http: Update: Also see the WHO (World Health Organization) rss feed. Get a Global view at Healthmap.org. You can also jump directly into the panic on twitter. Center for Disease Control CDC Swine Flu |
Posts
1 year ago
Tuesday, April 28, 2009
Track the Swine Flu in your reader
Verizon and Apple working it out
Lots and lots of rumors on the net about iPhone coming to Verizon in 2010.
SlashGear actually has some interesting details about the potential offering. There are more details from Businessweek and they suggest that all the rumor talk is really leverage by Apple to sweeten their part of a new deal with AT&T.
For me, I like the idea of a Kindle like Media Pad from Apple. Maybe that is how Apple will sell too AT&T(iPhone) but still be able to sell a device to Verizon (Media Pad). Not sure I want to carry around and iPhone and a Media Pad though. Maybe we will find out this summer!
SlashGear actually has some interesting details about the potential offering. There are more details from Businessweek and they suggest that all the rumor talk is really leverage by Apple to sweeten their part of a new deal with AT&T.
For me, I like the idea of a Kindle like Media Pad from Apple. Maybe that is how Apple will sell too AT&T(iPhone) but still be able to sell a device to Verizon (Media Pad). Not sure I want to carry around and iPhone and a Media Pad though. Maybe we will find out this summer!
Wednesday, April 22, 2009
Payback
Funny little payback story about the Nigerian Craigs List scams. Since I dealt with this a few months ago I had done some digging.
What is Advance -fee fraud?
Also a nice Nigerian 419 scam FAQ.
Common Fraud Schemes from the FBI.
Educate yourself before using auction sites like Craigs List and Ebay the fraud is rampant and those companies do very little to protect you.
What is Advance -fee fraud?
Also a nice Nigerian 419 scam FAQ.
Common Fraud Schemes from the FBI.
Educate yourself before using auction sites like Craigs List and Ebay the fraud is rampant and those companies do very little to protect you.
The Kindle Costs
Why get a Kindle?
According to PC World, the Kindle costs a consumer $359 but it only costs Amazon $185 to build. So $174 profit. You still have to buy the ebooks which are supposed to $9.99 but most are not if you read about the ebook boycott going on.
If you can stomach the cost of the ebooks why not just use your iPhone for ebook reading. Oddly, even Amazon seems to be pushing this. See Further thoughts on the Kindle iPhone experience for a review.
What is Whispersync?
Kindle for iPhone comes with Whispersnyc, which means you can sync your reading locations and annotations between your Kindle and your iPhone. In addition, any book that you buy for your Kindle can be accessed on your iPhone as well. And let’s not forget that you get the same Kindle book discounts on your iPhone.
According to PC World, the Kindle costs a consumer $359 but it only costs Amazon $185 to build. So $174 profit. You still have to buy the ebooks which are supposed to $9.99 but most are not if you read about the ebook boycott going on.
If you can stomach the cost of the ebooks why not just use your iPhone for ebook reading. Oddly, even Amazon seems to be pushing this. See Further thoughts on the Kindle iPhone experience for a review.
What is Whispersync?
Kindle for iPhone comes with Whispersnyc, which means you can sync your reading locations and annotations between your Kindle and your iPhone. In addition, any book that you buy for your Kindle can be accessed on your iPhone as well. And let’s not forget that you get the same Kindle book discounts on your iPhone.
Monday, April 20, 2009
This is my iPod.....
Newsweek has a cool article about how our soldiers are using new technology to defeat the enemy. Some of the uses Newsweek notes are pretty interesting uses.
I’m sure are boys are being pretty creative and are using it for a lot more. I’m surprised the Pentagon allows the use but I guess they understand they can’t prevent the soldiers from using them anyway so might as well use it as another weapon against the bad guys. This is a great example about how consumer products are used first by consumers then brought into business, in this case the military. It used to be the military would develop a product for use in war then uses would be found in civilian life like with the Hummer. In this case the reverse is true.
- iPhone software that would enable a soldier to snap a picture of a street sign and, in a few moments, receive intelligence uploaded by other soldiers (the information would be linked by the words on the street sign).
- The U.S. Marine Corps is funding an application for Apple devices that would allow soldiers to upload photographs of detained suspects, along with written reports, into a biometric database. The software could match faces, making it easier to track suspects after they're released.
- Software developers and the U.S. Department of Defense are developing military software for iPods that enables soldiers to display aerial video from drones and have teleconferences with intelligence agents halfway across the globe.
- Snipers in Iraq and Afghanistan now use a "ballistics calculator" called BulletFlight, made by the Florida firm Knight's Armament for the iPod Touch and iPhone.
