WatchGuard announces Top Threats to education
Education-related Threats Expected to Rise – According to the U.S. Department of Homeland Security, 25 percent of all cyber-security breaches involve schools, and although a majority of educators believe that their campus networks are more secure now than last year, WatchGuard predicts that significant breaches, vulnerabilities and threats will continue to plague schools and universities. WatchGuard deems the following to be the leading network, application and data threats to education:
– Malware & Spyware - As students and faculty utilize the Web for education as well as entertainment purposes, many unwittingly expose themselves to drive-by downloads, or corrupted websites, which injects malicious forms of software on their computers. Once infected, they risk becoming victims of identity theft or loss of personal information via spyware and keyloggers.
– Viruses – Today, e-mail remains to be one of the primary vectors for delivering viruses. Unfortunately, a recent survey showed that 27 percent of users fail to keep their antivirus signatures up to date. With viruses taking on innovative polymorphic properties, antivirus signatures alone may not be enough to stop the next wave of new viruses to come.
– Botnets – It has been estimated that 15 to 20 percent of all school and university computers connected to the Internet may be part of a botnet. As part of a botnet, school and university systems may be used in a variety of unknown exploits, including spam delivery, denial of service attacks, click-fraud, identity theft and more.
– Phishing – Phishing scams continue to get more sophisticated and selective, with students being specifically targeted. A recent report states that phishing attacks via social networks achieve a success rate of over 70 percent, which indicates that a majority of students are vulnerable to phishing scams.
– Hacking - In a recent survey of education IT professionals, 23 percent ranked student hackers as one of their greatest threats to their network security. Whether the hacks are designed to alter grades or for more sinister purposes, student hackers continue to push the envelope for network and data protection.
– Access Control – Usage of mobile devices and wireless access continues to plague network administrators. Concerns of thwarting unauthorized user access to education IT resources is top of mind with many administrators. As use of mobile devices escalates, schools will face
increasing challenges in managing authorized network access.
– Social Networks – The number one threat to school and university networks is social networks, such as Facebook and MySpace. Unfortunately, social networks act as an ideal platform to launch a myriad of attacks against students and faculty, including spam, viruses, malware, phishing and more. Adding to this, socially engineered attacks are often extremely successful due to the “trusted” environment that social networks create.
– Because of the sensitive nature of student and faculty information, such as social security numbers, credit card information, and other personal identifying data at risk, WatchGuard recommends that schools and universities review their security controls and IT policies regularly to ensure they have the most effective, up-to-date security solutions in place.
Source: WatchGuard Technologies
VASCO Data Security launches DIGIPASS Authentication for Windows Logon
VASCO Data Security Inc. announced the launch of ‘DIGIPASS Authentication for Windows Logon’. DIGIPASS Authentication for Windows Logon offers companies of all size a cost effective way of protecting their Windows PCs which are connected to the corporate network, against unauthorised access.
With the availability of ‘DIGIPASS Authentication for Windows Logon’ VASCO also announces the availability of IDENTIKEY Server Enterprise Edition. IDENTIKEY is VASCO’s comprehensive authentication server for network and application security offering OTP and e-signature capability.
IDENTIKEY Server Enterprise Edition
With IDENTIKEY Server Enterprise Edition, VASCO makes IDENTIKEY based strong authentication available to a vaster range of enterprises from large companies to smaller enterprises, starting at 5 users. VASCO’s IDENTIKEY offering consists of a number of standard packages:
Standard Edition: includes authentication through RADIUS on a single server
Gold Edition: comprises authentication through RADIUS and on IIS-based applications and can be installed on a Primary server with replication on a backup server
Enterprise Edition: includes authentication through RADIUS and on IIS-based applications, as well as internet hosted business applications and offers DIGIPASS Authentication for Windows Logon. This edition includes licenses for 7 servers.
The solution is made extremely convenient and simple, which makes it suitable for VASCO’s channel partners to implement and straightforward for the SME to use. Furthermore the solution is highly scalable: applications and users can easily be added as the company grows.
Traditionally companies start to secure their remote access with DIGIPASS strong user authentication. The use of static password, the weakest link when it comes down to security, is replaced with a dynamic One-Time Password (OTP) generated by DIGIPASS®.
As their understanding of strong authentication grows, they look to secure other applications with the same DIGIPASS, like portals, e-commerce, online applications.
Large enterprises increasingly look at authentication to secure their business critical applications including CRM, ERP, payroll systems, SaaS-applications,… These enterprises often have offices all over the world and largely depend on network infrastructure to communicate between offices. IDENTIKEY Enterprise Edition is ideally suited for distributed environments: it can be installed on up to 7 servers offering a high availability solution for authentication and supporting the distributed working environments of large enterprises.
IDENTIKEY is based on VASCO’s core VACMAN® technology and customers can choose from a wide range of DIGIPASS authenticators, both hardware and software based, which best fit the need of the end-user.
