When I first took my job as Security Manager we had this horrid AV software called Trend Micro Officescan. The console seeems ancient and its just not what is needed in an enterprise environment. The downfall of Trend Micro is its inability to keep our network Virus free. Our main problem virus is known as Virut, it goes by scribble/Virux/iFrame as well. Trend can detect the virus but cannot clean the virus in most cases. In most cases when Virut infects a computer, its objective is to infect, spread then kill the computer. Virut also is capable of receiving instructions from IRC based chat channels which allows a remote user to take control of the infected machine. Virut is a polymorphic virus, meaning it has the ability to change its code and behaviors. This same virus brought down the Texas judicial system when it came out in early 2009. Virut works by infecting .exe (regular program files, the icons you click on usually are .exe files) and .scr (screen saver files). The way the program seems to propagate is through the HTML_iFrame vulnerability. This is when the code is placed on html files on the system, then spreads to a Virut infection. This means any websites saved on the PC, including help files associated with programs are infected and in turn infect the machine. Currently when Trend detects the threat on a machine it will try and disinfect the file which fails 95% of the time, Trend then tries to quarantine the file. Once the cleaning and quarantine fails Trend then just deletes the file. The problem with this is that Trend deletes certain essential system files that are needed to keep the system running. Trend also has a console which allows for management of the system but is limited, so there are essentially four consoles and no central management console. Trend definitions also seem to be a problem, the server is either not passing them out to each and every device or the devices are not allowing the program to update. This is causing infections and network attenuation. Device control is also not available through Trend Micro Officescan. Device control is when you plug in a device or thumb drive and the software automatically scans the device(s) for threats. This is one of the main ways viruses get onto systems.
Speaking with Trend Micro, I have learned they have a new product out that is meant for larger environments. I have not tried this out but the company also said we could get down to one server then went back to say as many as 4 servers would be needed.
The moral of this long drawn out story? Don't do business with Trend Micro, itll be worth a few extra dollars or a little bit of worry with a free tool than to subscribe to these guys. Their support is horrible, I have yet to get a return call back from almost a year ago...still waiting on that one Trend.
The Net's Technology Troubleshooting, Tutorial, and Review Authority
Visit My Sponsors
Showing posts with label viruses. Show all posts
Showing posts with label viruses. Show all posts
20100920
20100301
Scams, Spam and Facebook?
In this blog, I want to warn you of the dangers of spam and scams.
"Spam is the abuse of electronic messaging systems (including most broadcast media, digital delivery systems) to send unsolicited bulk messages indiscriminately."
Spam fills your inbox with offers of cheap meds, cheap sex, cheap travel and all kinds of other stuff. I have to be honest. If I responded to every one of the spam emails I got, I'd be broke. I would have my identity stolen. I would probably have a stock pile of sugar pills and vacation after vacation in the ghettos of Mexico and other places.
What I really want to make you aware of is the scam aspect of spam. Emails with subject titles like "I've got a message for you" or "Is this you?" are just ways to get you to open the mail and read the ad that is inside. This is where the scam aspect of spamming comes in. They hook you with bleeding heart messages like "help Haiti" or "Help Chile." Once you have clicked on the link, your computer is infected with viruses and trojans. They use the information you use to "Donate" and keep your money. The best guideline for spam - dont open email if you don't know who it is from. The "from" part of your mailbox is like the peephole on your front door, if you don't know the person knocking...you simply do not let them in.
Here is where I get to talk a little about the new Facebook scams going on. The newest spam/scam is made to look like it comes from your friends. You get a nice little invite in your message folder from what looks like your friends. The message says "Click here to RSVP." Well, clicking this link takes you to another website that infects your computer. Again the best way to prevent this is to not click on "it." Nine times out of ten, a person will tell you about an event before it hits Facebook. If you don't know about it...don't click on it.
Below are a few guidelines to follow from http://www.usaaedfoundation.org/pdf/572.pdf
How can you have fun online while protecting yourself?
-Do not post information that will identify you, including:
● Your full name.
● Your home address or phone number.
● Your Social Security number.
● Passwords.
● Credit card or bank account numbers.
● Names of family members or friends.
● Your workplace or favorite hangout.
● Names of clubs or organizations to which you belong.
● Historical information that could identify your past residences.
● Do not use a nickname that can be used to identify you (for example, “CharlestonLawyer,” “CindyFromTulsa” or “KyWildcatMom”).
● Never share your account password.
-Protect Your Computer System
● Consider using encryption to protect your personal information.
● Shut down your computer when it is not in use — especially in public places, such as Internet cafes, coffeehouses or airports.
● Keep your antivirus and antispyware programs, other software and operating systems updated to protect against new attacks.