- Army researchers are developing applications to turn an iPod into a remote control for a bomb-disposal robot (tilting the iPod steers the robot).
- In Sudan, American military observers are using iPods to learn the appropriate etiquette for interacting with tribal leaders.
- A new program, Vcommunicator, is now being issued to soldiers in Iraq and Afghanistan. It produces spoken and written translations of Arabic, Kurdish and two Afghan languages. It also shows animated graphics of accompanying gestures and body language, and displays pictures of garments, weapons and other objects.
I’m sure are boys are being pretty creative and are using it for a lot more. I’m surprised the Pentagon allows the use but I guess they understand they can’t prevent the soldiers from using them anyway so might as well use it as another weapon against the bad guys. This is a great example about how consumer products are used first by consumers then brought into business, in this case the military. It used to be the military would develop a product for use in war then uses would be found in civilian life like with the Hummer. In this case the reverse is true.
Thursday, April 16, 2009
SANS:Some conficker lessons learned
Good Conficker lessons learned from SANS
"The outbreak was not due to a lack of patching. The vast majority of the machines that were compromised via the worm were managed machines and were in fact patched up to date - including the patch for MS08-067 - and have actively maintained anti-virus software installed."
"The outbreak was not due to a lack of patching. The vast majority of the machines that were compromised via the worm were managed machines and were in fact patched up to date - including the patch for MS08-067 - and have actively maintained anti-virus software installed."
- Ensure that when an average user logs in it does not allow them to mount via RPC resources on other workstations in the domain. (i.e. When
en-us/library/cc740196.aspx > - Disable Auto-Run on all machines. This can also be accomplished via GPO.
- Ensure that all anti-virus software is very up-to-date and is enabled to "On-Access" scan for both the reading and writing of files.
- Ensure that all machines are patched for MS08-067, including vendor managed machines.
- Ensure that all privileged accounts have strong passwords. Apparently conficker is smart enough to enumerate accounts with elevated privileges such as Domain Admins. We observed conficker attempting to brute-force unique domain admin accounts.
- Monitor for 445/TCP scanning, particularly off-subnet scanning.
- Force all users to utilize a proxy to access the web.
Interesting VMware Critical Vulnerability
iTWire has an interesting tid bit about a VMware vulnerability that can result in inter-machine vulnerability. The advisories of note are VMSA-2009-005 and VMSA-2009-006.
David Heath notes:
"Now we find that any one of those virtual machines can influence the base OS, and by implication have dire effects upon other virtual environments on the same system."
I created a custom feed for VMware's Security Advisories for those with RSS addiction like me.
There had to be a chink in the armor somewhere right?
David Heath notes:
"Now we find that any one of those virtual machines can influence the base OS, and by implication have dire effects upon other virtual environments on the same system."
I created a custom feed for VMware's Security Advisories for those with RSS addiction like me.
There had to be a chink in the armor somewhere right?
Trade in your old cell phone
I have not used this but it looked interesting and I do have a lot cell phones laying around.
http://www.flipswap.com/
http://www.flipswap.com/
Dilemma
I was recently involved in a situation where a server’s hard drive failed. During research on the issue it was discovered that the server’s firmware and drivers were out of date. In fact they were never updated. Now my philosophy is, if it is not broke don’t fix it when it comes to firmware. OS security updates are different and should be applied (after testing) immediately. But firmware it is normally not a security fix but an enhancement to the hardware. If the hardware is working fine why tempt fate?
In my view, the time to update drivers and patches is at the request of vendor support and that usually happens when you are trying to fix a server. Most of the time support won’t even talk to you until you are the latest version of firmware and software. So the question is; do you make firmware and driver updates part of the regular server maintenance even if the server is in fine working condition? I know the answer would be yes if you are able to test the updates but how many IT shops have a test server for every model server they have. I have seen firmware and driver updates go bad more often than not. Is it worth risk on a production server that is working? Just food for thought.
In my view, the time to update drivers and patches is at the request of vendor support and that usually happens when you are trying to fix a server. Most of the time support won’t even talk to you until you are the latest version of firmware and software. So the question is; do you make firmware and driver updates part of the regular server maintenance even if the server is in fine working condition? I know the answer would be yes if you are able to test the updates but how many IT shops have a test server for every model server they have. I have seen firmware and driver updates go bad more often than not. Is it worth risk on a production server that is working? Just food for thought.
Monday, April 13, 2009
Nessus version 4 released
Tenable released the latest version of Nessus last Thursday. There are some performance enhancements and now all Nessus Unix command-line tools are available on Windows. Plus 64 bit support. There are more at the Tenable blog.