DIGIPASS Authentication for Windows Logon
DIGIPASS Authentication for Windows Logon offers companies of all size a cost effective way of protecting their Windows PCs which are connected to the corporate network, against unauthorised access. Even when laptops are not connected to the LAN, they remain protected, increasing the security of data stored on them in case they go missing or get stolen.
‘DIGIPASS Authentication for Windows Logon’, a feature of IDENTIKEY Enterprise Edition, is installed as a small software module on the end user’s Windows environment. It can be installed on desktop PCs and laptops that are connected to the corporate network. As soon as ‘DIGIPASS Authentication for Windows Logon’ is setup, it replaces the original login window by a version that will send the login credentials to IDENTIKEY Server for verification.
When laptops are used outside the corporate network, for instance on the road or at home, the log-on module will work in unconnected mode, allowing the same strong authentication functionality as in connected mode. If the computer works in unconnected mode, the login credentials are validated against a local database of one-time passwords. These OTPs are generated when the PC is working in connected mode, and they are securely encrypted and stored. With thousands of OTPs generated upfront, the user can work for several weeks in unconnected mode.
“The need for authentication is only growing. With IDENTIKEY and a single DIGIPASS, enterprises can secure the access to corporate networks, applications and business critical data. With the extension of the IDENTIKEY product-line with standard packaged solutions and adding DIGIPASS Authentication for Windows Logon, we are able to reach out to more enterprises, ranging from the 5-employee enterprise to the multi-national with several offices worldwide,” says Jan Valcke, President and COO at VASCO Data Security.
8 safety tips for teens when Hanging Out online
ID Experts Supports National Protect Your Identity Week
Online socializing–Facebook, instant messaging and texting–is the new “hanging out” among teens. When teens interact with friends online, they often share personal information that makes them vulnerable for identity theft. Scam artists are relying on teens to be impulsive and naive to steal personal information for their own gain.
To kick off National Protect Your Identity Week, October 17-24, ID Experts offers eight safety tips for teenagers when online, to protect their identity and their financial future when it’s time to apply for that first credit card or buy that first car:
1. Don’t give out your numbers. This includes your social security number, driver’s license number, debit card, phone card, insurance card, library card, medical ID card, or credit card.
2. Don’t post your personal information online. Nearly 50% of Facebook users put enough personal information–including full name, full date of birth, address, phone number, or school–to enable thieves to fill out credit card applications.(i)
3. Don’t participate in email or social networking quizzes. These seemingly fun personality quizzes can access your personal profile information–your religion, political affiliation, wall posts–that could be used against you.(ii)
4. Don’t be specific about where you are or where you are going. Naming your school, sports team, clubs, or where you work could leave a trail for an identity thief.
5. Set your profile to “private.” Be in control of who can view your content. Only add people you know to your Friends list. A friend of a friend might not be someone you know.
6. Use a different, isolated email just for social networking. Never use the “trusted” email you use to communicate directly with your friends, coworkers and classmates.
7. Secure your connections. Password-protect your phone. Find out from your carrier if additional security features (encryption) or software (a malware protector) are available. Don’t access your social networking sites or email from public Internet connections or public computers.
8. Be selective about what pictures you text or post on your page. Is it a photo you would want your parents to see? Treat your Internet activity like a digital tattoo. Once you post something, it cannot be taken back. Even if you erase the posting, there are cached versions and backups on servers across the country.
(i) http://clarkhoward.com/liveweb/shownotes/2007/08/16/12548/
(ii) Identity Theft Resource Center, 2009
Source: idexpertscorp.com
In Rogues We Trust: Webroot survey reveals internet users of all skill levels fall for cybercriminals tricky tactics
Webroot Also Finds 2 Out of Every 10 Threats Detected in August Were Fake Security Alerts & Products
Computer-savvy consumers are more susceptible than novices to “fake alerts” and rogue security products – bogus malware infection warnings and malicious programs masquerading as legitimate security applications – according to a new survey from Webroot, a leading provider of Internet security for the consumer, enterprise and SMB markets.
Surveying nearly 1,200 individuals ranging in age and computer proficiency levels, Webroot explored the risks and consequences of infection by malware associated with fake alerts. Among the key findings:
– Advanced users clicked on suspicious messages at a greater rate than less experienced users
– 20 percent of respondents strongly trust the first page of search results – a common target for fraudulent links
– Nearly one fifth reported varying levels of financial or data loss following infection
– Over half experienced infections consistent with those of fake alert-related malware
“Cybercriminals prey on our curiosity,” said Mike Kronenberg, chief technology officer of Webroot’s Consumer Business Unit. “Links to seemingly real search results and videos — and now even ads on reputable news sites – trigger fake warnings claiming you’re infected or need ‘Home Antivirus 2010′ or another bogus product. And business must be booming for these thieves, judging from the rapid rate at which Webroot is seeing new programs and variants created in an attempt to bypass security technology. But with the right education, vigilance and technology, consumers can take steps to protect themselves.”
The Anatomy of a Fake Alert
Webroot has seen a rise in the incidence of fake alerts and rogue security products. According to the Webroot Threat Research team, two out of every 10 threats detected by Webroot’s products in the month of August were associated with fake alerts and rogue security products.
