November 02, 2007
Leopard OS X 10.5 upgrade turns off firewall
According to several security websites, upgrading to Apple's newest operating system, Leopard OS X 10.5, shuts off some basic security controls. Namely, it appears that upon installation, the default firewall rule in Leopard is "Accept all incoming connections".
This setting is highly risk since it exposes the computer to a possible network-based attack. It is recommended that the firewall rules are reviewed on all Macintoshes with Leopard installed. The firewall should be set to a more restrictive setting such as "Block all incoming connections" or "Only allow connections to these applications / services"
To do so in Leopard, go to System Preferences > Security > Firewall, change the setting to either of the aforementioned, and then save all changes.
Posted by cp493 at 01:15 PM
October 25, 2006
Firefox 2.0 released
The Mozilla group has released the latest version of FireFox, updating it to version 2.0. This latest version of the popular web browser touts updated security features amongst other improvements.
One of the newest updates in this iteration of the popular web browser is the "Phishing Filter" feature. This component will protect web surfers by blocking malicious phishing websites from displaying any content. Phishing is defined as:
"A form of Internet fraud that aims to steal valuable information such as credit cards, social security numbers, user IDs and passwords."
FireFox 2.0 will also add protection from spyware installations. Such applications will not install by default, and users will be clearly prompted for such types of installations.
You can download FireFox 2.0 here: GetFireFox.com
Posted by cp493 at 11:36 AM
September 29, 2006
Another Windows critical vulnerability being exploited - ( 09/29/06 )
Following a report on 09/28 about a PowerPoint vulnerability that is being actively exploited, MS issued another advisory warning Windows users, including Windows XP SP1 & SP2, to avoid visiting any un-trusted websites or clicking on unknown links due to a known vulnerability in Internet Explorer.
This vulnerability is deemed "highly critical" by many network security groups. If attacked, the attacker can gain the same rights as the local account on the infected computer, and may put that computer's information at risk.
If possible, avoid using Internet Explore and switch to another web browser. As always, avoid clicking on any file or link from an unknown, un-trusted source. If you receive a link in an "instant message", make sure to reply back to the sender to verify that this was done intentionally.
Posted by cp493 at 03:30 PM
September 28, 2006
New PowerPoint attack available - ( 09/28/09 )
A new PowerPoint vulnerability has recently been discovered that affects all versions of PowerPoint, including the Macintosh versions of PowerPoint 2004 and v. X.
A maliciously crafted PowerPoint file with this vulnerability can execute arbitrary code and gain control of the user's account. In Windows, this may cause your computer to be left exposed to trojan backdoors infections.
There is no patch for this attack at this time. Microsoft will address this update during the next Microsoft update to be issued on October 10th.
In the meantime, users are being told to avoid opening unknown or un-trusted PowerPoint files to mitigate the risk of an infection.
Posted by cp493 at 05:45 PM
September 20, 2006
Phishing Scam: "Follow up - New Update to fix Windows File Errors" email not legitimate
We have received reports about a new type of email phishing scam that attempts to convince the recipient that to download a Diagnostics test tool to "repair Windows registry" problems.
What makes this a phishing scam is that it does not originate from an NYU email address, the links do not redirect the user to any NYU page, and it refers to a previous "notification" that was supposedly sent one-week prior.
Do not click on any link within the body of the message. This may compromise your computer and put your information at risk. If you do receive this message, please forward it directly to is.spam@nyu.edu.
A portion of the phishing scam can be found below:
File Error Notification Follow-up:
We contacted you last week, and we noticed that you hadn't run the diagnostics test to check for any potentially harmful file errors located in your registry.
Press below to launch the Diagnostics Test download:
Press HERE to begin: [ link to malicious website goes here ]
Please read carefully to learn how to locate these potentially harmful file errors locate on your PC, and how to fix them.
Posted by cp493 at 05:49 PM
September 15, 2006
Getting rid of your Smartphone or PDA? Make sure to erase it first
During a recent survey of smartphones and PDA's being sold on eBay, a security software company called 'Trusted Digital', found that a large majority of these devices still contained personal information from their previous owners.
In certain cases, the data on the device was completely "as-is" and appeared to not have been erased at all. In other cases, the data was 'reset' but not fully erased, allowing someone with enough basic technical skills to retrieve the original proprietor's information. Data on these device included banking information, credit card numbers, and even highly confidential investor and corporate data.
Many of these devices offer whas is termed "hard reset" options. The Treo 650 and the Blackberry, both supported at NYU, have these features built into each device. Moreover, many smartphones and PDA, including the Treo 650 & Blackberry, have password protection capabilities, affording for added security in age of mobile digital data.
Learn more about securing your mobile device by reading ITS's online documentation here:
Posted by cp493 at 12:18 PM
September 12, 2006
"Big Brother" backlash succeeds against Facebook.com
On September 7th, Facebook.com introduced "News Feeds" to its bevy of online features allowing for users to be more integrated within its online social network of more than 9.5 million users. Unfortunately, the effect was quite the opposite, with many of its users rallying to have the "Big Brother" tool removed, given the lack of any privacy controls to disable or modify it.
Why the concern ? "News Feeds" allowed users to monitor, track, and watch the online 'movements' and communications of other users within the designated social network. Many users felt that their privacy was being broadcast to the world and that the feature was more of an intrusion than a supplement to their social networking habits. Following an online petition signed by more than 700,000 Facebook users, the company quickly provided the much-need privacy controls to disable or modify the "News Feed" tool.
Noting the privacy concern facing many of its users, Facebook apologized for the lack of controls for the new tool and quickly moved to allow for such modifications as early as September 8. Facebook, which has long prided itself in augmenting its catalogue of privacy and security features to protect the identities of its users, were remorseful for introducing an option that was massively applied to its community without affording an option to opt out of it.
As result of the company’s quick action, the online movement rescinded their plans for a protest to be held outside of the Facebook headquarters. In fact, one of the leaders of the online petitions was reported as suggesting that the group demonstrate in support of the company’s speed at resolving the matter.
Posted by cp493 at 11:46 AM