• Categories

  • Browsers
  • Business Software
  • Communications
  • Desktop Enhancements
  • Developer Tools
  • Digital Photo Software
  • Downloads
  • Drivers
  • Educational Software
  • Games
  • Graphic Design Software
  • Home Software
  • Internet Software
  • iTunes and iPod Software
  • Linux
  • MP3 Audio Software
  • Networking Software
  • Productivity Software
  • Screensavers and Wallpaper
  • Security Software
  • Software News
  • Utilities and Operating Systems
  • Video Software

• Archives

  • March 2010
  • February 2010
  • January 2010
  • December 2009
  • November 2009
  • October 2009
  • September 2009
  • August 2009
  • July 2009
  • June 2009
  • May 2009
  • April 2009
  • March 2009
  • February 2009

• Links

  • Gadget Mania
  • Gadget Reviews
  • USB World
  

• Meta

  • Log in
  • WordPress
  • XHTML

Panda Security reports over 13 Million users affected by Mariposa Botnet

India, Mexico, Brazil and Korea Hardest Hit by Massive Attack

Following the worldwide shutdown of the Mariposa botnet last week, Panda Security reported today that the massive botnet had infected 13 million computers in 190 countries and 31,901 cities. The take down was the result of a collaborative operation spearheaded by Panda Security, Defence Intelligence, the FBI and Spanish Guardia Civil, resulting in three arrests.

According to Luis Corrons, Technical Director of PandaLabs, “The highest infection ratios are found in countries where computer security education is not a priority. However, in countries where cyber security awareness campaigns have been prioritized over the last few years, like the United States, Germany, UK and Japan, the number of infections was significantly lower.”

The cities most affected by Mariposa were Seoul (5.36 percent of compromised IP addresses), Bombay (4.45 percent) and New Delhi (4.27 percent). The top 10 infected cities are as follows:

1 Seoul 5.36%
2 Bombay 4.45%
3 New Delhi 4.27%
4 Mexico City 3.89%
5 Bogota 2.68%
6 Lima 1.98%
7 Kiev 1.68%
8 Bangalore 1.39%
9 Islamabad 1.24%
10 Tehran 1.23%

When looking at the infection rate by country, India leads the ranking (19.14 percent of all infections), followed by Mexico (with 12.85 percent) and Brazil (7.74 percent). The U.S. ranked 20th out of the 190 countries where computers were infected (with 1.05 percent).

The top 10 infected countries are as follows:

Country %
1 INDIA 19.14
2 MEXICO 12,85
3 BRAZIL 7.74
4 KOREA 7.24
5 COLOMBIA 4.94
6 RUSSIA 3.14
7 EGYPT 2.99
8 MALAYSIA 2.86
9 UKRAINE 2.69
10 PAKISTAN 2.55

An image of the above Mariposa infection breakdown by country can be found at http://www.flickr.com/photos/panda_security/4419015337/.

“The coordinated effort of all Mariposa Working Group members led to the worldwide shutdown of the Mariposa botnet on December 23 at 11:00 am ET. On that date, we seized control of the communication channels used by Mariposa, effectively severing the botnet from its criminal creators and redirecting all requests to a server controlled by us. At that time we realized the huge number of IP addresses controlled by the bot, almost 13 million, and determined the astonishing number of affected countries and cities. The compromised IP addresses include personal, government and corporate computers,” explains Corrons.

An image of the global infection map can be found here: http://www.flickr.com/photos/panda_security/4419780176/.

The Georgia Institute of Technology has plotted the progress of the Mariposa Botnet in an animation available at http://fritz.cc.gt.atl.ga.us/mariposa/mariposa_major_victim_areas.avi. According to David Dagon, Ph.D. Candidate at the Georgia Institute of Technology, “I think a remarkable aspect of this botnet is that it reverses the normal expectations about infections. Usually, the press tells us that ‘eastern’ botmasters are attacking ‘western’ victims. In Mariposa’s case, we tend to see the opposite: some botmasters in the west, and victims in the east. The lesson learned is that we all face a common threat.”

Panda Security recommends that all users – home users and companies alike – perform an in-depth scan of their computers to make sure they are not infected by the Mariposa bot. Individuals and businesses can do so by using the company’s free online scanner Panda ActiveScan or downloading its free cloud-based antivirus service Panda Cloud Antivirus from www.cloudantivirus.com.

SonicWALL identifies growing threat of cybercriminals attacking new searches

Over 284 Top Search Terms attacked over the last 7 days with 6600 Malicious URLS; Threat team outlines tips to protect against searching threats

SonicWALL announced it identified that cybercriminals are continuing to attack Google’s top search items. In the last 7 days, more than 284 top search terms have been attacked by more than 6600 malicious URLS. The threat team has found up to nine of the top 20 search terms are under attack at any one time. To help individuals defend against these types of threats, SonicWALL’s threat research team has identified certain search terms that have returned the greatest number of malicious sites and has developed several tips for combing through search terms.

