Here are the initial observations:

• Their Cisco VoIP phone system was able to make calls and internal machines could ping outside servers by IP, but not by name, indicating that the internet connection was functional.
• I could ping their firewall IP address and I could get into resources on their network other than the server remotely. Remote Desktop (RDP) didn’t respond, I could not telnet to the Exchange mail server (port 25) either.
• The client had already rebooted the server once, and was logged into themselves and reported nothing strange.  They confirmed that on the server they could also ping outside IP addresses but the DNS server was not responding.

Okay, so this sounded like maybe the DNS server was the issue, but it was running okay, and the server itself could resolve hostnames. I was starting to lean towards firewall (on server or desktops) or switch issues at this point, but not being there and not having the ability to see the devices on the network with my own two eyes was hindering my progress. They opted to have us come out first thing in the morning and check it out.

When our tech arrived at start of business, he immediately realized that the server was unreachable from machines on their network and began looked over system logs, firewall & system settings and did the typical diagnostic in an attempt to restore connectivity.

Then he found it…

There were suspicious changes to the registry and upon running malware scanning tools, he quickly discovered the culprit. Malicious software of some sort had had its way with the machine.

The only thing that had happened leading up to this issue was that the client had been in touch with Intuit for a Quickbooks upgrade. The Intuit technician had performed a remote session and updated the QB install and the in turn the database files.

There are other potential ways that malware was put on the server, but the timing is suspicious as nobody else had accessed this machine remotely in many weeks, so we are going to assume that it came from the technician remotely accessing it, as we have no exact logging information that would indicate the time the changes were made.

Why am I blogging about this? In the event anyone else has an issue, they may find this post and confirm that they had a similar incident leading up to the event.

This could potentially happen if the installer of the software had become infected / exploited themselves, and it could be entirely accidental. Then again, some might want to speculate that people providing support to US based companies from foreign countries might intentionally wish to gain access to a server.

What can you do to protect yourself? Instead of using a software vendors foreign based technicians or engineers to update your software, you might fare better by using the services of a local based IT company. Also, having backups of your system files and system images will insure that you can “go back in time” and restore a system to a functional state should something of this nature happen.

Want to discuss this further? Feel free to add your two cents to our blog!

Should you desire computer or server support in the Greenville, Spartanburg or Anderson South Carolina area for your business, please call us at 864-990-4748 or use the contact form on our website. We would love to assist you!

May 2013′s Patch Tuesday!

Brought to you by Microsoft.

Yes, Patch Tuesday is loaded with a plethora of updates that will keep you busy for a few moments. The rundown on the updates is listed below in the advance notification, but suffice it to say, you NEED to update your computers.

If you have any problems or questions, Homeland Secure IT would like to help you out. Please call us at 864-990-4748 or use the contact form on our website.

Stay safe out there!

—

Critical Security Bulletins

============================

Bulletin 1

- Affected Software:
- Windows XP Service Pack 3
- Internet Explorer 6
- Internet Explorer 7
- Internet Explorer 8
- Windows XP Professional x64 Edition Service Pack 2
- Internet Explorer 6
- Internet Explorer 7
- Internet Explorer 8
- Windows Server 2003 Service Pack 2
- Internet Explorer 6
- Internet Explorer 7
- Internet Explorer 8
- Windows Server 2003 x64 Edition Service Pack 2
- Internet Explorer 6
- Internet Explorer 7
- Internet Explorer 8
- Windows Server 2003 with SP2 for Itanium-based Systems
- Internet Explorer 6
- Internet Explorer 7
- Windows Vista Service Pack 2:
- Internet Explorer 7
- Internet Explorer 8
- Internet Explorer 9
- Windows Vista x64 Edition Service Pack 2:
- Internet Explorer 7
- Internet Explorer 8
- Internet Explorer 9
- Windows Server 2008 for 32-bit Systems Service Pack 2:
- Internet Explorer 7
- Internet Explorer 8
- Internet Explorer 9
(Windows Server 2008 Server Core installation not affected)
- Windows Server 2008 for x64-based Systems Service Pack 2:
- Internet Explorer 7
- Internet Explorer 8
- Internet Explorer 9
(Windows Server 2008 Server Core installation not affected)
- Windows Server 2008 for Itanium-based Systems Service Pack 2
- Internet Explorer 7
- Windows 7 for 32-bit Systems Service Pack 1:
- Internet Explorer 8
- Internet Explorer 9
- Internet Explorer 10
- Windows 7 for x64-based Systems Service Pack 1:
- Internet Explorer 8
- Internet Explorer 9
- Internet Explorer 10
- Windows Server 2008 R2 for x64-based Systems
Service Pack 1:
- Internet Explorer 8
- Internet Explorer 9
- Internet Explorer 10
(Windows Server 2008 R2 Server Core installation
not affected)
Windows Server 2008 R2 for Itanium-based Systems Service
Pack 1
- Internet Explorer 8
- Windows 8 for 32-bit Systems
- Internet Explorer 10
- Windows 8 for 64-bit Systems
- Internet Explorer 10
- Windows Server 2012
- Internet Explorer 10
(Windows Server 2012 Server Core installation not affected)
- Windows RT
- Internet Explorer 10
- Impact: Remote Code Execution
- Version Number: 1.0

