[SecurityRatty] tag: sluggish

NAPA Shows How the Government is Using Web 2.0

Wed, 16 Jul 2008 16:45:37 +0000

Back in April, we attended a session at the FOSE conference that highlighted Web 2.0 usage in the public sector. We also found through a survey of government workers that 65% of government IT workers surveyed said that Web 2.0 tools are important to their operations. The overall message was that all IT, government included, have too many projects they could be taking on for the amount of resources they have. For much of the IT topics we covered in the survey, importance was high but actual deployment was lower.

Dan Munz, project manager of the Collaboration Project commented on the unique work that the National Academy of Public Administration (NAPA) is doing to bring together government leaders. The Collaboration Project seeks to innovate across government not just down the silos and create a safe place for leaders to have discussions around innovation.

ScienceLogic: What is the National Academy of Public Administration?

Dan Munz: The Academy is an independent, non-partisan, non-profit organization dedicated to tackling government’s most complex challenges. We were founded in 1967 by James Webb, the NASA administrator who took us to the moon – he saw that he could consult the National Academy of Sciences for expert technical advice, but had no counterpart in government for expert management advice. That’s been our mission ever since.

ScienceLogic: What is the Collaboration Project? How long has it been around?

Dan Munz: The Collaboration Project is the Academy’s response to two parallel trends we see in government. The first is the government’s need to transform the way it does business. There is a strong demand for change out there driven by a number of challenges that are forcing the government to rethink its mission and structure. Challenges include a public disconnected from government; a multi-sector workforce and increasing reliance on contractors; financial instability; and new types of security threats, just to name a few. More and more, the challenges facing government reach across the traditional boundaries of agency and mission. But government isn’t configured to work that way.

The second trend is the unprecedented opportunity collaborative technology offers to drive transformational change in government. Tools like blogs, wikis, and mashups are changing the way leaders think about problems. They’re focusing not on what they can do just within their offices or agencies, but what voices they need to pull together across government, non-profits, the general citizenry, and other stakeholders to solve these problems. The Collaboration Project’s goal is to encourage this type of thinking and empower leaders committed to use collaborative technology to:

strengthen citizen civic engagement;
enhance government transparency;
improve service delivery and operational efficiency; and
facilitate coordination and innovation within and between agencies.

ScienceLogic: Why focus on Web 2.0 in the government?

Dan Munz: The question of how web 2.0 will impact federal IT departments is a critical one. Our view is that “the era of big systems” is basically over. Things like disk space, bandwidth, and computing power are basically shifting from being assets to being commodities.

There’s also a shift in expectations. People both inside and outside government – especially Gen-X and Gen-Y – are incredibly frustrated by being able to use lightning-fast apps like Flickr, YouTube, and Facebook that don’t even live on their hard drives while the government and other large organizations still operate clunky PCs, space-limited e-mail accounts, and sluggish e-mail servers.

So aside from the opportunity for transformative leadership, the idea of web 2.0 at a government level is very appealing in terms of getting the most out of the IT infrastructure we already have, rather than embarking on costly, large-scale projects in an era of diminishing budgets.

ScienceLogic: How do you build a sense of community at the Collaboration Project?

Dan Munz: Some community feel emerges naturally, from a sense that mass collaboration really is a tool for “doing government” in a whole new way.

The more formal community building mechanisms we have include our web page, where we share insights, news, case studies, and other content – The virtual space serves as an anchor for people, whether they’re experts or beginners, to learn about what we do.

Finally, we are conducting an ongoing series of in-person meetings, usually featuring a leader who has harnessed collaborative technology in what we think is a truly revolutionary new way.

ScienceLogic: How do you hear about cool new government Web 2.0 projects?

Dan Munz: That’s a key question, because part of our mission is to inspire action by finding leaders who have succeeded and highlight their accomplishments. We’ve done that with folks like Kip Hawley, TSA, Molly O’Neill, EPA, and Jim Walker, Alabama DHS.

We also feel that the Academy’s position as a “safe space” for leaders means that we’re a place people can turn to when they hear about an emerging trend or project and want some help making sense of it.

ScienceLogic: What are the most innovative uses of Web 2.0 technology you’ve seen in the government?