“Cybercriminals use whatever is at their disposal to spread malware. In this instance they are launching attacks against Google’s top search terms that identify the most popular stories of the day,” said Deepen Desai, Lead Malware Researcher, SonicWALL. “These criminals are now going after these top search terms using their knowledge to insert malware infected websites almost immediately after people show interest in a particular news site.”

Using social engineering tactics, cybercriminals are able to jump onto the latest news events ranking high on Hot Search to draw more traffic to their infected websites. Search Engine Optimization (SEO) tactics are then used to make the websites show up higher in the search results, thus making it more likely that individuals will click on them.

The counter offensive to remove these threats is on-going. However, some sites have remained within search results for a number of hours before being removed. Recent and topical infected searches include:

• A search on “elinor burkett” within a 24 hour period between March 8th and 9th presented 40 unique malicious URLs appearing in Google search’s top 30 results.
• A search on “the new tenants” on March 8th presented 56 unique malicious URLs appearing in Google search’s top 30 results.

SonicWALL suggests you remember the following tips when searching for a news event:

• Be diligent when clicking on the links that show up in search engine results. Be sure to look at the URL before you click on it. Quite often the legitimate sites show up with complete readable sentences in their description whereas the malicious sites show up with jumbled keywords.
• If you do click on a malicious website, quickly get out of it. Most of the malware found redirect to fake antivirus websites that pretend to discover malware on a computer and offers to sell antivirus software that will clean it up.
• Make sure that your antivirus is up to date. Use defense-in-depth by layering protection, having antivirus both on the gateway and the client.
• Steer clear of any kind of video codecs or protection software executables downloads prompted by most of these sites.
• Do not execute any files that come through e-mail attachments.

For more information and to track the latest network and e-mail security threats, go to: http://www.sonicwall.com/securitycenter.asp?tab=NS

Introducing the Fraud Prevention Suite to combat fraud in international eCommerce

Wirecard AG Presents a Further Development in the Field of Risk Management

Munich-based Wirecard AG introduces the Fraud Prevention Suite, a further development within the scope of its risk management product line. By means of a refined analytics system, fraud patterns automatically identified in the field of electronic online payments processing are now directly included in bodies of rules to combat fraud in international eCommerce.

The Fraud Prevention Suite provides merchants with optimum fraud detection facilities, combined with a simultaneous minimization of the number of transactions erroneously categorized as being suspected of fraud. This is because portfolio data is used to optimize sets of rules by means of integrated simulation functions to assess the relationship between identified cases of fraud to rejected, regular transactions.

Not only are merchants operating with an international reach exposed to fraud attempts more frequently; they also have to contend with a larger variety of fraud patterns than merchants trading within a single country. Particularly as far as credit card processing on a global scale is concerned, the challenge is to be able to identify fraud better and faster and to take preventive steps to counteract fraud.

“Online fraud is becoming increasingly sophisticated internationally,” says Heiner Kallweit, Head of Product Line Risk & Fraud Prevention at Wirecard AG. “On the basis of our many years’ experience, in combination with new software developed we have created a solution which, based on extensive possibilities of analyzing inventory data, identifies online fraud before damage or loss can occur,” adding: “In this context, the behavior patterns differ completely from one industry segment to another, making it necessary for industry-specific parameters of relevance relating to fraud to be included in fraud detection as such. In the case of airlines, for instance, these are the route, method of payment, flight class or advance booking periods. The system even identifies complex patterns to distinguish genuine transactions from fraudulent ones.”

Wirecard AG has adjusted its new Fraud Prevention Suite solution to the requirements of the core industries of eCommerce: consumer goods, airlines/tourism and digital goods.

The range on offer from technology services provider Wirecard comprises individually tailored, industry- and customer-specific payment and risk management systems, ranging from special BSP solutions for airlines, tele-shopping and Internet trading all the way through to PoS terminal solutions in the stationary segment. The services of the online-oriented Wirecard Bank complement and extend the array of products and services for business customers to include credit card acceptance agreements (acquiring), banking services and innovative prepaid card products.

Tableau launches free software to make data social

New product helps blogs and web sites start conversations with interactive visual data

Tableau Software launched a new product that brings public data to life on the web. Tableau Public, available for free, lets anyone who posts content to the web easily create interactive visualizations and publish them to blogs, web sites, Twitter feeds or anywhere online. Instead of viewing static charts or tables, Tableau Public lets people answer questions and share data interactively on the web.

“Imagine if online data was as fun and accessible as online video,” said Christian Chabot, Tableau’s CEO and co-founder. “We created this product because we want to make data a first class citizen on the web. We want to change the way people interact with data online by letting them tell stories with flexibility and beauty.”

Current alternatives for sharing data online are clumsy. Typically, data is pasted into tables and lists, or posted as files or catalogs that are difficult to use. Available at TableauPublic.com, Tableau Public is helping to solve this challenge – bringing data to life on the web for ordinary people. With its interactive visualizations and dashboards, Tableau Public helps people start conversations based on data that is useful, beautiful and shareable. No special plug-ins are required, all that’s needed to see and use the data is a web browser.