Bulletin 2

- Affected Software:
- Windows XP Service Pack 3
- Internet Explorer 8
- Windows XP Professional x64 Edition Service Pack 2
- Internet Explorer 8
- Windows Server 2003 Service Pack 2
- Internet Explorer 8
- Windows Server 2003 x64 Edition Service Pack 2
- Internet Explorer 8
- Windows Vista Service Pack 2:
- Internet Explorer 8
- Internet Explorer 9
- Windows Vista x64 Edition Service Pack 2:
- Internet Explorer 8
- Internet Explorer 9
- Windows Server 2008 for 32-bit Systems Service Pack 2:
- Internet Explorer 8
- Internet Explorer 9
(Windows Server 2008 Server Core installation not affected)
- Windows Server 2008 for x64-based Systems Service Pack 2:
- Internet Explorer 8
- Internet Explorer 9
(Windows Server 2008 Server Core installation not affected)
- Windows 7 for 32-bit Systems Service Pack 1:
- Internet Explorer 8
- Internet Explorer 9
- Windows 7 for x64-based Systems Service Pack 1:
- Internet Explorer 8
- Internet Explorer 9
- Windows Server 2008 R2 for x64-based Systems
Service Pack 1:
- Internet Explorer 8
- Internet Explorer 9
(Windows Server 2008 R2 Server Core installation
not affected)
Windows Server 2008 R2 for Itanium-based Systems Service
Pack 1
- Internet Explorer 8
- Impact: Remote Code Execution
- Version Number: 1.0

Important Security Bulletins
============================

Bulletin 3

- Affected Software:
- Windows 8 for 32-bit Systems
- Windows 8 for 64-bit Systems
- Windows Server 2012
(Windows Server 2012 Server Core installation affected)
- Windows RT
- Impact: Denial of Service
- Version Number: 1.0

Bulletin 4

- Affected Software:
- Windows XP Service Pack 3
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003 Service Pack 2
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Vista Service Pack 2
- Windows Vista x64 Edition Service Pack 2
- Windows Server 2008 for 32-bit Systems Service Pack 2
(Windows Server 2008 Server Core installation not affected)
- Windows Server 2008 for x64-based Systems Service Pack 2
(Windows Server 2008 Server Core installation not affected)
- Windows Server 2008 for Itanium-based Systems Service Pack 2
Windows 7 for 32-bit Systems Service Pack 1
Windows 7 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1
(Windows Server 2008 R2 Server Core installation affected)
Windows Server 2008 R2 for Itanium-based Systems Service
Pack 1
- Windows 8 for 32-bit Systems
- Windows 8 for 64-bit Systems
- Windows Server 2012
(Windows Server 2012 Server Core installation affected)
- Windows RT
- Impact: Spoofing
- Version Number: 1.0

Bulletin 5

- Affected Software:
- Microsoft Communicator 2007 R2
- Microsoft Lync 2010 (32-bit)
- Microsoft Lync 2010 (64-bit)
- Microsoft Lync 2010 Attendee (admin level install)
- Microsoft Lync 2010 Attendee (user level install)
- Microsoft Lync Server 2013
- Impact: Remote Code Execution
- Version Number: 1.0

Bulletin 6

- Affected Software:
- Microsoft Publisher 2003 Service Pack 3
- Microsoft Publisher 2007 Service Pack 3
- Microsoft Publisher 2010 Service Pack 1 (32-bit editions)
- Microsoft Publisher 2010 Service Pack 1 (64-bit editions)
- Impact: Remote Code Execution
- Version Number: 1.0

Bulletin 7

- Affected Software:
- Microsoft Word 2003 Service Pack 3
- Microsoft Word Viewer
- Impact: Remote Code Execution
- Version Number: 1.0

Bulletin 8

- Affected Software:
- Microsoft Visio 2003 Service Pack 3
- Microsoft Visio 2007 Service Pack 3
- Microsoft Visio 2010 Service Pack 1 (32-bit editions)
- Microsoft Visio 2010 Service Pack 1 (64-bit editions)
- Impact: Information Disclosure
- Version Number: 1.0

