Archive for September, 2009

Microsoft to offer Security Essentials FREE starting on Sept 29

Tuesday, September 29th, 2009

The price is right if you don’t already have something – and if you don’t we probably need to talk about an OS reinstall anyway. http://www.computerworld.com/s/article/9138633/Microsoft_confirms_free_security_software_ships_Tuesday?taxonomyId=17 Microsoft confirms free security software ships Tuesday Slates 4.7MB Security Essentials for download in the morning, Pacific time Microsoft has pitched the software as a basic anti-virus, anti-spyware program […]

How do you remove a botnet infection on a workstation? – REINSTALL the OS

Monday, September 21st, 2009

>>> “Perez, Bill” <bill.perez @ dir.state.tx.us> 9/21/2009 8:48 AM >>>The growing trend over the past 2 years involving sophisticated virusesthat can morph and evade Anti Virus (A/V) solutions has lead DIR torecommend re-imaging for all infected systems. It is important that images be kept updated, and virus-free————————————————————————Zbot evades most anti-virus programs Angela Moscaritolo<http://www.scmagazineus.com/Angela-Moscaritolo/author/271/> , SCMagazine […]

A fix it for me update to the SMB2 vulnerability for Vista and WinServer 2008

Monday, September 21st, 2009

http://blogs.technet.com/srd/archive/2009/09/18/update-on-the-smb-vulnerability.aspx Update on the SMB vulnerability situation We’d like to give everyone an update on the situation surrounding the new Microsoft Server Message Block Version 2 (SMBv2) vulnerability affecting Windows Vista and Windows Server 2008. Easy way to disable SMBv2 First exploit for code execution released to small number of companies Mitigations that help prevent […]

New Free Web Service Confirms Theft Of Your Identity

Friday, September 18th, 2009

http://www.darkreading.com/security/attacks/showArticle.jhtml;jsessionid=QXPC4A0KIFZ5HQE1GHOSKHWATMY32JVN?articleID=220000940 New Free Web Service Confirms Theft Of Your IdentityWeb-based search service lets individuals check whether their personal information has been compromised A new, free Web-based search service that combs real identity-theft trafficking forums used by criminals lets consumers proactively check if they are a victim of identity theft. The StolenID Search site is a […]

A little proactive security efforts would have probably prevented this problem in the first place – NO corporate AV deployed

Thursday, September 17th, 2009

http://www.networkworld.com/news/2009/091609-financial-firm-avoids-security-disaster.html?hpg1=bn Security disaster averted by financial firm’s quick actions Blaster and Sasser were bad but other outbreaks can be just as challenging for IT security While most of the IT world has been spared a devastating security attack like Blaster and Sasser for the last few years, the damage wrought by all manner lesser-known computer […]

Microsoft patches issued for September 2009 – MS09-045 through 048

Wednesday, September 9th, 2009

There is also an 049 but it is for wireless LAN autoconfig on Windows 2008. I don’t think that is an exposure we are likely to see. http://www.microsoft.com/technet/security/bulletin/ms09-045.mspx Microsoft Security Bulletin MS09-045 – Critical Vulnerability in JScript Scripting Engine Could Allow Remote Code Execution (971961) http://www.microsoft.com/technet/security/bulletin/ms09-046.mspx Microsoft Security Bulletin MS09-046 – Critical Vulnerability in DHTML […]