From bloggers and journalists to researchers and students, Tableau is already being used as a tool to create conversations with data. For example, Timothy Ellis at SeattleBubble.com, a community blog focused on the local housing market, is using Tableau to increase the depth of conversations about the changing real estate market.

Robert Kosara, Assistant Professor of Computer Science at the University of North Carolina, recently used Tableau Public to compare temperature data collected from 343 weather stations over twenty years, or 77,172 observations. He was able to show warming trends clearly and posted a blog about global warming. “I was impressed how Tableau helped me create a more analytical visualization that was easy to share on the web. It’s an amazing product, and I regularly use Tableau for my Visual Analytics class,” said Professor Kosara.

Tableau Version 5.1

In conjunction with the general availability of Tableau Public, the company is also releasing today Version 5.1 of its Tableau Desktop and Tableau Server product suite. Version 5.1 provides more analytic richness, better publishing, and increased scalability and performance. Analytical features include reference bands that provide context to a user’s analysis, bullet charts to evaluate related data, and intelligent data labels to call out the most critical data. New publishing features include rich formatting, streamlined toolbar design, more filter options, and a flexible layout.

Source: www.tableaupublic.com

Solutionary identifies Top Security Risks and provides precautionary tips for Winter Olympic Games

Company encourages businesses, event advertisers, and corporate and individual attendees to remain vigilant and take information security precautions

Solutionary, has identified the top information and data security risks facing businesses, Olympic advertisers and attendees of the upcoming Winter Olympic Games in Vancouver from February 12th to 28th. In addition, the company has provided precautionary tips to help these people and organizations protect their data and assets.

Solutionary is a trusted security advisor to companies of all sizes around the world, processing more than 300 billion events annually through the company’s Security Operations Centers (SOC). Solutionary’s certified SOC analysts and technology offer 24/7 live and automated event monitoring to ensure the highest levels of protection.

“Hackers, spammers and scammers often take advantage of major events, like the Olympics, to steal confidential consumer and corporate data and information or to generally create chaos,” said Don Gray, Chief Security Strategist of Solutionary. “Since the 2008 Games, new and more malicious threats have surfaced and attacks are more prevalent, from the Google email hacks to Twitter and Facebook denial of service (DDOS) attacks. In the age of Web 2.0 and constant connectivity, it’s more important than ever for businesses and individuals alike to remain vigilant about information security – especially around an event of such international significance.”

Solutionary’s information and cyber security experts have identified the following as the top five information security risks around the Olympics:

Social Networks & Instant Messaging (IM) – In recent months, sites and services like Facebook, Twitter and MSN Messenger have been repeatedly targeted by hackers. Keep your guard up, even during the excitement of the Games. Who you are connecting to? How you are connecting to them? Are you sharing information that could be used for social engineering? Never share files thru IM services and connect only to branded, trusted information sources.

Masquerading Wireless Networks - Always know what network you are connecting to and avoid unsecured wireless networks. Only connect to networks associated with trusted brands/providers and be sure to verify names and credentials of the access points.

Malvertising – Website ads containing malicious exploit code may be hosted by unsuspecting websites in an attempt to maximize online ad revenue around the Games.

Hacktivism – Nationalistic pride can be a powerful motivator in driving hackers to initiate attacks. In the recent Google hacking incident there was evidence of retaliatory hacking affecting Baidu.com.

Whaling – Corporate executives and guests should be trained to recognize attempts to target them, their laptops, and phones for exploit. Promotional items can easily be faked. Emails, devices, CDs, and memory sticks can all convey malicious software.

Solutionary’s experts recommend Olympic attendees, advertisers and Vancouver-area businesses take the below security precautions, at a minimum, leading up to and during the Games:

Awareness – Make sure everyone in your network – whether it’s your kids or your employees – is aware of potential threats. If they are aware of heightened risk, they will be more vigilant and likely to flag suspicious activity or items.

Protect Endpoints - Attendees must protect mobile computers and phones as these devices often are targeted for the data they contain as well
as an exploit path for stealing account credentials, credit card information, etc.

If you can, leave them at home. Consider limiting yourself to one pocket-able device that’s easy to keep track of.

If you must have a laptop, ensure that it is up to date with the latest patches, anti-X (virus, spyware, malware) software.

Remove all non-essential data from laptop before traveling – especially if it’s confidential or sensitive.

If you must travel with sensitive or confidential data, employ strong whole disk encryption.

Check, Double-Check and Re-Check Security Processes – Local businesses and advertisers should review their information security countermeasures, validate that patches are up-to-date, that web applications are not vulnerable, and that wireless networks are secured using WPA/WPA2 authentication and TKIP/AES encryption.

Log Monitoring – Local businesses involved with the Games and advertisers must recognize that their participation brings about the possibility of increased motivated attackers targeting them for nationalistic or political reasons. Ensure security log monitoring is adequate to handle the increased threat level and volume.

