[SecurityRatty] tag: free

Facebook Group for Complex Event Processing

Sat, 05 Jul 2008 03:22:59 +0000

We now have a FaceBook group for CEP, so if you are into on-line social networking, enjoy!

http://www.facebook.com/group.php?gid=23977227924

Feel free to add any links or messages you like. Vendors sites welcome too! Just network, market, relax and have fun!

Wee-Fi: Santa Cruz-Fi, Boingo for Mac

Thu, 03 Jul 2008 07:12:58 +0000

Santa Cruz opts for micro-Fi: the City had hoped to get a full deployment, but has decided to start with a hotzone in their tourist areas, which is far easier to build and quantify the success of.

Boingo releases Mac client for its aggregated service: The free GoBoingo for Mac client works with Leopard, at last. Boingo resells U.S. and worldwide service at $22 and $40 per month, respectively, for unlimited use.

Using ClusDiag for enhanced Windows server cluster reporting

Wed, 02 Jul 2008 20:38:02 +0000

Learn to use some of the reporting capabilities of ClusDiag, Microsoft's free tool for Windows server cluster management, with details on how to capture logs and view cluster reports.

Google gives away free Web-application security scanner

Wed, 02 Jul 2008 20:00:00 +0000

Google has released for free one of its internal tools used for testing the security of Web-based applications.

Your 419 Mail Roundup

Wed, 02 Jul 2008 13:11:42 +0000

A handful of scam mails currently in circulation, including one mention of "groundnut oil" that seems so bizarre I had to highlight it in bold text. All this and more, after the jump...
Subject:
FROM THE DESK OF MR. STEVEN JAMES
From:
"Steven James"
Date:
Mon, 30 Jun 2008 19:17:03 +0100
BCC:

FROM THE DESK OF MR. STEVEN JAMES
CHAIRMAN INTERNATIONAL RELATION
FIRST BANK OF NIGERIA PLC
# 1 BANK ROAD WUSE FCT
ABUJA-NIGERIA.
PHONE: +234-80-66520277
Email: stevenjames809@live.co.uk

Very Urgent Attention,

Please permit me to introduce my humble self to you, my name is Mr. Steven James, I am the Manager of International Relation with First Bank of Nigeria Plc, I 'm 38yrs old, and I got your email address from a friend of mine, and my confidence reposed on you. I hope you read this message carefully and reply me immediately. Although we have not met before, but I suggest that this transaction will bring us together.

My dear, we had a customer, a foreigner but base here in Nigeria, his Name was Mr. Hamilton Creek. He is from Atlanta Georgia United State of America, but based here with his wife and his two children, Mr. Hamilton has being banking with us for the past 4yrs and some time in August 2002, Mr. Hamilton was on his way to his house, and unfortunately ran into a Trailer load of Groundnut Oil, and died   immediately, Their car got burnt, no single soul was saved, Mr. Hamilton Creek and His entire family was confirmed dead.

My Board of Directors and the Management of First Bank has mandated and instructed me to look for Mr. Hamilton Creek? Relation(s) and his Next of Kin to come and claim his fund, Since August 2003 till date, I have been looking for his relation's or his next of Kin to come and claim his fund which he Deposited with our bank, I have contacted his Embassy and after 3days, his Ambassador told me that Mr. Hamilton Creek has no relation and no next of Kin, their Ambassador told me that he used his first son as His next of kin, but it is quite unfortunate that Mr. Hamilton Creek Died with all his family members.

The reason why I contacted you is thus, Mr. Hamilton is dead, and his only son who supposed to inherit his properties and money also died with him. As at this moment, nobody or person[s] is coming to   claim this Money from our bank. The Board of Directors and management of our bank told me that if nobody or person[s] apply for the claim of Mr. Hamilton Fund, the bank will return the entire Fund into our Federal reserve. In the Light of the above, I want you to stand as the next of kin to Late Mr. Hamilton Creek; it might interest you to know that he had a Domiciliary Bank Account with our Bank and he has a total sum of US$9.2M Nine Million Two Hundred thousand Dollars, this is the exact amount which he had in his domiciliary account before the ugly incident occurred, and this money is still in his account as unclaimed money.

This transaction is very easy and simple, and it is 100% risk free, I'm the Manager for International Relations with First Bank of Nigeria Plc, and the Management and Board of Directors of the Bank are waiting for me to provide to them the Relation or next of Kin to late Mr. Hamilton Creek, of which I told them that I am still searching the next of kin to the deceased. Finally, if you are interested with this transaction, I will front you to the bank as the only next of kin to late Mr. Hamilton Creek, and I will let the bank know that you are the only right person to inherit Late Mr. Hamilton Funds and properties. If you are interested, just email me or call me on my   direct and private line#: +234-80-27536038 and late Mr. Hamilton's Funds will be credited into your account and all his Properties will be released to you either through Courier Services or the Bank will Cargo all his properties to you in any were you want it.

So reply me immediately and feel free to ask any question with regards to this transaction. You will take 50% of the US$9.2M. Which is? US$4.600, 000.00 Four Million Six Hundred Thousand Dollars, while the Balance of the same amount will be mine.

