstanding products in a simplified integrated package,” explains HAI President Jay McLellan, “The objective of the program is to streamline the installation process for the custom installer and to enhance the overall experience of the end-user.”
The first manifestation of the of the EnCompass program is expected to be announced at the Electronic House Expo (EHX) Spring 2008, 13 - 15 in Orlando, FL.
Burgled Britons have spent a staggering £27 billion pounds in the last five years in an attempt to regain peace of mind following a break-in. That’s just one of the findings of a recent ICM nationwide survey, commissioned by Intamac Systems, which examined the measures taken and costs incurred by UK householders to feel safe in their homes in the aftermath of a break-in.
While many speak of the emotional burden caused by a burglary, few realise the financial implications, as victims take the steps they think necessary to feel safe in their homes again - something not covered by home insurance policies.
For a large proportion of people surveyed, it was too late - nothing could make them feel safe in their home again. The thought of criminals being in their home was too much to bear, and so almost one third of those surveyed packed up their possessions and moved home.
Peace of mind was not something that those questioned felt was being offered by the surrounding community. In a sad indictment of neighbourhood support across the UK, 22% added a burglar alarm following a break-in, yet over 60% believed that their neighbours or passers-by would not respond should their alarm go off. Only 11% were ‘very confident’ that someone would.
For others, fortifying their home after the event was paramount, with 46% adding extra locks, 42% adding outdoor security lights and 37% changing the locks on the doors to their home. Over 10% of those questions decided to put extra ‘bite’ into securing their home and hoped that buying a dog would deter would-be thieves. In addition, one in ten decided to shut out the outside world by erecting a high fence around their property. Read the rest of this entry »
So you’ve got a Mac or a Windows box with disk encryption and you’re feeling pretty good about your data’s safety. Bitlocker on Vista and File Vault (developed for the Depart of Defense even) on OS X put you at ease with its promises of using some super hard encryption scheme to defeat. The only way anyone’s getting in is via a key. Guess what? Hackers now can get that key.
A video on YouTube demonstrates just how easy it is to retrieve the very key that unlocks your hard drive. From start to finish, the video shows the retrieval of a laptop, the sniffing of a key, and then the opening of all the “protected” files. Just like that.
Now granted, the hacker will need physical contact with your computer in order to grab your key; however, this isn’t that reassuring if you think about it. In recent months, there has been a slew of reports of lost laptops from not just business professionals, but from government agencies such as the FBI, CIA, and of those in Congress. These laptops are in danger of losing very important and highly classified data. If enemies of the state are able to obtain such a nugget, it’s no telling what could result from the breach.
Again, the video does demonstrate a small window of opportunity in data retrevial; however, in our busy lives, it is easy to lose track of our laptops for a few minutes. That’s just enough time for someone to simply walk by and grab it without you even knowing.
The easiest and best way to protect yourself is to insure your laptop is OFF and not in standby when in public. Make sure it has been off for at least 30 minutes prior to placing yourself in a vulnerable situation. These two measures alone will greatly reduce the chance of the key residing in your memory and thus keep your data safe.
LaserShield Systems, Inc. www.lasershield.net, the leading provider of instant home and small business security systems, announced today “Cyclone,” a wireless GSM adapter that works with the LaserShield® Instant Security System for consumers without landline phones or for those seeking added protection against an intruder cutting wired phone lines. With traditional phone-based security systems, if a consumer’s phone lines were cut by a burglar or went down, the user would never know. Cyclone replaces a landline phone as the security system’s connection to the 24/7 monitoring service. With Cyclone, no phone (whether cell phone, digital phone, or landline phone) is needed at all to use the service, since it connects directly with the cellular GSM network.
Cyclone is connected to the LaserShield 105-decibel master alarm unit by a short phone cord. When the master alarm unit detects a security breach or panic situation, the LaserShield siren sounds the alarm and sends a signal through Cyclone to the monitoring service over the GSM digital cellular network. For protection against power outages, the Cyclone unit is powered by a backup battery for 24 hours.
Cyclone is an ideal wireless security solution for homes, apartments, dorms, storage facilities, and offices. It is made especially for consumers without landline phones; renters that can’t get alarms installed because of lease restrictions; first-time home owners; dorms with no security; small business owners; and renters or home-owners with low-credit scores that can’t get approved for home monitoring.
The Cyclone GSM adapter and LaserShield home security system are easy to setup. The LaserShield master alarm unit is up and running in seconds after plugging it into the telephone jack on the Cyclone and a standard wall outlet. Motion detectors are placed in areas that an intruder would need to pass in order to enter the property. Each wireless motion detector protects a room up to 35×35 feet (1,200 sq. feet) via invisible infrared technology. When a security breach is detected, Cyclone notifies the monitoring service, which then notifies friends, family and, if warranted, the police or other authorities. LaserShield also includes a panic button, allowing a consumer to send a distress alert when needed.