Check ATM’s – Attendees and local financial institutions should be vigilant about checking for ATM pin-pad skimmers. Most pin-pad skimmers can be detected by careful examination and physical checking as they are often taped on top of the real card-entry mechanism on the ATM. If there is any doubt, find another ATM to be safe.

Microsoft study reveals small and midsize businesses using hosted services have better financial performance

Research suggests correlation between IT usage and business growth.

Microsoft released its global SMB IT and Hosted IT Index 2010,(1) which investigates how small and midsize businesses (SMBs) across multiple segments fared during the recession and how they use technology. The research finds that businesses that value IT as an enabler for better business productivity and effectiveness and those that use hosted services performed better fiscally than those that do not.

IT Critical to Revenue Growth

Despite the global recession, more SMBs surveyed in 2010 reported an increase in revenue than in 2008. Those that reported growth view IT as critical to their business success.

– In the past 12 months, 52 percent of SMBs reported an increase in revenue, up from 39 percent in 2008.(2)
– Increasing 20 points since 2008, 55 percent of SMBs view IT as critical to their business.
– Of the SMBs that view IT as critical, 60 percent saw revenues grow over the past 12 months. In contrast, among SMBs that stated IT is not important, less than 29 percent saw revenue increase.(3)

SMBs Moving Toward Cloud Computing

The 2010 index indicates SMBs are beginning to see the benefits of cloud computing; more than 40 percent of the respondents that use hosted or cloud technology reported revenue rises of 30 percent or more compared with 90 percent of respondents not using hosted technology that saw decreases in revenue. The advantages of hosted or cloud technology are viewed as reduced cost and IT management and maintenance, as well as increased business value, productivity and competitiveness.

– Awareness of hosted services is increasing with 65 percent of SMBs using hosted software to some extent, while 73 percent of the remainder have considered it, compared with only 44 percent in the 2008 Index.
– SMBs are beginning to understand the value of “renting” IT as a service — 36 percent said a pay-as-you-go model would be attractive.

Cloud computing has become a watchword for the IT industry as software and services such as e-mail, Web sites and e-commerce are increasingly available in an on-premises, off-premises or hybrid model depending on business need.

“Over the last five years, we have seen nearly 40 percent growth in usage of hosted services,” said Michael Korbacher, director of EMEA Software plus Services in the Communications Sector at Microsoft. “Using pay-as-you-go cloud technologies, small and midsize businesses can now afford and easily have access to enterprise-class, secure services across any platform.”

Correlating Business Performance With Technology Usage

The findings from the research were concluded by analyst firm Freeform Dynamics Ltd., which independently assessed the SMB IT and Hosted IT Index 2010 to ascertain to what degree IT adoption is driving revenue growth specifically within the SMB community.

The SMB IT and Hosted IT Index 2010 commissioned by Microsoft researched 3,193 SMBs in a cross section of private industries in 15 countries. Overall, the findings show greater awareness of the benefits of IT among SMBs and a high reliance on IT across all industries and geographies. The findings indicate a clear path toward better financial performance than for those not currently taking advantage of IT advances such as hosted services.

“Our assessment of the report tells us that an increased focus on IT correlates with good performance in all of the size categories surveyed,” said Dale Vile, research director of Freeform Dynamics. “This whole picture corroborates the notion that technology and hosted services can provide tangible business advantage, even for smaller companies, and it’s not surprising to see that investment in IT and hosting goes hand in hand with good financial performance.”

Role of IT Within Business and Revenue Change

It’s critical to our business; we cannot work without it.
– 14.38 percent – Revenue up more than 30 percent
– 34.01 percent – Revenue up 10 percent to 30 percent
– 11.56 percent – Revenue up less than 10 percent
– 25.49 percent – No change in revenue
– 14.55 percent – Decrease in revenue

It’s very important for the majority of our activities.
– 8.86 percent – Revenue up more than 30 percent
– 28.32 percent – Revenue up 10 percent to 30 percent
– 8.65 percent – Revenue up less than 10 percent
– 40.16 percent – No change in revenue
– 14.01 percent – Decrease in revenue

It’s important but not essential to the running of the business.
– 8.21 percent – Revenue up more than 30 percent
– 18.48 percent – Revenue up 10 percent to 30 percent
– 8.21 percent – Revenue up less than 10 percent
– 46.33 percent – No change in revenue
– 18.77 percent – Decrease in revenue

It complements our business but is by no means essential.
– 7.41 percent – Revenue up more than 30 percent
– 13.89 percent – Revenue up 10 percent to 30 percent
– 7.41 percent – Revenue up less than 10 percent
– 42.59 percent – No change in revenue
– 28.70 percent – Decrease in revenue

The IT Services Outlined in the Research Are as Follows

E-mail
– 67 percent SMBs have on site
– 29 percent SMBs have hosted
– 4 percent SMBs don’t have

File sharing/collaboration
– 56 percent SMBs have on site
– 23 percent SMBs have hosted
– 21 percent SMBs don’t have