Bulletin 9

- Affected Software:
- Windows Essentials 2011
- Windows Essentials 2012
- Impact: Information Disclosure
- Version Number: 1.0

Bulletin 10

- Affected Software:
- Windows XP Service Pack 3
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003 Service Pack 2
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Vista Service Pack 2
- Windows Vista x64 Edition Service Pack 2
- Windows Server 2008 for 32-bit Systems Service Pack 2
(Windows Server 2008 Server Core installation affected)
- Windows Server 2008 for x64-based Systems Service Pack 2
(Windows Server 2008 Server Core installation affected)
- Windows Server 2008 for Itanium-based Systems Service Pack 2
- Windows 7 for 32-bit Systems Service Pack 1
- Windows 7 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for x64-based Systems Service Pack 1
(Windows Server 2008 R2 Server Core installation affected)
- Windows Server 2008 R2 for Itanium-based Systems Service
Pack 1
- Windows 8 for 32-bit Systems
- Windows 8 for 64-bit Systems
- Windows Server 2012
(Windows Server 2012 Server Core installation affected)
- Windows RT
- Impact: Elevation of Privilege
- Version Number: 1.0

When you hear the term “video surveillance”, you might have visions of high tech government agencies watching the masses, or you might think about a prime time TV show set in a Las Vegas casino with a whole team watching as the “eye in the sky”, or it could be the large department store chain that has cameras hanging from the ceiling.

While those are all amazing uses of video security technology, lets focus on a smaller, but equally important scale – the small and medium business.

What are the basic essentials required in order to provide a secure environment and to protect the assets of your small or medium business?

• For one, you have to secure your premise with locks so that when you are not present, people cannot access your facility and carry anything out the door they wish.
• You should have a burglar alarm for intrusion detection should someone breach the door locks and gain access.
• A clear line of site to your building and bright outside lighting could deter someone from snooping about after hours.
• Having good communication with alert business neighbors might let you know when someone is lurking around
• Personnel trained to lock doors properly and arm the security system is a must

Those are the steps most of us take in securing our property.

But what about having eyes on your property when you are not there? It could be the cheapest insurance you might ever buy.

What would a basic video surveillance system look like?

In the most simplistic form, you might have a camera on the front parking lot, one on the main entrance to your building, one on the outside looking at the rear entrance, and potentially a camera in a common area inside your building. This would provide views of most of the areas where people come and go and could protect you in the following situation:

• Someone breaks into a car in the parking lot – you might see the people who did it and have a good description.
• A courier could back into a vehicle and leave and upon reviewing the recorded video, you could find out which courier it was.
• Slip and fall type accidents could be reviewed and footage used in court to show what really happened.

As a bonus, you also know when your employees arrive and leave, so if you have suspicions of “buddy punching” where an employee leaves early and gets a coworker to clock them out on time, you can quickly pinpoint that.

If employees are horsing around behind the building, you also can easily determine that and footage can be used so they cannot say you terminated them wrongfully.

Rear entrances can remain locked, and a buzzer installed – a receptionist could see who was outside the door before heading to unlock it (or hitting the release button).

If you are an absentee business owner, where you find yourself away, you can use a mobile app or a web browser to watch your cameras in real-time. A camera can be configured to email you a snapshot whenever anyone walks into a specific area it can see.

A camera on a back entrance could also potentially catch an air conditioner thief, as they back their vehicle right up to the unit to steal it, you might get their license.

More elaborate systems might employ 8, 16, or more cameras, and watch specific assets, such as a vending machine, cash register or HVAC system.

If you are interested in this type of technology, it is more affordable than ever! Homeland Secure IT is happy to offer the biggest names in video surveillance! Our most recent partnership is with AXIS, the originator of IP camera systems.

Obviously, it is easy to see that having a video surveillance solution in place is not only a deterrent to would-be criminals and employees who might be tempted in your absence, but it also may protect your legally, assist in the apprehension of criminals after the fact, and most importantly, give you peace of mind while you are away!

We offer both sales and installation, as well as consultation.  Please call us at 864-990-4748 or use our contact form on our website for additional information!

Want to see some footage from a video security system used at a remote location? Check THIS LINK…   And watch for the follow up, as the people featured will surely be caught soon now that the video has been released.

As I sit in a webinar this morning regarding a product we offer, I realize that I have done a poor job of increasing awareness of it to our customers!

Microsoft has been offering a hosted email solution for a while now, allowing even the smallest of businesses to have a full Microsoft Exchange experience just like a large fortune 500 business would have.

