[SecurityRatty] tag: follow-on

Tips for staying safe online this Holiday season

Fri, 28 Nov 2008 13:37:01 +0000

Great article by Mr Walling.
Take the time read the tips and maybe you wont become a statistic this season

Walling Data’s Top Ten Safety Tips for Online Shopping

“The Internet is safe if you follow basic, fundamental rules of
using a computer safely,” says Luke Walling, Founder and President of Walling
Data, one of the largest distributors of online security products in
the country. “Many people think of their computer much like
they would an appliance, such as a microwave or stereo that behaves in a
predictable pre-programmed way. But, in reality computers
are dynamic devices that evolve dramatically with the installation of
each new program. It’s important to remember that viruses
and spyware are programs as well.”

Another link spammer

Sun, 23 Nov 2008 16:45:45 +0000

Yet another link spammer is cluttering up my in-box. You’d think that after exposing this one, and this one, and this one, they’d know better.

The latest set of miscreants operates under the brand “goodeyeforlinks.com” and claim to “use white hat SEO techniques in order to get high quality, do-follow links to your website”. They also claim to be “professional” which in this case must mean you pay for their services, since sending out bulk unsolicited email is anything but professional.

Nevertheless, although their long term aim may indeed be to make money from legitimate, albeit foolish, businesses seeking a higher profile, the sites they have been promoting so far are anything but legitimate. In fact they’ve been fake sites covered with Google adverts (so-called “Made for AdSense” (MFA) sites).

They started by asking me to link to “entovation.net” which they claim is “page rank 3″. In fact it is page rank 3 (!) and a blatant copy of http://www.acentesolutions.com which appears entirely genuine (albeit only page rank 1). They have also been promoting “poland-translation-services.com“, which claims to be a site offering “A large team of 2,500 translators specializing in each sector, located in over 30 countries” …

However, this site is clearly fake as well. I haven’t tracked down where it all comes from, but much of this page comes from this Argentinian page, the text of which has been pushed through Google’s Spanish to English translation tools… which sadly (for example) renders

Comentarios: Se considera foja al equivalente a 500 palabras. Si el documento a traducir es menor a una foja, se lo considerará como una foja.

into

Comments: foja is considered the equivalent of 500 words. If the document is translated to a lesser foja, we will consider as a foja.

which makes the 2500 translators look more than a little bit foolish!

The fake websites are hosted by EuroAccess Enterprises Ltd. in The Netherlands (which is also where the email spam has been sent from). I’m not alone in receiving this type of email, further examples can be found here, and here, and here, and here, and here, and here, and even here (in Spanish).

EuroAccess have a fine ticketing system for abuse complaints… so I’m able to keep track of what they’re doing about my emails drawing their attention to the fraudsters they are hosting. I am therefore fully aware that they’ve so far marked my missives as “Priority: Low”, and nothing else is recorded to have been done… However, the tickets are still “Status: Open”, so perhaps a little publicity will encourage them to reassess their prioritisation.

Dont get a lump of coal this season!

Tue, 18 Nov 2008 14:46:21 +0000

Make sure your online protection products are working and updated, or you may get a lump of coal this Holiday season.

clipped from www.marketwatch.com

Webroot Threat Advisory: Online Threats to Increase This Holiday Season

To protect themselves during any online
shopping experience, consumers need to be aware of the security
risks and necessary precautions they should take to avoid being a victim
of cyber crime. Since the October to December timeframe will be a key
money-making season for today’s financially
motivated cyber criminals Webroot is recommending that consumers follow
these five steps:

You may not even know it, but a Bodyguard may be protecting your colleague as you work.

Sun, 26 Oct 2008 09:33:00 +0000

I just came across an excellent workplace violence article written by Seattlepi.com reporter, Andrea James.

The article raises many points that I am sure many of us have or would overlook if it was not brought to our attention. The director of New Beginnings, a Seattle based non-profit that provides advocacy and shelter for victims made the point that while going home after a hard day's work is something that many employees look forward to, for victims of domestic abuse, work is the only place that provides them safety and a sanctuary from a tortured home life.

Our company is frequently requested by employers to provide covert bodyguards for employees with domestic problems at home. The reason for this is due to the fact that physical violence at home, quite often spills into the workplace by the abuser and when that happens, the liklihood of the domestic partner and other co-workers getting hurt or even killed is very real.