The fuss about Netbooks
For some time now I have thinking which would be more useful an iPhone or a Netbook. Each has it advantages and disadvantages some obvious some not so obvious. But on the go, as an IT Professional which would you rather have, the small compact but versatile iPhone or something a little more robust yet more difficult to carry around like the HP Mini 2140. Erica Sadun wrote an article about Netbooks that does a slight comparison between Netbooks and the iPhone although she focuses on the data plans. I liked the article though because it finally defined for me what a Netbook is really designed for. She states:
"In the real world, laptops let you perform serious work and let you do so without a lot of compromise. In the portable world, netbooks just aren't meant for that standard of computing. The screen is small; the keyboard is compromised; the chip runs slow. So consider them in the light of the activities that people use netbooks for: sending e-mail, browsing the net, enjoying multimedia, and chatting on the go."
Email, browsing, multimedia and chat. I'm not sure about the multimedia (unless she means just limited to music) but I will along with the rest. Light activities, not hardcore computing like video editing, gaming, or something database intensive.
For the mobile IT pros though might a Netbook be a possibility? They are cheaper then a laptop and they would be great for rdp sessions to servers which is what you use from pc at work anyway. Now if I can just justify the the required data plan. Of course you can rdp from the iPhone too.
"In the real world, laptops let you perform serious work and let you do so without a lot of compromise. In the portable world, netbooks just aren't meant for that standard of computing. The screen is small; the keyboard is compromised; the chip runs slow. So consider them in the light of the activities that people use netbooks for: sending e-mail, browsing the net, enjoying multimedia, and chatting on the go."
Email, browsing, multimedia and chat. I'm not sure about the multimedia (unless she means just limited to music) but I will along with the rest. Light activities, not hardcore computing like video editing, gaming, or something database intensive.
For the mobile IT pros though might a Netbook be a possibility? They are cheaper then a laptop and they would be great for rdp sessions to servers which is what you use from pc at work anyway. Now if I can just justify the the required data plan. Of course you can rdp from the iPhone too.
RDP from your iPhone
I am more then a little intrigued buy some of the iPhone apps I have seen lately. One is called Jaadu RDP . This product seems geared towards the consumer rather the IT professional but if your off site a lot this could be pretty handy. Here is a review from Macworld magazine. It seems pretty favorable. There is video demo of the product here. You can purchase and download it from Apptism for $24.99. That seems a bit pricey to me but perhaps it could be worth it. The latest version is 2.0.1.
More and more reasons for me to get a iPhone. Verizon really blew it!
More and more reasons for me to get a iPhone. Verizon really blew it!
Friday, April 10, 2009
Google Lattitude..the stalkers choice
Decent article over at Geek.com about the uses of Google Latitude. Personally I think this will be a a stalkers choice software. But there could be good uses too like tracking the elderly who have Alzheimer's or making sure children make it to school ok. All say this for Google they innovate.
Trojan Time
I’m supposed to no better.
All the classic signs were there. PC slowness. Programs acting strange. Pop-ups galore to great security programs! What a coincidence. Just click me and I will save you they promise. Yeah right I thought . I trust a popup about as much as car salesman. At first Mcafee seemed to have everything under control but it only saw innocuous tmp files and every reboot they would reappear. After I checked my DAT files were up to date I did a Mcafee scan that found nothing but took forever. Then I noticed Windows Defender was missing from the system tray and Ad aware would not start. Hmmm…..
No problem I can handle this. I’m IT professional! Mcafee put me on the trail but that is about it. Vundo!grb. What is Vundo? The next day, NQ-Host84 appeared , then another Vundo variant. Things were starting to snowball. I had Spybot installed so I tried that to clean things. It found some stuff but I still had popups and the PC was still slow. I downloaded HijackThis and looked at the logs and tried to fix any problems. No change but the logs showed an unusual dll file named wenijalu.dll. I didn’t want to go delete files without knowing what they are first so I kept digging. I had Process Explorer installed so using that I checked the properties Winlogon.exe under the Threads tab and I saw that strange dll file listed along with two other dll files tikiwki.dll and bowiki.dll. I checked the Mcafee process Mcshield.exe and sure enough they were there. I checked the rest of my running process and all of them had these strange dll files.