Your swift response will be highly appreciated.

Thanks and have a nice day.

Friendly Regards

Mr. Steven James

*******************************************************************************************

Subject:
REPRESENTATIVE NEEDED
From:
DFS SALES LTD UK
Date:
Tue, 01 Jul 2008 23:00:55 +0800
To:
undisclosed-recipients: ;

COMPLIMENT OF THE DAY TO YOU.

I am PETER WOODS from DFS SALES LTD UK.(
Website: www.dfs-online.co.uk ) Visit our site

We are into furnitures and we sell shares to people in
Canada,America, Australia and Europe.

We are in need of a book keeper. someone who can represent our company
in his/her country.

Our client in your location will contact you and make the company
payment to you.

You will be entitle to 11% of every payment been made out to you.

This is because most of our officer are from china and they do not

understand english very well.its hard for them to contact our
customers.

Our head office is located in CHINA. But we have a sub-office in the
uk.

If you are interested, Kindly send the entries for more understanding.

NAME IN FULL :.........
COMPANY NAME: .....
POSITION:......
FULL ADDRESS: .......
CITY/TOWN:........
STATE:............
ZIP CODE:........
COUNTRY:.......
MOBILE:.......
HOME TEL: .....
EMAIL ADDRESS: ........
OCCUPATION: ...........
BANK NAME :.......
AGE:............

You are to send the above details to

NAME : PETER WOODS.
EMAIL : dfs_woods@yahoo.co.uk
PHONE NUMBER : +44-704-575-0212

HOPE TO HEAR FROM YOU

*****************************************************************************************

To:
undisclosed-recipients:;

Good day!!!

We have been waiting for you since to contact me for your Confirmable Bank Draft of ?18 Million (Eighteen Million Pounds sterling) but we did not hear from you since for a couple of weeks now. Then we went to the bank to confirm if the draft that expired or getting near to expire and Metropolitan Police Uk told us that before the funds will get to your hand that it will expire.So I told him to cash the ?18 Million (Eighteen Million Pounds sterling) to cash payment to avoid losing this fund under expiration as I will be out of the country for a 6 Months Course.

What you have to do now is to contact FED EX COURIER SERVICES as soon as possible to know when they will deliver of your funds to you because of the expiring date. For your information we have paid for the delivering Charge Insurance premium. The only money you will send to the FED EX COURIER SERVICES to deliver your cheque direct to your postal Address in your country is ?250.00 being Security Keeping Fee of the Courier Company so far. Again don't be deceived by anybody to pay any other money except ?250.00 for the Security Keeping Fee.We would have paid that but they said no because they don't know when you will contact them and in case of demurrage. You have to contact FED EX COURIER SERVICES now for the delivery of your Draft with this
information below:

CONTROLLER: Mrs.Helen Williams
NAME: FED EX COURIER SERVICES
ADDRESS: fedexofficeuk@gmail.com
PHONE NUMBER: +447024080684

IF YOU ARE THE OWENER OF THE FUNDS AND YOU WILL SEND YOUR INFORMATION TO US SO THAT WE CAN DELIVERY YOUR FUNDS TO YOU WITHIN THE NEXT 84HRS TIME.IF YOU DO NOT RECEIVED YOUR FUNDS WITHIN THE NEXT 72HRS TIME AND YOU REPORT US THE UK FBI AND THE METROPOLITAN POLICE (SCOTLAND YARD) or YOU CONTACT YOUR LAWYER TO TAKE UP PROCEDURES AGAINST US.

Let me repeat again try to contact them as soon as you receive this mail to avoid any further delay and remember to pay them their Security keeping fee of ?250.00 for their immediate action. The FED EX COURIER SERVICES don't know the contents of the funds. This is to avoid them delaying with the funds.

Thanks as you contact them today.

Yours Faithfully

Mrs Helen Williams.

(The above actually comes with a nifty graphic that they've thrown in, thinking it makes it all look more legitimate. It doesn't, but here it is anyway):

....altogether now: oooooh. A slightly shorter 419 roundup than usual, but I'm sure I'll have piles of the things next week.

Wee-Fi: iPhone 3G Plans, TAP-Fi, Free Boingo Day, St. Louis-Fi

Wed, 02 Jul 2008 07:52:38 +0000

iPhone 3G availability, pricing clarified for U.S.: AT&T released details on the full cost of iPhone 3G hardware and service, providing more detail than previously available. The phone is $199 (8 GB) or $299 (16 GB) to AT&T's existing 2G iPhone customers who want to upgrade, to customers with no current contract, or new customers. Existing customers with another phone contract in place pay $399 (8 GB) or $499 (16 GB). Monthly data pricing is a flat $30 for unlimited use--no 5 GB cap--and text messaging is extra, at either an absurd 20 cents each, or bundles starting at $5 per month for 200 messages. Old 2G iPhones can be resold or given away by those who upgrade, and still qualify for the cheaper 2G plans, that start at $20 per month for unlimited data and 200 SMSs. Or a 2G iPhone can be used as a Wi-Fi-only device.