Dan Munz: It’s important to distinguish between agencies that are simply adjusting to the reality of web 2.0, and those that are “using” it. Getting a YouTube account for your agency, or putting some photos on Flickr, is a great first step, but we want to inspire leaders to really transform their normal ways of doing business. At the moment a few that come to mind are the EPA Puget Sound Mashup, ODNI’s Intellipedia, TSA IdeaFactory, the PTO Peer-to-Patent Project, and Virtual Alabama, to name a few.

The TSA launched the IdeaFactory in February 2008. TSA set up a collaboration platform with commenting, voting, etc. to form communities in a way to bring people to consensus and offer ways to improve the agency’s performance.

ScienceLogic: Do you see a difference between state and local versus federal adoption of Web 2.0?

Dan Munz: That’s a hard generalization to make – at all levels you see leaders who recognize the potential in this technology to bring new voices into the governance process.

ScienceLogic: What are the obstacles to Web 2.0 adoption by government agencies?

Dan Munz: The three main challenges that we see are in the areas of technology, culture, and policy/governance.

The technology issue is probably the simplest to solve – it’s important to choose a technology that fits the problem you’re trying to solve, but these technologies are usually inexpensive and almost never very complex.

The question of culture is harder, particularly given the way that baby boomers, gen-xers, and millenials are beginning to interact in the workforce. How do you gain acceptance and buy-in among groups that have very different comfort levels with collaborative tools and environments?

Finally, the most daunting challenge might be the questions of policy and governance, if only because those are the things that most commonly prevent leaders from even dipping a toe in the waters of collaboration. Most of the policies, regulations, and statutes governing the way government does business don’t anticipate things like wikis, blogs, or instant messaging. One of our most important missions is helping leaders who just want to get to action navigate these obstacles.

ScienceLogic: Is there any advice you can give to government employees getting started with Web 2.0? Or any places you would point them to for more info?

Dan Munz: It’s shameless plug time! I’d of course point them to our web page, collaborationproject.org, where, among other things, we’ve collected a case library of over 40 instances of collaborative technology being used in the government and non-profit sectors. The library is growing every day and is a sort of “database of record” for what is and isn’t working in terms of collaborative government. I think that would be a great place to start for anyone looking to get started but not really knowing the way.

In terms of advice, the best thing to say is that, once you’ve settled on a problem you want to solve and an audience you want to reach out to, just do it! We believe strongly that there are a lot of organizational and leadership issues that still need to be addressed regarding collaboration in government, but our biggest mantra is about getting leaders to action. The most successful projects we’ve seen are ones that try something daring and new, and discover the true power of what they’ve done as it catches on more and more widely.

ShareThis

Homer Simpson and the Kimya Botnet

Fri, 11 Jul 2008 13:46:17 +0000

Television often relies on fake codes, phone-numbers and addresses to make up part of their fictional worlds. Sometimes, it can go slightly wrong - how many people tried to call Doctor Who last week?

D'oh.

Actually, "D'oh" is rather appropriate here. In an old episode of The Simpsons, it was revealed that Chunkylover53@aol.com was Homers Email address. Of course, every Simpsons fan with net access immediately added Chunkylover53 to their AIM contact list. As this article points out....

Homer's e-mail address chunkylover53@aol.com, as seen on EABF03, was registered by writer-producer Matt Selman, who also replied to e-mails from fans testing it. "He logged in the night that the episode aired and it was immediately filled with the maximum number of responses. He's tried to answer every one of them and then as soon as he answers a hundred, a hundred more pop in," Al Jean told the New York Post in January 2003.

The "Chunkylover53" AIM screen-name hasn't logged in for quite some time, apparently. Imagine the puzzled expressions worn by Simpsons fans when, all of a sudden, the account came back to life in the last few days with this in their "Away" message....

...yes, "Homer" has seemingly returned, and he comes bearing infection files!

Of course, the "exclusive Simpsons episode" is nothing of the kind - what you actually download is a file about 150kb in size, and it looks like this:

Run the file, and you won't see a new Simpsons episode - you're actually more likely to see this:

....a strange error message that mentions "photos" (probably fake), followed by lots of real error messages as most of your desktop fails, leaving you with an entirely blank screen:

Click to Enlarge (if you really must!)