The Cyclone GSM adapter is available immediately for $229.99 through authorized LaserShield dealers. It includes the Cyclone GSM adapter and a power adapter. Customers also need to purchase the LaserShield Instant Security System Starter Kit for $199.95 for a complete security system. The LaserShield Starter Kit includes a master alarm unit, wireless motion detector and two keychain remotes. Customers can activate the 24/7 Rapid Response Monitoring Service on the day of purchase for $29.95/month after a one-time $25 activation charge. Payments are month-to-month with no contracts or long-term commitments. Current LaserShield customers can upgrade to Cyclone without paying an activation fee.
For more information, see www.lasershield.net.
Symantec Corp (Nasdaq: SYMC), makers of
Norton security software, today released the first volume of the Norton
Online Living Report (NOLR) revealing that, more than ever, adults and
children around the world are getting emotionally and socially connected
online - including dating, friendship and playing - as well as for
information and communication. The NOLR, undertaken by Harris
Interactive, revealed some startling statistics about how Internet-Age
technologies have affected families across the world.
Up to half of online adults worldwide and up to 40 per cent of online
children worldwide have made friends on line, with 72 per cent of
responding UK adults having translated at least one online friend to an
offline friend. In the UK, 43 per cent of online adults and 26 per cent
of children enjoy their online relationships as much or more than their
offline friendships. This indicates a major shift in how people relate
to one other and provides potential clues for the future of human
interaction.
Another common theme worldwide reveals that parents’ perception of what
their children are doing online does not reflect the reality of what
their children say they are doing. For example, one in five responding
children admit to conducting activities online that they know their
parents would not approve of with 24 per cent of UK online children
spending tenfold or more time online than their parents think they do.
The survey revealed that 72 per cent of responding parents in the UK are
concerned about their children’s activities online, with 25 per cent
having no idea about what their children are doing on the internet.
This can have shocking consequences: Five times as many children online
in the UK have been approached by a stranger online than their parents
believe. In UK, adults believe that four per cent of children have been
approached online by a stranger. The actual per cent reported by UK
online children is 20.
Today BullGuard, specialist security solution provider, is pleased to announce its global attack on spam with the release of a free Spamfilter. The BullGuard free Spamfilter which includes 24/7 Live Support and integrates with all major email clients is available for download from BullGuard’s website www.bullguard.com.
“Research has shown that people consider spam to be the number 1 nuisance on the internet”, says Theis Søndergaard, CTO and co-founder of BullGuard. “Over 80% of all emails sent today are spam. With our free Spamfilter we give people a tool to keep their inboxes clean. In turn we use their input to further improve the efficiency of the BullGuard Spamfilter.
The BullGuard Spamfilter is a collaborative filter which benefits from user input worldwide. If BullGuard Spamfilter users report a message as spam, which is done by simply clicking a button in their email client, other users will no longer receive this message in their inbox - it will automatically be identified and sent to the spam folder instead. The BullGuard Spamfilter integrates fully with the Outlook, Outlook Express, Windows Mail and Thunderbird email clients.
“Two unique components of the BullGuard Spamfilter are Thunderbird integration and the incorporation of BullGuard Support. We normally include BullGuard Support in all our products, but it is not often you see a free product which includes free 24/7 access to live support”, says Søndergaard.
The BullGuard Spamfilter is already part of BullGuard Internet Security, BullGuard’s award winning complete PC security solution which also consists of BullGuard’s Antivirus, Antispyware, Firewall, Backup and Support components. BullGuard Internet Security users are also set to benefit from the release of the BullGuard Spamfilter as a wider user base will result in more user input and improved spam filtering.
Visit www.bullguard.com and join the BullGuard spam revolution today.
LaserShield Systems, Inc. announced that the LaserShield Instant Security System is now available nationwide through Circuit City, Costco.com, selected Home Depot locations, and other online retailers. LaserShield is the first affordable plug-and-go security system featuring a 105-decibel alarm and professional 24/7 monitoring with emergency response. It is the first professional security system designed for both renters and people with lower credit scores who could not normally qualify for the benefit of an affordable, effective security system.
LaserShield is ideal for single family homes, apartments, offices and dorm rooms so parents can help protect children against on and off campus crime. LaserShield will demo the system at the 2008 Consumer Electronics Show (CES), held next week in Las Vegas from January 7-10, 2008.
“Circuit City is bringing lifesaving technology to its customers in the form of an affordable, off-the-shelf product that makes home security accessible to everyone,” said Anthony Dohrmann, CEO, LaserShield Systems. “We have listened to what consumers have been asking for and most importantly, consumers that rent. Renters are burglarized 71% more than homeowners. We have created a system that gets these people the help they need – when they need it most. And they can relocate the system and service instantly, in the event they move.”
The $199.95 starter system includes a master alarm unit, a wireless motion detector and two keychain remotes. Customers can activate Rapid Response Monitoring Service on the day of purchase for $19.95 on a month-to-month basis with no long-term contracts or commitments.