Backup
– 71 percent SMBs have on site
– 22 percent SMBs have hosted
– 7 percent SMBs don’t have

CRM
– 52 percent SMBs have on site
– 31 percent SMBs have hosted
– 17 percent SMBs don’t have

Webconferencing
– 40 percent SMBs have on site
– 39 percent SMBs have hosted
– 21 percent SMBs don’t have

Web site
– 49 percent SMBs have on site
– 39 percent SMBs have hosted
– 12 percent SMBs don’t have

Server
– 59 percent SMBs have on site
– 28 percent SMBs have hosted
– 13 percent SMBs don’t have

E-commerce
– 46 percent SMBs have on site
– 33 percent SMBs have hosted
– 21 percent SMBs don’t have

The Microsoft Small Business Technology Index 2010 research report was executed by Vanson Bourne  between November 2009 and January 2010. The research questioned 3,193 small and midsize businesses (up to 500 employees) across 15 countries worldwide: Australia, China, France, Germany, India, Japan, the Netherlands, Norway, Poland, Singapore, South Africa, South Korea, Spain, the U.K. and the U.S.

(1) 3,193 SMBs surveyed in France, Germany, Netherlands, Norway, Poland, South Africa, Spain, U.K., U.S., Australia, China, India, Japan, South Korea and Singapore in a cross section of different industries. Microsoft Small Business Technology Index 2010 available on request.

(2) Microsoft Small Business Technology Index 2008. Available on request.

(3) Table showing correlation between the role of IT within businesses and revenue change

Source: Microsoft Corp.

Hacker attacks targeting healthcare organizations doubled in the 4th Quarter of 2009

SecureWorks®, Inc., a leading global provider of information security services protecting 2,700 clients worldwide, reported  that attempted hacker attacks launched at its healthcare clients doubled in the fourth quarter of 2009.

Attempted attacks increased from an average of 6,500 per healthcare client per day in the first nine months of 2009 to an average of 13,400 per client per day in the last three months of 2009. Attempted attacks against other types of organizations, protected by SecureWorks, did not increase in the fourth quarter.

“From October through December of 2009, we blocked hundreds of SQL Injection and Butterfly/Mariposa Bot malware attacks launched at our healthcare clients. These attempted attacks were responsible for the increase in our attack statistics,” said Hunter King, security researcher with SecureWorks’ Counter Threat Unit(SM) (CTU).

In the Fall of 2009, SecureWorks and the security community began tracking a new wave of attacks involving the latest version of the Butterfly/Mariposa Bot malware, according to King. If a computer is infected with the Butterfly malware, it can be used to steal data stored by the victim’s browser (including passwords), launch Distributed Denial of Service attacks, spread via USB devices or peer to peer, and download additional malware onto the infected computer.

SQL Injection attacks target vulnerabilities in organizations’ web applications. “We also saw a resurgence of SQL Injection attacks beginning in October,” continued King. “They were being launched at legitimate websites so as to spread the Gumblar Trojan. Although SQL Injection is a well known attack technique, we continue to read news reports where it has been used successfully by cyber criminals to steal sensitive data,” said King. One of the most recent cases reported involved American citizen Albert Gonzalez who was charged, along with two unnamed Russians, with the theft of 130 million credit card numbers using SQL Injection.

Factors Contributing to Healthcare Attacks
1. Valuable Data Stores – Healthcare organizations often store valuable data such as a patient’s Social Security number, insurance and/or financial account data, birth date, name, billing address, and phone, making them a desirable target to cyber criminals.
2. Large Attack Landscape – Because of the nature of their business, healthcare organizations have large attack surfaces. Healthcare entities have to provide access to many external networks and web applications so as to stay connected with their patients, employees, insurers and business partners. This increases their risk to cyber attacks.

“In order for healthcare organizations to effectively protect their sensitive patient data, they should consider employing a defense-in-depth strategy. This approach involves implementing multiple layers of protection to shield the organization from current and emerging threats,” said Jon Ramsey, CTO for SecureWorks.

SecureWorks has outlined a set of information security guidelines to assist the healthcare industry in protecting their patient data from cyber attacks and other data breaches. Adopting these security measures will also assist organizations in demonstrating their adherence to the HIPAA regulations and the requirements outlined in the new Health Information Technology for Economic and Clinical Health (HITECH) Act.

The HITECH Act has extended the HIPAA regulations to apply not only to healthcare providers, insurers and healthcare clearinghouses, but also to business associates that are handling personal information about patient health, as well as other protected information, including name, social security number, address and insurance account numbers. These associates must adhere to the Security Safeguards Rules outlined by HIPAA. The HITECH Act has also added a data-breach notification requirement and increased penalties for violation of the HIPAA rules.