● Consider using a firewall on your system to protect against hackers accessing your system remotely.
● Think about how your e-mail message will be read by others. Do not say anything online that is cruel or may damage someone’s reputation. Doing so puts you at risk of being accused of slander or defamation, or may cause a dangerous escalation of hostilities.
● Do not give out personal information about someone else.
● Do not forward another individual’s e-mail without their permission.
● Never allow anyone to photograph you in an embarrassing or compromising situation.
● Never post anything that would cause you embarrassment or shame. The Internet is the most public of forums — once you have posted a comment, a photo or a video, it cannot be erased or taken back. You cannot control its duplication and it may be used against you.
● Do not send photos of yourself or family members to Internet acquaintances. Photos can be altered and sent to others, and elements in photos — a landmark or a street name, for example — can be used to identify your location.
● Remember that, once posted, the information can be seen by anyone with a computer and an Internet connection: family and friends, employers or potential employers, admissions officers at schools you might like to attend — even police and other law-enforcement authorities.
Following these guidelines and taking to heart the information I have written about are just small steps that will have a huge effect on keeping you, your computer and your family safe from Scams, Spam, and Facebook.
"Spam is the abuse of electronic messaging systems (including most broadcast media, digital delivery systems) to send unsolicited bulk messages indiscriminately."
Spam fills your inbox with offers of cheap meds, cheap sex, cheap travel and all kinds of other stuff. I have to be honest. If I responded to every one of the spam emails I got, I'd be broke. I would have my identity stolen. I would probably have a stock pile of sugar pills and vacation after vacation in the ghettos of Mexico and other places.
What I really want to make you aware of is the scam aspect of spam. Emails with subject titles like "I've got a message for you" or "Is this you?" are just ways to get you to open the mail and read the ad that is inside. This is where the scam aspect of spamming comes in. They hook you with bleeding heart messages like "help Haiti" or "Help Chile." Once you have clicked on the link, your computer is infected with viruses and trojans. They use the information you use to "Donate" and keep your money. The best guideline for spam - dont open email if you don't know who it is from. The "from" part of your mailbox is like the peephole on your front door, if you don't know the person knocking...you simply do not let them in.
Here is where I get to talk a little about the new Facebook scams going on. The newest spam/scam is made to look like it comes from your friends. You get a nice little invite in your message folder from what looks like your friends. The message says "Click here to RSVP." Well, clicking this link takes you to another website that infects your computer. Again the best way to prevent this is to not click on "it." Nine times out of ten, a person will tell you about an event before it hits Facebook. If you don't know about it...don't click on it.
Below are a few guidelines to follow from http://www.usaaedfoundation.org/pdf/572.pdf
How can you have fun online while protecting yourself?
-Do not post information that will identify you, including:
● Your full name.
● Your home address or phone number.
● Your Social Security number.
● Passwords.
● Credit card or bank account numbers.
● Names of family members or friends.
● Your workplace or favorite hangout.
● Names of clubs or organizations to which you belong.
● Historical information that could identify your past residences.
● Do not use a nickname that can be used to identify you (for example, “CharlestonLawyer,” “CindyFromTulsa” or “KyWildcatMom”).
● Never share your account password.
-Protect Your Computer System
● Consider using encryption to protect your personal information.
● Shut down your computer when it is not in use — especially in public places, such as Internet cafes, coffeehouses or airports.
● Keep your antivirus and antispyware programs, other software and operating systems updated to protect against new attacks.
● Consider using a firewall on your system to protect against hackers accessing your system remotely.
● Think about how your e-mail message will be read by others. Do not say anything online that is cruel or may damage someone’s reputation. Doing so puts you at risk of being accused of slander or defamation, or may cause a dangerous escalation of hostilities.
● Do not give out personal information about someone else.
● Do not forward another individual’s e-mail without their permission.
● Never allow anyone to photograph you in an embarrassing or compromising situation.
● Never post anything that would cause you embarrassment or shame. The Internet is the most public of forums — once you have posted a comment, a photo or a video, it cannot be erased or taken back. You cannot control its duplication and it may be used against you.
● Do not send photos of yourself or family members to Internet acquaintances. Photos can be altered and sent to others, and elements in photos — a landmark or a street name, for example — can be used to identify your location.
● Remember that, once posted, the information can be seen by anyone with a computer and an Internet connection: family and friends, employers or potential employers, admissions officers at schools you might like to attend — even police and other law-enforcement authorities.
Following these guidelines and taking to heart the information I have written about are just small steps that will have a huge effect on keeping you, your computer and your family safe from Scams, Spam, and Facebook.
Subscribe to:
Posts (Atom)