http://exclamake.com/blog security == control Wed, 13 Feb 2008 15:38:23 +0000 http://backend.userland.com/rss092 en AT&T continues it's dominance in the connectivity department with this news. AT&T has supplanted T-Mobile as the WiFi provider for the 12,000+ Starbucks stores in the US. If you are an existing AT&T DSL customer, you simply use your AT&T username/login to connect. Glenn Fleishman's excellent commentary ... http://exclamake.com/blog/2008/02/13/att-customers-enjoy-starbucks-wifi/ I suppose there's two ways for a spammer to evolve their craft.  1) Create a better piece of malware (package) 2) Create a better invitation. Although the packages have progressively been getting better, I've been of the opinion that the invitations have not improved at the same pace. However, I did receive ... http://exclamake.com/blog/2006/12/20/more-intelligent-spammers/ I'm disappointed in Microsoft here. Beginning last week (September 5th) I've been trying to order a Small Business Server (SBS) Standard license but am unable. It seems that Microsoft has introduced R2 (again) but does not have the media kits available. In addition to that, they've discontinued SBS Standard 2003 ... http://exclamake.com/blog/2006/09/12/microsoft-sbs-r2-and-r1-still-not-available/ I became aware of bump keys during media coverage of the HOPE conference in NYC. To those unfamiliar with the term, it's a technique that allows an individual to open the majority of mechanical locks (one estimate is 90%) by using a special key and tapping or bumping it. ... http://exclamake.com/blog/2006/08/17/bump-keys-and-how-they-illustrate-common-security-principles/ Microsoft has released a statistical report on the results of the Malicious Software Removal Tool. The MSRT was released in January 2005 and has had mostly monthly updates since then. If you use Windows Update, Microsoft Update, or Automatic Updates, you most likely have this tool running on ... http://exclamake.com/blog/2006/06/13/windows-malicious-removal-tool-statistics/ I receved the following spam this morning: X-Gmail-Received: 578cab460a32ed1cfe13cfa928001cd18b82b1c4 Delivered-To: e.smythe@gmail.com Received: by 10.64.142.6 with SMTP id p6cs151534qbd; Tue, 6 Jun 2006 05:48:51 -0700 (PDT) Received: by 10.48.233.5 with SMTP id f5mr5313000nfh; Tue, 06 Jun 2006 05:48:51 -0700 (PDT) Return-Path: Received: from barhatova.org ([193.27.215.43]) by mx.gmail.com with SMTP id v20si6495368nfc.2006.06.06.05.48.50; Tue, 06 Jun 2006 05:48:51 -0700 (PDT) Received-SPF: neutral (gmail.com: 193.27.215.43 ... http://exclamake.com/blog/2006/06/06/new-spam-set-with-strange-characteristics/ Got back from vacation this morning to discover a fresh vulnerability for Symantec Antivirus.  This particular vulnerability allows for remote code execution, not good. This is an interesting trend as several antivirus products have created they're own share of problems.  There was the bad McAfee virus definition that deleted Microsoft Office ... http://exclamake.com/blog/2006/05/30/your-security-software-might-be-your-security-problem/ SANS is reporting a targeted attack to a particular company.  This attack begins with email from a domain that closely resembles the company's own domain, so that it appears as an internal email.  The attached Word file uses an undisclosed exploit to extract and execute a Trojan.  Another interesting bit ... http://exclamake.com/blog/2006/05/19/very-inventive-targeted-attack-through-word-attachment/ We just completed our second network security seminar in San Luis Obispo, Recovering From a Network Break-In: How Loyal Would Your Clients Be? The seminar was well-attended and very well received. Attendees gained knowledge in how security threats are increasing through exploits and vulnerabilities and specific examples were ... http://exclamake.com/blog/2006/05/17/business-managers-are-interested-in-security/ Larry Seltzer of eWeek weighs in on UTM (Unified Threat Management) for the small business. In the meantime, the reasons to buy one are still compelling: networkwide protection, a second source of protection besides your desktop vendor, access to extra features like content filtering, and easier management. http://exclamake.com/blog/2006/05/04/unified-threat-management-the-secure-smbs-friend/