TAP Portugal adds in-flight calling: OnAir's satellite-based call service is now in a trial on a single Airbus A319 in TAP's fleet. The six-month trial will determine how they move forward. TAP was originally slated to launch a trial nearly three years ago, but technical and regulatory issues have delayed in-flight mobile use in Europe. This isn't broadband, by the way: it's pricey per-minute calls, texts, and cell-based email.

Boingo offers free day pass for downloading connection software: The hotspot aggregator will give you 24 hours of use at a location in their network for downloading their lightweight connection software by 6-July-2008. The software identifies Boingo-partnered networks, and lets you sign in without any fuss.

AT&T launches downtown St. Louis network: The company found that it couldn't complete its city-wide proposal due to light pole issues. They've built out a square mile in the downtown, instead. The service is $8 per day and $16 per week, or free for up to 20 hours per month when ads are viewed. AT&T DSL, fiber, and remote business customers get free use of the network.

Fast Track to Botnet Central

Tue, 01 Jul 2008 05:41:45 +0000

Its true, you too can finally get into the botnet you always wanted. Finally the ability to be a zombie computer under some losers control is yours!

Seriously though, becoming a victim to a hacker's botnet is incredibly easy. These attacks are not typical to other forms of destruction found on the internet. There true intent is usually to remain hidden from view until called upon. In the case of FastTrackBot however there is a new objective. FastTrackBot downloads several executable files that keep your computer clicking on the attacker's affiliate links. These executable files keep the webpages in hidden iexplore.exe windows in order to hide the application from suspicious eyes. If you're using X-cleaner, I suggest you take a look at the Expert Tab. The Show All Hidden Windows function is great for showing you exactly what is open at the time.

FastTrackBot phones home to several of these sites in order to keep the user clicks through affiliate links.

Aside from creating invisible windows to hog your bandwidth up, it also attempts to install a rogue anti-spyware application. This is a popular technique when attempting to fraud the victim into leaking credit card information when actually attempting to purchase the fake product. FastTrackBot inserts a fake security center that appears identical to the one found in Windows XP.

As you can see in the address bar, this is not the actual security center. Clicking anywhere on this window means almost certain doom in the worst way possible...a never ending stream of fake "YOU ARE INFECTED!!!!" alerts.

In order to kill the actual application, you have to remove it from memory first, then remove its autostart which is found in 5 different locations - or simply remove with our free Microscanner.

William Jackson on FISMA: It Works, Maybe

Mon, 30 Jun 2008 17:03:54 +0000

Article from William Jackson in Government Computer News: Security policies remain a burden to federal IT managers, but they are producing results.

First off, GCN, come into the modern Web 2.0 era by letting people comment on your articles or at least allow trackbacks. Having said that, let’s look at some of Mr Jackson’s points:

NIST Special Publications: They’re good. They’re free. The only problem is that they’re burying us in them. And oh yeah, SP 800-53A is finally final.
Security and Vendors/Contractors: It’s much harder than you might think. If there’s interest, I’ll put out some presentations on it in my “copious amounts of free time”. In the meantime, check out what I’ve said so far about outsourcing.
Documentation and Paperwork: Sadly, this is a fact of life for the Government. The primary problem is the layers of oversight that the system owner and ISSO have. When you are as heavily audited as the executive branch is, you tend to avoid risks and overdocument. My personal theory is that the reason is insistence on compliance instead of risk management.
Revising FISMA: I’ve said it time and time again, the law is good and doesn’t need to be changed, the execution is the part that needs work.

Bookmark to:

Evil BETAs Attack!

Mon, 30 Jun 2008 13:45:00 +0000

Read this awesome "The BETA Mindset: Public Enemy #1 " piece from Mike R (BTW, it is a MUST-read). The maybe refresh on what I said after reading "Geekonomics." Then think!

Yes, it is available today (as beta maybe - but then again "all software is beta").
Yes, it is free.
Yes, it works ... well, when it does.
Yes, you can trust, say, your email to it (who cares when it is made public, really! :-))

And then the same programmer mindset trickles up to the software that controls your aircraft engine.

Boom!

That WAS you.

The more I think about it, the more I like the idea of software manufacturers' liability (succinctly described in "Geekonomics"); I suspect that everything bad that might come with it will probably still be better than what we have now (or will have soon...)

Ad-Aware 2008 Now Available!

Mon, 30 Jun 2008 11:38:14 +0000

Whats new in 2008?

Integrated anti-virus protection
Our powerful anti-spyware software now includes extended
anti-virus protection for Ad-Aware 2008 Plus and Pro versions.
Improved rootkit removal system
An improved rootkit removal system is now available to
address today's threat framework.
Bigger and better detection
Lavasoft's new extended anti-virus engine boosts detection
to include over one million additional virus and malware threats.
Substantially reduced use of computer memory
Plus and Pro users will notice a significant reduction in
computer memory used while in watchguard mode.
64-bit platform support
Ad-Aware 2008 Free, Plus and Pro versions will have full
64-bit platform support as well as Windows Vista compatibility.
Faster updates
New download compression results in faster product updates
for users on all systems.
New international network of malware security volunteers
submitting samples of the latest malware threats in the wild.

Now Available on the SpywareBiz AntiSpyware page. Get it now!