SecureWorks’ Recommended Information Security Guidelines for the Healthcare Industry

Security Risk Assessments – Performing regular security risk assessments will give your organization a much better understanding of the actual risks posed to your Protected Health Information (PHI) and Personally Identifiable Information (PII). This process will also look at the controls you have in place compared with regulatory requirements, and help you determine if there are any gaps. It will also give you an opportunity to compare your security posture with others in the industry. Recommendations made as a part of this process can be integrated into your overall information security program, keeping your security safeguards current, as well as helping your organization show diligence and a commitment to compliance.
Intrusion Prevention and Detection Services (IPS/IDS) – The implementation of IDS and IPS enables you to detect and block attempts by cyber criminals to access data on your servers and your network. Proactive alerting mechanisms and monitoring services can notify you of attempted cyber attacks and allow you to respond in real-time as a component of your Information Security Program. It is much less costly, both from a monetary and reputational perspective, to prevent a cyber breach then to be faced with notifying affected individuals and the Department of Health and Human Services (HHS), as required by the HITECH Act.
Data Loss Prevention (DLP) - A DLP solution can help monitor your network traffic for possible leakage of PII such as social security numbers and PHI, such as Health Level 7 (HL7) codes (medical standards/procedures codes), etc.
Log Monitoring – Log Monitoring centralizes and correlates audit logs from your applications and systems to allow you to identify improper access to sensitive patient data from internal or external sources. Proactive monitoring or regular reviews of logs is a key step in ensuring that your patient data is secure, as well as in meeting the short time-window required by the HITECH Act for notification of a breach.
Web Application Security Testing and Web Application Firewalls – Web applications are becoming more common in healthcare environments. Due to their increasing role in the IT business environment and prevalence of security flaws, web applications are a frequent target of Internet hackers. Healthcare organizations and business associates should perform web application security testing regularly and when
significant changes are made to the web applications in order to protect against current security threats. Also, the implementation of a web application firewall can help protect against emerging attacks being launched from cyber criminals.
Encryption – Implementing strong encryption policies and technologies on mobile devices, laptops, portable storage and backup tapes is key to reducing your risks with regards to improper data disclosure.

SecureWorks currently protects 82 healthcare clients in the US. Attack statistics provided are from a 12-month study of 38 clients using SecureWorks’ Managed Intrusion Detection and Prevention service (IDS/IPS) at the edge of their network, giving SecureWorks visibility into all attempted network attacks while blocking them. In addition to healthcare organizations, SecureWorks protects banks, utilities, retailers, technology providers and government organizations. For more information on IT security solutions for healthcare organizations, please visit http://www.secureworks.com/compliance/industries/healthcare.

IBM delivers Enterprise Secure Mail for Android, iPhone, Nokia Symbian smartphones

General Motors Goes Mobile with IBM Lotus Collaboration

IBM announced a major expansion of IBM Lotus collaboration software and delivery of enterprise secure mail for Android, the iPhone and Nokia Symbian smartphones.

“We believe IBM has taken a leadership position in providing the broadest mail and collaboration support for mobile devices,” said Kevin Cavanaugh, vice president, messaging and collaboration, IBM.

General Motors (GM) is playing an innovative role in extending mobile collaboration into the automotive industry. Recently, GM’s Chevrolet and OnStar unveiled the auto industry’s first smartphone application that will allow Chevrolet Volt owners 24/7 connectivity and control of vehicle functions and OnStar features remotely. OnStar’s Mobile Application will allow drivers to communicate with their Volt from devices such as the Apple iPhone. It uses a real-time data connection to perform tasks like setting the charge time and unlocking the doors.

“As we reinvent GM, we’re giving our employees the same agility that we give our cars,” said Kirk Gutmann, chief strategy and technology officer of General Motors. “We’re building a workforce that’s mobile, connected and equipped for anything, anytime, anywhere. We have thousands of people on iPhone and BlackBerry® devices tying into their Lotus collaboration tools while in motion, increasing their productivity. The capabilities of Lotus Notes Traveler bring IBM’s enterprise-grade messaging to the iPhone, Symbian and later, Android-based phones, a big plus for those who want one device for their personal and business lives. Downloading the Lotus Notes Traveler Companion app from the Apple App Store is great news, as is getting IBM social software on the BlackBerry.”

As the collaboration leader, IBM is the first to announce plans to expand its enterprise mobile messaging offering in a future release of Lotus Notes Traveler. This will include mail, calendar and contacts support for versions 2.0 and 2.1 of Google’s Android mobile operating system.

Lotus Notes Traveler is no-charge software that can be downloaded by Lotus Notes customers and provides two-way, over-the-air synchronization of information between Lotus Domino data and mobile devices.

In addition, IBM’s new application for the iPhone is called IBM Lotus Notes Traveler Companion, a plug-in to view encrypted mail on the iPhone. Available now in the App Store, the Lotus Notes Traveler Companion download allows Lotus Notes users who synchronize their mail, calendar, contacts and Domino mail via Lotus Notes Traveler to view encrypted mail such as confidential business and personal data on the iPhone. The application requires Lotus Notes Traveler 8.5.1 software.