Employers know that they have a responsibility to keep the workplace safe so they hire companies like ours to have trained personal protection specialists blend in at the place of empoyment and watch out for the identified threat. Just about 100% of the time the victim of the abuse is a female employee but this article and the comments that follow show that males also suffer from domestic violence.

It is the opinion of our company that we will see even more workplace violence, domestic and otherwise, as companies continue to practice cost cutting tactics like downsizing and layoffs due to the worsening economy. Other related predictions would be thefts from the workplace, increase in fraud and embezzlement, an increase in Resume/CV fabrications as more and more people compete for fewer jobs.

This all goes to show that employers have to be more astute and procative in making sound hiring decisions, being alert for internal theft and abuse and being proactive when it comes to workplace violence.

How to Write Injection-Proof SQL

Thu, 16 Oct 2008 01:56:59 +0000

It's about time someone wrote this paper:

ABSTRACT
Googling for "SQL injection" gets about 4 million hits. The topic excites interest and superstitious fear. This whitepaper dymystifies the topic and explains a straightforward approach to writing database PL/SQL programs that provably guarantees their immunity to SQL injection.

Only when a PL/SQL subprogram executes SQL that it creates at run time is there a risk of SQL injection; and you'll see that it's easier than you might think to freeze the SQL at PL/SQL compile time. Then you'll understand that you need the rules which prevent the risk only for the rare scenarios that do require run-time-created SQL. It turns out that these rules are simple to state and easy to follow.

Slacker Releases G2 Wi-Fi Music Player

Tue, 16 Sep 2008 05:38:53 +0000

Slacker joins Apple and Microsoft in releasing new models: It's been a busy week for those who follow the latest developments in music players. Apple's new iPods, while not revolutionary, still up the ante for features and quality; Microsoft's new Zunes, released today, come with fascinating new software options; and the Slacker G2 today. The G2, like the iPod touch and all Zunes, sports Wi-Fi.

Slacker licenses music directly from publishers, and includes a perpetual subscription in the cost of the player. Slacker creates stations that feed out an endless supply of music. The new models are $200 for a 4GB model with the ability to list 25 stations (up to 2,500 songs), or $250 for an 8 GB model with 40 stations (up to 4,000 songs). You can also sync your own music in MP3 or WMA format. For $7.50 per month, you can upgrade and store songs you're listening to, as well as avoid ads.

The G2 is already getting reviews as a much-improved upgrade from the first release. Like the Zune, there's no browser or other Internet features, and that might be a positive.

The G2 is tied into Devicescape's Wi-Fi home and hotspot authentication system, which lets Slacker G2 owners pre-program encryption keys or login information for hotspots that they frequent. Devicescape's software both retrieves and stores login information, allowing the G2 to be used in places that would otherwise require either tedious entry of a WPA passphrase, or be unavailable without a Web browser to handle the login.

Finally We Get Better at Marketing

Fri, 12 Sep 2008 12:19:37 +0000

Watch for the follow ups BTW if you want a better resolution version than GooTube go here http://www.microsoft.com/windows/

Slideology

Wed, 27 Aug 2008 09:47:05 +0000

My copy arrived today and it looks like a great book for anyone who speaks and presents. The thing that impressed me the most was that it eats its own dog food. The book its beautifully laid out and easy to follow, logically ordered and a pleasure to flick through. Perfect timing as I am [...]

Call out a phisher, get attacked by malware

Tue, 26 Aug 2008 09:00:00 +0000

If you're the target of a phishing attack, one thing you probably shouldn't do is backtalk, said Joe Stewart, director of malware research at SecureWorks. Otherwise, you may be the target of a follow-up attack.

Unsubscribe from Spam emails?

Sat, 23 Aug 2008 11:53:14 +0000

Replying or hitting the unsubscribe will most probably get you even more Spam folks.

clipped from www.crime-research.org

Should you EVER reply to a spam message?

First you need to determine what kind of junk mail you have. Is it being sent by a company you’ve ever done business with, or something you might have signed up for in the past, however long ago? Most commercial mail being sent by legitimate companies will have an unsubscribe link at the bottom, and though those links can take a few days (up to 10 in some cases) to go into effect, if you follow the instructions to unsubscribe from a mailing list (be sure to complete the transaction and read what to do carefully so you don’t miss anything) the messages should stop.