If you do not have Microsoft Exchange currently then you are missing out on some of these features – If you DO have Exchange, you get all of the features you have now, and some added benefits:

• Mail hosted on reliable, redundant and backed up servers, which you do not have to pay to maintain.
• When you leave your office, you can still access every single email, calendar entry and contact from your mobile device or notebook. When you send email from out of your office, it can appear you sent it as though you were sitting at your desk. It doesn’t matter if you have a Microsoft Windows PC, Android, iPhone, iPad, or an Apple Mac – you can still get all of your email anywhere, as long as you have an internet connection!
• You can share your data (collaborate) with others. Meaning, you can give your receptionist access to view your calendar for planning purposes.
• Create a distribution group, so one email from a client goes to multiple people within your organization without the need for you to forward the email.
• Never worry about storage again… If you need more, you can expand, without paying for a new server.
• Zero maintenance on the server, upgrades to new versions of the software do not require a day or more of downtime.
• Backups are handled for you…. You don’t have to manage tapes or cartridges.
• You can use your own version of Outlook, or you can use a web based client, or in some packages, you can get the latest version of Office in a downloadable subscription format
• Whether you need email for five people or for 5000, Microsoft Office 365 can work for you. You can start with a small number and add “seats” as your company grows.

Want to give it a test drive? Here’s a link that allows you to try out all of the features of the flagship Microsoft Office 365 Enterprise E3 product absolutely free!

FREE MICROSOFT OFFICE 365 TRIAL

We’ve added a syndicated “mini site” that will give you more information as well, and it can be found here:

http://www.homelandsecureit.com/microsoft-office-365/

Confused as to whether a hosted / cloud based solution is right for your business? Give us a call at 864-990-4748 and we will be happy to evaluate your needs. We’re both a Microsoft partner and a Microsoft Small Business Specialist and we know what it takes to keep your mail flowing.

These apply to not only Microsoft Windows based machines, but also to Apple Macintosh computers.

Complete control over your machine could be obtained by exploiting the flaws outlined.

As always – UPDATE your machines and protect yourself. Do not hesitate.

Should you require assistance with these or any other security related issues or computer service in general for your Greenville based business, please call us at 864.990.4748 or use our contact form on our website.

Bulletins and advisories for this month

Let me just say… Update your Microsoft Windows based computers.

As you will see below, the biggest vulnerability is your Internet Explorer, which should be updated, even if you are using another browser.

Should you require assistance installing these or any other security updates, please call upon us in the Upstate of SC.

We can also provide patch management which will apply updates across your entire network and permit the ability to see the status of each machine without visiting them individually.

864-990-4748 or use the contact link on our website for more information…

Here’s the full Security Bulletin from Microsoft:

********************************************************************
Microsoft Security Bulletin Summary for April 2013
Issued: April 9, 2013
********************************************************************

This bulletin summary lists security bulletins released for April 2013.

The full version of the Microsoft Security Bulletin Summary for April 2013 can be found at http://technet.microsoft.com/security/bulletin/ms13-apr.

With the release of the bulletins for April 2013, this bulletin summary replaces the bulletin advance notification originally issued on April 4, 2013. For more information about the bulletin advance notification service, see http://technet.microsoft.com/security/bulletin/advance.

To receive automatic notifications whenever Microsoft Security Bulletins are issued, subscribe to Microsoft Technical Security Notifications at http://technet.microsoft.com/security/dd252948.

Microsoft is hosting a webcast to address customer questions on these bulletins on April 10, 2013, at 11:00 AM Pacific Time (US & Canada). Register for the Security Bulletin Webcast at http://technet.microsoft.com/security/bulletin.

Microsoft also provides information to help customers prioritize monthly security updates with any non-security, high-priority updates that are being released on the same day as the monthly security updates. Please see the section, Other Information.