IBM’s partnership with Nokia has led to a broad spectrum of collaboration capabilities on Nokia’s smartphones including IBM Lotus Notes Traveler, IBM Lotus Mobile Connect, IBM Lotus Sametime and IBM WebSphere Portal, as well as XPages-based applications built with IBM Domino Designer developer software. IBM’s Lotus Connections software also works with Nokia Symbian smartphones, enabling users to collaborate with social networks, update information and access shared files while on the go.

A future version of Lotus Sametime software for the Nokia Symbian smartphone devices is planned to offer users presence awareness and Lotus Sametime Unified Telephony click-to-call capabilities in the native address book on the device. This new Lotus Sametime functionality on Nokia devices is planned for commercial availability by the end of this year.

The Lotus Notes Traveler software also supports Windows Mobile devices.

More than half of the largest global 100 corporations use IBM’s flagship collaboration offerings, Lotus Notes and Domino. These clients include the top aerospace and defense organizations; the top nine automotive firms; the top eight banks; the top four makers of consumer products; the top seven electronics firms; the top eight insurance companies; the top seven pharmaceutical organizations; and the top nine telecommunications carriers.

The Lotus Notes Traveler Companion application is available from the App Store on iPhone or at www.itunes.com/appstore/. For more information for Nokia visit www.nokia.com.

Safe Eyes 6 adds new protections for children online, including industry-first ratings-based Internet TV content filter

Major Upgrade to Leading Family Internet Manager

InternetSafety.comannounced Safe Eyes® 6, a major upgrade to its award-winning family Internet management software that includes an industry-first Internet TV content filter enabling parents to restrict children’s access to inappropriate online TV shows and movies based on standard TV and movie ratings. Parents will be able to block children’s access to explicit music lyrics, enforce tamper-proof safe search on major search engines, receive daily or weekly reports on children’s online activities by email, and use a new easy setup wizard to quickly tailor settings to each child.

These new features will enhance Safe Eyes’ established tools for safeguarding and managing children’s Internet usage. The software also automatically blocks objectionable websites in a choice of 35 categories as well as by user-defined URLs and/or keywords to shield children from undesirable online content; provides instant messaging controls, email blocking and social network monitoring to protect against risky online communications; and allows parents to schedule Internet usage in order to manage the time that their family spends online.

Safe Eyes 6 adds:
– Internet TV filtering on Hulu, iTunes and major TV network websites including ABC, NBC, CBS and Fox, based on the ratings level that parents deem appropriate for their children. Parents can set the software to limit content by user to TV-G and G-rated, TV-PG and PG-rated, TV-14 and PG-13-rated, or TV-MA and R-rated TV shows and movies. No other family Internet manager has these filtering capabilities.

– Blocking the viewing or purchase of songs with explicit lyrics on iTunes by selecting the appropriate setting on the setup page.

– Stronger protection against objectionable search results, with the ability to enable safe search features on popular sites such as Google, Yahoo, Bing and YouTube from Safe Eyes and thereby prevent children from disabling the safe search setting.

– Easy-to-understand daily or weekly activity reports sent by email, offering an at-a-glance overview of each user’s top search terms, most visited websites, blocked websites and programs, personal information posted online, and time-of-day Web usage patterns.

– Easy setup wizard giving parents the option to copy settings from one child to another, utilize InternetSafety.com’s suggested settings based on age, or customize user settings for each activity (websites, videos, music, instant messaging, games, social networking and email) from dropdown menus.

“There is a major disconnect in managing children’s media activities today. You can have parental controls on a TV that prevent children from watching a show that you consider objectionable, but the child can watch the same show on the family computer. One of our primary goals in Safe Eyes 6 was to remedy that problem,” said InternetSafety CEO Forrest Collier. “At the same time, we have added other new protections, simplified setup, and equipped parents with more meaningful reports that keep them informed and aware of their family’s Internet activities.”

Safe Eyes 6 will be available for download at www.safeeyes.com later this month. A one-year $49.95 subscription will cover up to three PCs with the ability to customize settings for each child. An advance demo can be seen at the InternetSafety.com booth (#3128) in the Living in Digital Times area at the 2010 International CES conference in Las Vegas.

Source: InternetSafety.com

2010 Computer Threat Trends, PandaLabs forecast

Fake antivirus, bots and banker Trojans will continue to increase

Cyber-criminals will keep fine-tuning their social engineering skills to trick victims

More malware will be created for Windows 7 and Mac operating systems

The term ‘cyber war’ will become more familiar as politically-motivated attacks across the Internet increase

PandaLabs, Panda Security’s malware analysis and detection laboratory, has released its forecast of computer threat trends for 2010. PandaLabs predicts that in 2010, the amount of malware in circulation will continue to grow exponentially as it has in 2009. As anti-malware technologies are able to respond closer to real-time through cloud-based innovations such as Panda’s Collective Intelligence, malware creators will respond by generating even more diverse threats to evade detection and elimination. Once again malware will be designed almost exclusively for financial gain, and we can expect to see many new fake antivirus strains (rogueware), bots and banker Trojans.