From this point onwards, the PC will likely need a reboot and will be sluggish until cleaned up, constantly throwing out error messages, crashing when attempting to open Windows Explorer etc.

Now, given that the infection links are being passed around via IM Away messages, there was always going to be the possibility of an Instant Messaging worm attack. However, a lot of testing has taken place and so far, we haven't seen any malicious messages or URLs sent via AIM or MSN Messenger.

That's no reason to get complacent though, because what we have seen taking place is possibly quite a bit worse. First of all, a number of hidden files are dropped onto the PC, including Rootkit technology (which the bad guys have helpfully pointed out in the code):

Worse, your PC is deposited into a Botnet of Turkish origin - here's the giveaway traffic stream via an Ethereal log:

....awaiting further instructions from the Botnet C&C center. This particular Botnet has been around since March of this year. The Turkish connection is interesting, because I haven't seen too many Turkish Botnets - and there's been quite a surge in hacking activity from Turkey recently (most notably the DNS attacks on Photobucket and ICAAN by NeTDevilz).

Finally, the infection drops a number of other files onto the PC besides the Rootkit, which are seemingly related to a new variant of this Chinese infection.

It's worth noting that there may only be Instant Messaging infection links sent out if the person running the Botnet Command Center decides to issue all the drones with such a command - so while we haven't seen any IM infection activity, it would be wise not to rule it out completely. We recommend infected users keep an eye on all Instant Messaging activity until they can clean the infection from their computer, just in case.

Whoever is responsible for these messages has changed them a couple of times already - last night, the download link had been updated to look like this:

...and it currently advertises a link for a dating website:

We've reported all links related to this attack, and at least two of the files claiming to be "exclusive Simpsons episodes" are currently offline, though there's bound to be more out there. For now, this is a good reminder to be cautious when randomly adding cool things seen on TV and film to your online applications - you can't always assume the person at the other end is entirely in control.

We detect this as Kimya.

Additional Research: Chris Mannon, FSL Senior Threat Researcher
Deepak Setty, FSL Senior Threat Research Engineer

Can you hear me now?

Sat, 05 Jan 2008 22:22:00 +0000

I was listening to WTOP drivetime on Thursday during the usual evening rush hour traffic when an intresting topic caught my ear. They were talking about a recent study conducted by the University of Utah.

It seems that there is a direct connection between slow and sluggish traffic and people using their cell phones when driving. According to the researchers, when people are on their cell phones in their vehicles, they drive more slowly and are less likely to change lanes eventhough it would help them to move along faster.
This has a knock-on affect on all traffic and slows down the pace of traffic.

This is just one more reason for banning cell phone use while driving. I say this as someone who constantly uses their phone while driving. As long as the law allows it, we will do it. Of course there are those who will break the law once it is enacted, but it will definitley cut down on the ritual.

How many times have you been behind someone who is driving dangerously slow and who appears to be in a world of their own, only to find out once you pass them that they were oblivious of the other traffic due to talking on their phone? Even those who argue against the law, saying that it is a violation of our rights, must admit to seeing careless driving from time to time by people on cell phones.

Think about it, there must be a good reason why many other States and many other countries have already banned the practice.

On Vacation

Thu, 27 Dec 2007 07:15:00 +0000

Just a note: I won't be blogging until Jan 3rd since I am on vacation catching some snow. Response to blog comments will also be somewhat sluggish.

So, see you in 2008! Happy New Year!

Hunting Down Spyware and Adware

Wed, 01 Aug 2007 15:28:00 +0000

Hunting Down Spyware and Adware

Most of us hate spyware and adware. Unless you're a web developer which has a couple of spyware and adware programs tied to your credentials, chances are you belong to the majority of web browsers who seek the assistance of anti-spyware removal programs to kill spyware and adware infections in their computers.

There are a number of ways to kill or remove spyware infections. Most of them involve easy enough steps. However, there are times when the computer has been too infected by a multitude of spyware programs that the only solution that remains is to format the hard drive of the computer. To start anew is sometimes the only way to free your computers from such infections.

Nevertheless, there are a lot of anti-spyware and anti-virus programs out in the market that are able to identify and remove, delete or quarantine spyware utilities and their infected files efficiently. Anti-spyware and anti-virus creators are working overtime to keep up with the development of spyware and adware programs. They need to release versions of their anti-spyware utilities as quickly as possible or they will be overrun by spyware's development.