Critical Security Bulletins
============================

MS13-028

- Affected Software:
- Windows XP Service Pack 3
- Internet Explorer 6
- Internet Explorer 7
- Internet Explorer 8
- Windows XP Professional x64 Edition Service Pack 2
- Internet Explorer 6
- Internet Explorer 7
- Internet Explorer 8
- Windows Server 2003 Service Pack 2
- Internet Explorer 6
- Internet Explorer 7
- Internet Explorer 8
- Windows Server 2003 x64 Edition Service Pack 2
- Internet Explorer 6
- Internet Explorer 7
- Internet Explorer 8
- Windows Server 2003 with SP2 for Itanium-based Systems
- Internet Explorer 6
- Internet Explorer 7
- Windows Vista Service Pack 2:
- Internet Explorer 7
- Internet Explorer 8
- Internet Explorer 9
- Windows Vista x64 Edition Service Pack 2:
- Internet Explorer 7
- Internet Explorer 8
- Internet Explorer 9
- Windows Server 2008 for 32-bit Systems Service Pack 2:
- Internet Explorer 7
- Internet Explorer 8
- Internet Explorer 9
(Windows Server 2008 Server Core installation not affected)
- Windows Server 2008 for x64-based Systems Service Pack 2:
- Internet Explorer 7
- Internet Explorer 8
- Internet Explorer 9
(Windows Server 2008 Server Core installation not affected)
- Windows Server 2008 for Itanium-based Systems Service Pack 2
- Internet Explorer 7
- Windows 7 for 32-bit Systems:
- Internet Explorer 8
- Internet Explorer 9
- Windows 7 for 32-bit Systems Service Pack 1:
- Internet Explorer 8
- Internet Explorer 9
- Internet Explorer 10
- Windows 7 for x64-based Systems:
- Internet Explorer 8
- Internet Explorer 9
- Windows 7 for x64-based Systems Service Pack 1:
- Internet Explorer 8
- Internet Explorer 9
- Internet Explorer 10
- Windows Server 2008 R2 for x64-based Systems:
- Internet Explorer 8
- Internet Explorer 9
(Windows Server 2008 R2 Server Core installation
not affected)
- Windows Server 2008 R2 for x64-based Systems
Service Pack 1:
- Internet Explorer 8
- Internet Explorer 9
- Internet Explorer 10
(Windows Server 2008 R2 Server Core installation
not affected)
- Windows Server 2008 R2 for Itanium-based Systems and
Windows Server 2008 R2 for Itanium-based Systems Service
Pack 1
- Internet Explorer 8
- Windows 8 for 32-bit Systems
- Internet Explorer 10
- Windows 8 for 64-bit Systems
- Internet Explorer 10
- Windows Server 2012
- Internet Explorer 10
(Windows Server 2012 Server Core installation not affected)
- Windows RT
- Internet Explorer 10
- Impact: Remote Code Execution
- Version Number: 1.0

MS13-029

- Affected Software:
- Windows XP Service Pack 3
- Remote Desktop Connection 6.1 Client
- Remote Desktop Connection 7.0 Client
- Windows XP Professional x64 Edition Service Pack 2
- Remote Desktop Connection 6.1 Client
- Windows Server 2003 Service Pack 2
- Remote Desktop Connection 6.1 Client
- Windows Server 2003 x64 Edition Service Pack 2
- Remote Desktop Connection 6.1 Client
- Windows Vista Service Pack 2
- Remote Desktop Connection 6.1 Client
- Remote Desktop Connection 7.0 Client
- Windows Vista x64 Edition Service Pack 2
- Remote Desktop Connection 6.1 Client
- Remote Desktop Connection 7.0 Client
- Windows Server 2008 for 32-bit Systems Service Pack 2
- Remote Desktop Connection 6.1 Client
(Windows Server 2008 Server Core installation not affected)
- Windows Server 2008 for x64-based Systems Service Pack 2
- Remote Desktop Connection 6.1 Client
(Windows Server 2008 Server Core installation not affected)
- Windows Server 2008 for Itanium-based Systems Service Pack 2
- Remote Desktop Connection 6.1 Client
- Windows 7 for 32-bit Systems and
Windows 7 for 32-bit Systems Service Pack 1
- Remote Desktop Connection 7.0 Client
- Windows 7 for x64-based Systems and
Windows 7 for x64-based Systems Service Pack 1
- Remote Desktop Connection 7.0 Client
- Windows Server 2008 R2 for x64-based Systems and
Windows Server 2008 R2 for x64-based Systems Service Pack 1
- Remote Desktop Connection 7.0 Client
(Windows Server 2008 R2 Server Core installation not affected)
- Windows Server 2008 R2 for Itanium-based Systems and
Windows Server 2008 R2 for Itanium-based Systems Service
Pack 1
- Remote Desktop Connection 7.0 Client
- Impact: Remote Code Execution
- Version Number: 1.0

Important Security Bulletins
============================

MS13-030

- Affected Software:
- Microsoft SharePoint Server 2013
- Impact: Information Disclosure
- Version Number: 1.0