I searched Google and sure enough these dlls were linked adware and Trojans. I was really concerned at this point. Every running process seemed to be infected and my anti-virus and anti-spyware was either crippled or disabled. I killed all strange dlls that were attached to a process. I then checked my Automatic Updates and it was disabled! No way I would have done that! I was fully patched though. I checked my firewall and it seemed ok. These dlls had to go. I made backups of all my important files and put them on an USB drive. I found the creepy dll files in the Windows\systems32 directory and they were set to be hidden (unusual compared to normal dlls). I renamed the dlls by changing the extension to .bad and it let me do that surprisingly. I rebooted things seemed better. The popups went away and the pc was a little faster...but not much.
The problem with cleaning things manually is that you are never 100% sure you got everything. My mind wondered, could there still be a rootkit on there? Did I get everything? If my security programs miss it so could I. What did I miss in the registry? I checked my running processes in process explorer and saw no sign of the dlls but I worried about the registry. I ran Spybot again and it found some registry items related to Vundo. I ran a scan with Mcafee, Hijackthis, and Spybot again to find anything and things seemed clean. Still my paranoia, which had saved me before, was screaming at me now. Wipe it, Wipe clean and start all over. So that is what I did.
During my research I saw some tools that claim to get rid of certain Trojans like Vundo such as, VundoFix, ComboFix, and Malware Bytes. I have mixed feeling about these types of programs. I don’t trust them. They may work or they may not. They all claim they just want to help you but most just want to sell you there software. And no one can guarantee you they cleaned your pc 100% unless they completely format it which defeats the purpose of their use.
The lesson here . Even if you think you can handle a Trojan or Virus think again. The bad guys are ahead of security companies so we are always one step behind as well. Do yourself a favor prepare for your own personal PC disaster.
All the classic signs were there. PC slowness. Programs acting strange. Pop-ups galore to great security programs! What a coincidence. Just click me and I will save you they promise. Yeah right I thought . I trust a popup about as much as car salesman. At first Mcafee seemed to have everything under control but it only saw innocuous tmp files and every reboot they would reappear. After I checked my DAT files were up to date I did a Mcafee scan that found nothing but took forever. Then I noticed Windows Defender was missing from the system tray and Ad aware would not start. Hmmm…..
No problem I can handle this. I’m IT professional! Mcafee put me on the trail but that is about it. Vundo!grb. What is Vundo? The next day, NQ-Host84 appeared , then another Vundo variant. Things were starting to snowball. I had Spybot installed so I tried that to clean things. It found some stuff but I still had popups and the PC was still slow. I downloaded HijackThis and looked at the logs and tried to fix any problems. No change but the logs showed an unusual dll file named wenijalu.dll. I didn’t want to go delete files without knowing what they are first so I kept digging. I had Process Explorer installed so using that I checked the properties Winlogon.exe under the Threads tab and I saw that strange dll file listed along with two other dll files tikiwki.dll and bowiki.dll. I checked the Mcafee process Mcshield.exe and sure enough they were there. I checked the rest of my running process and all of them had these strange dll files.
I searched Google and sure enough these dlls were linked adware and Trojans. I was really concerned at this point. Every running process seemed to be infected and my anti-virus and anti-spyware was either crippled or disabled. I killed all strange dlls that were attached to a process. I then checked my Automatic Updates and it was disabled! No way I would have done that! I was fully patched though. I checked my firewall and it seemed ok. These dlls had to go. I made backups of all my important files and put them on an USB drive. I found the creepy dll files in the Windows\systems32 directory and they were set to be hidden (unusual compared to normal dlls). I renamed the dlls by changing the extension to .bad and it let me do that surprisingly. I rebooted things seemed better. The popups went away and the pc was a little faster...but not much.
The problem with cleaning things manually is that you are never 100% sure you got everything. My mind wondered, could there still be a rootkit on there? Did I get everything? If my security programs miss it so could I. What did I miss in the registry? I checked my running processes in process explorer and saw no sign of the dlls but I worried about the registry. I ran Spybot again and it found some registry items related to Vundo. I ran a scan with Mcafee, Hijackthis, and Spybot again to find anything and things seemed clean. Still my paranoia, which had saved me before, was screaming at me now. Wipe it, Wipe clean and start all over. So that is what I did.
During my research I saw some tools that claim to get rid of certain Trojans like Vundo such as, VundoFix, ComboFix, and Malware Bytes. I have mixed feeling about these types of programs. I don’t trust them. They may work or they may not. They all claim they just want to help you but most just want to sell you there software. And no one can guarantee you they cleaned your pc 100% unless they completely format it which defeats the purpose of their use.
The lesson here . Even if you think you can handle a Trojan or Virus think again. The bad guys are ahead of security companies so we are always one step behind as well. Do yourself a favor prepare for your own personal PC disaster.
Subscribe to:
Posts (Atom)
