Security announcements (6)

How to secure your Browser from tracking and cookies

It is being widely understood that our browsing habits are being tracked. Recently several articles have appeared in online news that I monitor. I will share the information with you and give you the resources that you can apply to your computer.

First, a general cleaner for the computer can be found from www.piriform.com/ccleaner/download They offer a free version that will manually remove data from your browser. This will remove ALL saved passwords, cookies, and junk files associated with browsing the internet.

For Google Chrome - Several extensions are available for you to use. 

Privacy Badger is designed by the Electronic Freedom Foundation, which I support. 

To view their website at the Electronic Freedom Foundation go to https://www.eff.org

To support them go to: https://supporters.eff.org/donate/button

Read more...

What is a Social Engineering Attack ?

What is a social engineering attack?

In a social engineering attack, an attacker uses human interaction (social skills) to obtain or compromise information about an organization or its computer systems. An attacker may seem unassuming and respectable, possibly claiming to be a new employee, repair person, or researcher and even offering credentials to support that identity. However, by asking questions, he or she may be able to piece together enough information to infiltrate an organization's network. If an attacker is not able to gather enough information from one source, he or she may contact another source within the same organization and rely on the information from the first source to add to his or her credibility.

What is a phishing attack?

Read more...

TA13-309A: CryptoLocker Ransomware Infections

Systems Affected

Microsoft Windows systems running Windows 7, Vista, and XP operating systems

Overview

US-CERT is aware of a malware campaign that surfaced in 2013 and is associated with an increasing number of ransomware infections. CryptoLocker is a new variant of ransomware that restricts access to infected computers and demands the victim provide a payment to the attackers in order to decrypt and recover their files. As of this time, the primary means of infection appears to be phishing emails containing malicious attachments.

Description

CryptoLocker appears to have been spreading through fake emails designed to mimic the look of legitimate businesses and through phony FedEx and UPS tracking notices.  In addition, there have been reports that some victims saw the malware appear following after a previous infection from one of several botnets frequently leveraged in the cyber-criminal underground.

Impact

Read more...

Vast Majority of PCs have Java Vulnerabilities

A vast majority – 81% – of Windows machines are running an outdated version of Java, leaving their users wide open to known exploits.

The latest Java security research from Websense shows that as of last month, only 19% of enterprise Windows-based computers ran the latest version of Java (7u25). More than 40% of enterprise Java requests are from browsers still using outdated Java 6. As a result, more than 80% of Java requests are susceptible to two popular new Java exploits: CVE-2013-2473 and CVE-2013-2463.

These two are already making a big impact by targeting computers running outdated versions of Java,” said Websense researchers, via the company blog. “It's clear the cybercriminals know there is a Java update problem for many organizations.”

Read more...

New DNS Hijacking Scam

Original release date: March 21, 2013 | Last revised: March 22, 2013

US-CERT has received reports of apparently DHS-themed ransomware
occurring in the wild. Users who are being targeted by the ransomware
receive an email message claiming that use of their computer has been
suspended and that the user must pay a fine to unblock it. The
ransomware falsely claims to be from the U.S. Department of Homeland
Security and the National Cyber Security Division.

Read more...

FedEx Package Scam

FedEx  
   
Tracking ID: 3294-05558562  
Date: Monday, 4 January 2013, 09:42 AM

 

Dear Client,

Your parcel has arrived at February 8.Courier was unable to deliver the parcel to you at 8 February 06:33 PM.

To receive your parcel, please, print this receipt and go to the nearest office.

     

Print Receipt

 
 
Best Regards, The FedEx Team.
   
FedEx 1995-2013
Read more...
Subscribe to this RSS feed

Client Says

Carefree Computing has been unfailingly responsive to our needs. They've handled our network installation, hardware and software acquisitions, upgrades and maintenance, security system design and much more. I can not imagine life at the office without their support!...

Douglas Post
20 March 2013
Contact Us For Free Consultation