MS13-031

- Affected Software:
- Windows XP Service Pack 3
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003 Service Pack 2
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Vista Service Pack 2
- Windows Vista x64 Edition Service Pack 2
- Windows Server 2008 for 32-bit Systems Service Pack 2
(Windows Server 2008 Server Core installation affected)
- Windows Server 2008 for x64-based Systems Service Pack 2
(Windows Server 2008 Server Core installation affected)
- Windows Server 2008 for Itanium-based Systems Service Pack 2
- Windows 7 for 32-bit Systems and
Windows 7 for 32-bit Systems Service Pack 1
- Windows 7 for x64-based Systems and
Windows 7 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for x64-based Systems and
Windows Server 2008 R2 for x64-based Systems Service Pack 1
(Windows Server 2008 R2 Server Core installation affected)
- Windows Server 2008 R2 for Itanium-based Systems and
Windows Server 2008 R2 for Itanium-based Systems Service
Pack 1
- Windows 8 for 32-bit Systems
- Windows 8 for 64-bit Systems
- Windows Server 2012
(Windows Server 2012 Server Core installation affected)
- Windows RT
- Impact: Elevation of Privilege
- Version Number: 1.0

MS13-032

- Affected Software:
- Windows XP Service Pack 3
- Active Directory Application Mode (ADAM)
- Windows XP Professional x64 Edition Service Pack 2
- Active Directory Application Mode (ADAM)
- Windows Server 2003 Service Pack 2
- Active Directory
- Active Directory Application Mode (ADAM)
- Windows Server 2003 x64 Edition Service Pack 2
- Active Directory
- Active Directory Application Mode (ADAM)
- Windows Server 2003 with SP2 for Itanium-based Systems
- Active Directory
- Windows Vista Service Pack 2
- Active Directory Lightweight Directory Service (AD LDS)
- Windows Vista x64 Edition Service Pack 2
- Active Directory Lightweight Directory Service (AD LDS)
- Windows Server 2008 for 32-bit Systems Service Pack 2
- Active Directory Services
- Active Directory Lightweight Directory Service (AD LDS)
(Windows Server 2008 Server Core installation affected)
- Windows Server 2008 for x64-based Systems Service Pack 2
- Active Directory Services
- Active Directory Lightweight Directory Service (AD LDS)
(Windows Server 2008 Server Core installation affected)
- Windows 7 for 32-bit Systems and
Windows 7 for 32-bit Systems Service Pack 1
- Active Directory Lightweight Directory Service (AD LDS)
- Windows 7 for x64-based Systems and
Windows 7 for x64-based Systems Service Pack 1
- Active Directory Lightweight Directory Service (AD LDS)
- Windows Server 2008 R2 for x64-based Systems and
Windows Server 2008 R2 for x64-based Systems Service Pack 1
- Active Directory Services
- Active Directory Lightweight Directory Service (AD LDS)
(Windows Server 2008 R2 Server Core installation affected)
- Windows 8 for 32-bit Systems
- Active Directory Lightweight Directory Service (AD LDS)
- Windows 8 for 64-bit Systems
- Active Directory Lightweight Directory Service (AD LDS)
- Windows Server 2012
- Active Directory Services
(Windows Server 2012 Server Core installation affected)
- Impact: Denial of Service
- Version Number: 1.0

MS13-033

- Affected Software:
- Windows XP Service Pack 3
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003 Service Pack 2
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Vista Service Pack 2
- Windows Vista x64 Edition Service Pack 2
- Windows Server 2008 for 32-bit Systems Service Pack 2
(Windows Server 2008 Server Core installation affected)
- Windows Server 2008 for x64-based Systems Service Pack 2
(Windows Server 2008 Server Core installation affected)
- Windows Server 2008 for Itanium-based Systems Service Pack 2
- Impact: Elevation of Privilege
- Version Number: 1.0

MS13-034

- Affected Software:
- Windows Defender for Windows 8 and Windows RT
- Impact: Elevation of Privilege
- Version Number: 1.0

MS13-035

- Affected Software:
- Microsoft InfoPath 2010 Service Pack 1 (32-bit editions)
- Microsoft InfoPath 2010 Service Pack 1 (64-bit editions)
- Microsoft SharePoint Server 2010 Service Pack 1
- Microsoft Groove Server 2010 Service Pack 1
- Microsoft SharePoint Foundation 2010 Service Pack 1
- Microsoft Office Web Apps 2010 Service Pack 1
- Impact: Elevation of Privilege
- Version Number: 1.0