The appearance of fake alerts changes frequently. Ranging from phony Windows Security Center warnings to notifications for security scans and viewer or codec downloads, each is designed to appear legitimate and urgent. According to the Webroot Threat Research team, Internet users can encounter fake alerts through three main vectors:
– Fraudulent links appearing at or near the top of search results. For example, on Monday Webroot found that a search for news stories about the arrest of film director Roman Polanski yielded links that redirected to a fake security scan and to “Windows PC Defender,” a known rogue security product.
– Phony file links. Webroot recently reported on its Threat Blog that the Koobface worm is now sending phony video links, seemingly from a friend, to members of Facebook, MySpace, Twitter and other social networks. The links trigger viewer download messages that activate infection when clicked.
– Ads on legitimate Web sites. Webroot researchers recently investigated the origins of a bogus ad on NYTimes.com earlier this month which contained code leading to a fake alert and rogue product.
Key Findings
Results from the Webroot survey indicate a general lack of awareness of fake alerts and rogue security products, a higher rate of engagement among advanced and power users, and costly and inconvenient consequences of infection.
Lack of awareness leaves individuals vulnerable:
– 20 percent strongly agree the first page of search results includes trustworthy links
– 40 percent did not know the meaning of “fake alerts,” and 69 percent were unfamiliar with “rogue security products”
– 25 percent clicked on links to unfamiliar sites
– 13 percent clicked on pop-up messages requiring the download of a special viewer or codec
Experienced computer users are more susceptible:
– Over 50 percent of advanced users encountered a fake Windows Security enter alert, versus 33 percent of novice users
– 26 percent of advanced users encountered a fake security scan, compared to approximately 10 percent of less experienced users
– 23 percent of advanced users clicked on a fake alert and in some cases purchased rogue security products; conversely, 10 percent of novice users did the same
Clicking a fake alert can lead to consequences ranging from nuisance to costly:
– 43 percent of respondents experienced ongoing pop-up messages after clicking
– 26 percent had to have their computers repaired
– 11 percent lost files and documents following infection
– 8 percent had to purchase a new computer or experienced unauthorized credit card charges
Tips for Safer Surfing
Webroot recommends the following actions to protect against the risks and consequences of fake alerts:
Be vigilant – Do not click pop-up security alerts from unfamiliar companies, or poorly worded messages from known providers. Only purchase security products from reputable companies. Check for links to familiar sites among search engine results. On social networks, do not follow suspicious video links from “friends,” or emails, friend requests, site links and other items from unknown sources
Even with security programs in place, remain vigilant – Malware authors are continually writing new programs to avoid detection, so pay close attention to suspicious behavior
Always install updates – Equally if not more important, if you’re using antimalware software, be sure to install updates which include the latest malware definitions to protect you from new variants of known threats; do the same with updates to your operating system
If you’re not protected – Scan your machine for dormant viruses with a free scan; and protect your PC with an Internet security suite that includes antivirus, antispyware, and firewall technologies
Webroot offers several comprehensive Internet security solutions for consumers including Webroot® AntiVirus with Spy Sweeper®, and Webroot® Internet Security Essentials. For more information about these and other products, please visit http://www.webroot.com/En_US/consumer.html.
U.S. ranks 9th in Global PC Infection Report, according to PandaLabs
Average number of worldwide infections grew 15 percent over last month – Global infection ratio hits all time high this year at nearly 60 percent
PandaLabs, Panda Security’s malware analysis and detection laboratory, announced that it has detected a 15 percent increase in the total number of malware-infected computers in September in comparison to the previous month of August. According to data gathered from users that scanned and disinfected their computers with the free Panda ActiveScan online antivirus, the average infection ratio rose to 59 percent, the highest rate this year.
In comparison to the infection rates of 29 countries, the U.S. ranks ninth with an infection ratio of 58.25 percent, just below the worldwide average. Taiwan has the most infected PCs, with a 69.10 percent corruption, followed by Russia and China at 67.99 percent and 61.97 percent, respectively. The country with the least infections is Norway at 39.60 percent. To view a table that outlines the percentage of infected computers by country, please visit: http://www.flickr.com/photos/panda_security/3963144168/.
According to Luis Corrons, Technical Director of PandaLabs, “There is a false sense of security, as users perceive there to be no real danger at the moment. When their computers get infected, they rarely notice any symptoms.”
Panda’s study revealed that U.S. computers are infected by the most dangerous malware strains: Trojans, followed by adware, worms and viruses. To see the number and types of malware on infected computers in the U.S., please visit: http://www.flickr.com/photos/lithium-/3963437003/sizes/o/.
“This is a clear sign that hackers are becoming more and more sophisticated,” explains Corrons. “Cybercriminals have found news ways to spread their creations, frequently exploiting the latest news stories to launch attacks through social networks, videos, and email. The huge amount of Trojans in circulation is due to the spectacular increase in the number of banker Trojans aimed at stealing user data.”