Social Engineering Continues to Rise

Cyber-criminals will again be focusing on social engineering techniques to infect computers, particularly those targeting search engines (BlackHat SEO) and social networks, along with ‘drive-by-download’ infections from Web pages.

As the football World Cup takes place in South Africa, we can also expect to see significant amounts of malware related to this event: false ticket offers, junk mail, etc. It is always a good idea to be suspicious of any messages related with current affairs and large events such as this.

In the case of social networks, there have already been many examples of worms and Trojans targeting Twitter and Facebook. Malware creators will continue to be drawn to these types of platforms that are used by millions of people.

Watch Out Windows 7

Windows 7 will have a major impact on malware development: where Windows Vista hardly caused a ripple, Windows 7 will make waves. One of the main reasons is the widespread market acceptance of this new operating system, and since practically every new computer comes loaded with Windows 7 64-bit, criminals will be busy adapting malware to the new environment. It may take time, but we expect to see a major shift towards this platform over the next two years.

Mobile Phone Attacks – Not Yet!

Several security companies have been warning for some time that malware is soon to affect cell phones in much the same way as it affects PCs. Well, we hate to rain on their parade, but 2010 will not be the year of malware for cell phones.

The PC is a homogenous platform, with 90 percent of the world’s computers running Windows on Intel, meaning that any new Trojan, or worm has a potential victim pool of 90 percent of the world’s computers. The mobile phone environment is much more heterogeneous, with numerous vendors using different hardware and different operating systems.

Applications continue to be incompatible from one operating system to another. Therefore it is unlikely that 2010 will see widespread targeting of cell phones by malware. In any event, this year will witness many changes in the world of mobile telephony with more smartphones offering practically the same features as a PC; the emergence of Google Phone — the first phone sold directly by Google without tying users to specific operators; the increasing popularity of Android; and of course the iPhone. If in the next couple of years there are only two or three popular platforms, and if people make significantly more financial transactions from their phones, then the potential breeding ground for cyber-crime will be significant enough to be concerned.

Mac Becoming Increasingly Attractive to Cyber-Criminals

Mac’s market share has increased in recent years. Although the number of users has yet to reach the critical mass required to make it as profitable as PCs for cyber-criminals, it is nevertheless becoming more attractive. Mac is used just as PCs are to access social networks, email, and the Internet: the main malware distribution systems used by cyber-criminals. Consequently, Mac is no longer a safe haven against malware. These criminals can easily distinguish whether a system is Mac, and they are creating malware designed especially to target this OS. In 2009, we have already seen some attacks, and predict there are more to come in 2010.

Cyber war

Throughout 2009, governments around the world including the United States, the UK and Spain, have expressed concern about the potential for cyber-attacks to affect economies or critical infrastructure. We also saw this year how several Web pages in the United States and South Korea were the subject of attacks, with suspicion — as yet unapproved — pointing at North Korea. In 2010, we can expect to see similar politically-motivated attacks.

Securing the Cloud

Cloud-based services will continue to grow in popularity among consumers and business users alike. As this happens, the security industry must be acutely aware of cybercriminals’ moves to take advantage of this new platform.

Cloud Antivirus Technology on the Rise

2010 will be the year in which all anti-malware companies will innovate to remain competitive as cloud-based security becomes the most effective way to fight today’s malware. In 2007, Panda Security launched its first product which took advantage of the cloud. Now in 2009, all the company’s products use it and we have launched the first 100 percent cloud-based free antivirus: Panda Cloud Antivirus (www.cloudantivirus.com), and Panda has noticed that the rest of the marketplace is beginning to follow suit.

Source: Panda Security

Next Page »

• Recent Posts

  • Wordfast Pro 2.3 for Windows
  • Panda Security reports over 13 Million users affected by Mariposa Botnet
  • Trend Micro Threat Research Report: 9 Million ZeuS attacks blocked by Trend Micro in the last 6 months
  • SonicWALL identifies growing threat of cybercriminals attacking new searches
  • Introducing the Fraud Prevention Suite to combat fraud in international eCommerce
  • Panda Security and Defence Intelligence coordinate massive botnet shutdown with international law enforcement
  • SAP Business One 8.8 beckons new era of software for small businesses
  • Microsoft announces global launch of Windows MultiPoint Server 2010
  • SIIA announces finalists for 2010 CODiE Awards in Education categories
  • New Emotional Technology in KODAK Picture Kiosks creates opportunity to tap into trillions of images
  • Cybercriminals continue to show their love for Valentine’s Day
  • Tableau launches free software to make data social
  • Apple releases Aperture 3
  • Solutionary identifies Top Security Risks and provides precautionary tips for Winter Olympic Games
  • Top 10 Malware Threats for January

• Tags

  2009 2010 America antivirus Apple application beta browser business Conficker cybercriminals data protection download educational encryption free Home Software IBM internet iPhone Mac Malware Microsoft news office online PandaLabs Panda Security productivity protection safety security Security Software service software Software News tech technology threats Trend Micro United States US USA Windows Windows 7