MS13-036

- Affected Software:
- Windows XP Service Pack 3
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003 Service Pack 2
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Server 2003 with SP2 for Itanium-based Systems
- Windows Vista Service Pack 2
- Windows Vista x64 Edition Service Pack 2
- Windows Server 2008 for 32-bit Systems Service Pack 2
(Windows Server 2008 Server Core installation affected)
- Windows Server 2008 for x64-based Systems Service Pack 2
(Windows Server 2008 Server Core installation affected)
- Windows Server 2008 for Itanium-based Systems Service Pack 2
- Windows 7 for 32-bit Systems and
Windows 7 for 32-bit Systems Service Pack 1
- Windows 7 for x64-based Systems and
Windows 7 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for x64-based Systems and
Windows Server 2008 R2 for x64-based Systems Service Pack 1
(Windows Server 2008 R2 Server Core installation affected)
- Windows Server 2008 R2 for Itanium-based Systems and
Windows Server 2008 R2 for Itanium-based Systems Service
Pack 1
- Windows 8 for 32-bit Systems
- Windows 8 for 64-bit Systems
- Windows Server 2012
(Windows Server 2012 Server Core installation affected)
- Windows RT
- Impact: Elevation of Privilege
- Version Number: 1.0

It’s that time of year again when ISPs (Internet Service Providers)  all around the world perform their yearly maintenance, call it “Spring Cleaning” if you will.

If you have been living under a rock and missed the stories on the news and the countless emails flying around for the last week or so, then this may come as a total surprise to you. Newcomers to technology may also be taken by surprise.

In the past, Internet Cleaning Day has taken place during a 24hr period, but due to new techniques, ISPs have managed to narrow it down to only 1 hour which they have conveniently scheduled for 12pm to 1pm in each time zone.

While normal analog phone systems are not going to be affected, VoIP systems WILL be… This is often overlooked! You should follow the same procedure if your business is using Voice over IP technology. If you are unsure, it is best to disconnect the cables and place in the same container as your network cables.

This never happens….  Welllll, I can’t say “never” after I post this…

One of our favorite vendors is having a sale and we are passing the savings on to you. Nexlink is offering 25 dollars off their prebuilt business computers, and if you order today (Wednesday March 27, 2013) through Friday the 29th, we can knock 25 dollars off the already great price, AND bump that warranty up to FIVE YEARS at absolutely no additional charge. (That’s actually 74 dollars saving over our normal price!)

Here’s what is available at this great pricing:

Nexlink Express 1125 i3 w8d – Intel Core i3-3220 3.30Ghz, 4GB RAM, 500GB hard drive w/Windows 7 Pro downgrade and FIVE YEAR manufacturer warranty – 676.oo

Nexlink Express 1125 i5 w8d – Intel Core i5-3330 3.0Ghz, 4GB RAM, 1TB hard drive w/ Windows 7 Pro downgrade and FIVE YEAR manufacturer warranty – 750.oo

Nexlink Express 1125 PENTW8D – Intel Pentium G645 2.9Ghz, 4GB RAM, 500GB hard drive, w/ Windows 7 Pro downgrade and FIVE YEAR manufacturer warranty – 614.oo

Please note, these are BUSINESS computers! They don’t come loaded down with junk, they incredible warranties, and they are made with better components, such as genuine Intel motherboards, than you would find on off-the-shelf systems.

We have 100% customer satisfaction on these!

If you need one, or one thousand, we can help you or your business out, so please give us a call at 864-990-4748 or use our contact form on the website. Please note, we are closed for Good Friday, but if you contact us via email, or call on that day, I will insure you get this special.   We accept Visa and MC, and if you are ordering multiples, we may be able to arrange financing for you.

We also offer full computer service and computer support – we can install and migrate your data and configure these computers for your network!

We hope that you have plans to spend time reflecting on what this time of year means and that you can enjoy it with your family.

As always, if you have an emergency and require computer service, you can call us or email us and we will return your call or email ASAP!

Happy Easter!

Once you get past that totally different interface, and the login if you are on a domain, one annoying trait that may tweak your shorts is the forced automatic restart after updates are applied. You would notice that where Windows keeps saying that your machine is going to reboot and actually starts to count down. How annoying, right?

Even though this behavior is annoying, it has a purpose! When “Patch Tuesday” comes around, and these updates are pushed to your computer and installed, it needs to reboot in order to close out the vulnerable components and patch them so you are protected from nasty exploits.

Failure to apply and activate updates can (and does) lead to machines which are in a vulnerable state, and visiting malicious websites, or opening malicious documents, even though the updates have been installed, but the machine is not rebooted, may result in viruses, trojans, worms and other malware being installed.

I think that was redundant, but I really want you to understand just how important these updates are!

That being said… Should you get too annoyed by the forced reboots, there’s a potential way around this by using the Group Policy Editor.   That setting is found under Local Computer Policy, Computer Configuration, Administrative Templates, Windows Components, Windows Update…    Just set “No auto-restart with logged on users for scheduled automatic updates installation” to “Enabled”.