The best way, of course, to rid your computer of these problematic and irritating spyware is to prevent them from entering your system in the first place. An ounce of prevention is better than a pound of cure, as they say. You need to be cautious on the websites that you browse. Do understand that most of the spyware programs attach themselves to various advertisements that contain adult contents. The various porn sites in the internet are a cesspool of spyware, adware, malware and viruses.

If you noticed unrelated pop-up ads that regularly appear as you browse the web, this is a sign that your computer is already infected by spyware programs. You should also remember that when you find a spyware software installed in your computer, it is never alone. If you find one, then your computer is most likely a host to several spyware and adware programs. Each of this spyware and adware may even install their own sets of components which can be found in different locations of your computer system.

It is quite fortunate that a number of anti-spyware scanning and removal tools available area able to locate and remove the main spyware application as well as all its embedded components. One other symptom that shows your computer has been a victim to spyware and adware infections is a sluggish system.

When it takes your computer like forever to load an application or even go to the Windows desktop, there's a big likelihood that spyware and adware has found their way in your operating systems and are hindering the normal speed of your applications.

But why do spyware exist? Basically, spyware applications are very good marketing tool. They enable advertisers to target specific audiences for their campaigns. The pop-up ads when viewed from an objective view point serve audiences or consumers by providing related links to similar websites and services. But because spyware applications have been used extensively, have been abused and have been used for unscrupulous activities, they have become more of an annoyance overshadowing their potential legitimate benefits.

Among the anti-spyware scanners and cleaners available, SpyBot and Ad-aware are two of the most popular programs. These two are among the best spyware and adware killers in the industry.

Removing Spyware and Adware Effectively

Wed, 01 Aug 2007 15:27:00 +0000

Removing Spyware and Adware Effectively

If you want to remove spyware and adware programs from your PC, you might need a good removal software tool to do it for you. Spyware and adware has become more and more sophisticated as more and more malicious programmers try to devise of ways for people to get rid of their malicious computer codes.

Spyware and adware programs are such a nuisance when you use a computer that has been infected by them. Some of these malicious programs will attach into your computer and bombard it with pop-up ads that you cannot seem to get rid of easily.

There are some adware programs that are really legitimate advertisements that won't be such a bother to you. But the proliferation of extreme forms of pop-up ads has given such programs a bad name. Instead of a good way of promoting a product or service on the internet, adware programs have been seen as a hassle that every computer users have begun to dread.

And then there are spywares. These malicious programs try to get in to your PC and work secretly from among the many programs you are running. They are called spyware because they try to hide behind the cover of other seemingly legitimate computer programs in order to get inside your computer.

Once they are downloaded, they can begin doing their malicious work. Some spyware programs try to spy on your surfing habits or on how you use your computer. It monitors the websites that you visit as well as the programs that you frequently use. This type of spyware compiles the data and then sends it to the spyware author.

Then there are other spyware programs that can do a scarier job. There are types of spyware programs that actually try to record your very keystrokes. This in turn will let the spyware author know and discover your own passwords, email addresses, credit card information as well as other sensitive information that you would otherwise like to keep to yourself.

There are also other spyware programs that are capable of scanning your hard drive and can be sophisticated enough to download other programs into your computer. These types of spyware can even prevent you from using other computer programs and try to force you to use instead a certain program that they might be promoting or selling.

There are many signs to know that your PC may be infected by spyware. Although they may run secretly, you may be able to notice them if you try to look closely. Have you noticed any changes lately on your web browser? Do you see any extra toolbars? Did your homepage settings surprisingly change without you knowing it?

If you notice these things, chances are, your PC may already have spyware in it. Do you suddenly get pop-up ads that are not related to the website that you are currently browsing? Is your PC getting a bit sluggish even though you have tried everything to make it go faster? These and many other things are tell-tale signs of a spyware infection.

There is a wide range of anti-spyware programs now available on the market that may help you get rid of these nuisance programs. These programs work by trying to identify spyware programs inside your hard drive and remove them or put them into quarantine. Such spyware removal tools usually have a database of known spyware and adware programs that gets updated to make sure that your PC is always protected from newer and more recent spyware threats.