But don’t do it, unless you have another means for maintaining your patch management.  Really, don’t do it.

If you would like to talk with someone about patch management, windows security, network security or anything computer support related for you or your business in the Upstate SC area, please call us at 864-990-4748 or use our contact form on our website.

We don’t often have prices that beat most of the online retailers, but today, we do!

If you are in need of an Android tablet that was designed with business use in mind, then this might be for you….

Fujitsu Stylistic M532 Built Tough Tablet PC is MIL-STD-810 tested and ready!

The Fujitsu M532 is a worthy candidate to consider for business users on a budget. It’s Built Tough – MIL-STD-810G tested rating definitely qualifies it as durable enough for business users.

The Core Features of the Fujitsu Stylistic M532:

• Powered by NVIDIA ® Tegra® 3 T30S, Quad-core ARM Cortex A9 processor
• Android™ 4.0 Operating System
• Attractive, slim design with light weight
• TFT (IPS-type) display for wide viewing
• Rugged glass protects the display
• Built-Tough: MIL-STD-810G tested
• Only $399 (plus tax) you pick up at our location in Greenville, SC

If you would like one, act NOW, call us at 864-990-4748 x201 or use our contact form at www.HomelandSecureIT.com.

Supplies are extremely limited….

It is important that you apply these updates to your computers and servers in order to keep your network secure.

Let’s start with Adobe – Four Flash security holes have been plugged in Flash Player 11.6.602.171 and earlier across all platforms.  Yes, that means you Apple Mac and Linux users need to get the updated Player version 11.6.602.180 or newer. Failure to do so could result in code being executed on your computer that could give a remote user complete control over it.

Next up…. Microsoft!

Products with updates include Microsoft Internet Explorer, Microsoft Office Suite (Visio Viewer 2010, SharePoint Server 2010, OneNote 2010, Office Outlook for Mac) and Silverlight 5 for both PC and Mac computers have a multitude of issues, with four critical bulletins.

Again, these updates should be installed as soon as possible.

If you or your organization requires assistance, please let us know. We can assist here in Upstate & Greenville SC with all your desktop, server and network security needs. We are an authorized Microsoft Partner and provide sales, service and support of their entire line of offerings. We can keep your computers secure, and in the event they need a virus cleaned off or removed, we can assist with that too!

Businesses wanting to employ the use of a patch management system, which will collect information about desktops, notebooks and other devices on their network, and push out updates from an easy to monitor server should contact us for more information!

864-990-4748 or use the contact link on our website.

We’re happy to announce that Homeland Secure IT has renewed our Microsoft Education Reseller status and are good for another year.

What does that mean?  Besides having to demonstrate that we know what we are doing through taking an exam, we have to actually have a clue about the sales of Microsoft products specifically available to the academic organizations we serve.

By maintaining our relationship as an AER (Authorized Education Reseller), we can offer Academic Volume Licensing which is not only convenient, but more affordable than retail, or standard open licensing.

It is available in as subscription model or even perpetual licenses.

If you are interested in this type of product, give us a call at 864-990-4748 in the Upstate / Greenville SC area.  We not only offer the sales, but also consultation, installation and maintenance of Microsoft software!

I’m not talking about computer or server service, I’m talking about automobile service this time.

If you follow me on social media, you probably saw me whining about my car issues recently, so skip the next couple paragraphs. For those who are not in the know, here’s the story.

On Tuesday, after several days of my car sitting in the driveway, including a missed day of work due to a horrible cold, I went to start the old bomb and … nothing. Not even a click.  The battery was completely dead. No big deal. I have a charger, which I dug out and tried. It did not want to cooperate at first, but finally, it began to charge the car and within 15 minutes, I was up and running. Well, let’s say I got to work.  But the car was not running well.  It was “bucking”, lunging forward at stop signs and lights, and even dying in intersections.  UGH! No fun at all.

After the vehicle sat at work, it wouldn’t start up… Completely dead.  And I wasn’t smart enough to bring the charger along, so Pamela came running to my rescue, driving back from Easley to Greenville (Where she had been 30 minutes earlier) with that charger. Made it home, and then charged it all night. So it started fine on Wednesday morning, but it didn’t want to run well.   Made it to a meeting though, and from there, went to an auto parts place.

I bought a new battery… Fixed the starting problem!   Didn’t fix the RUNNING problem.  Changed the air filter, added some octane booster (fuel injector cleaner hokus pokus stuff), cleaned the throttle body, MAF, etc.  No change.  Bought a can of ether (starting fluid) and sprayed around vacuum lines, looking for leaks… Nothing.  Drove it to Clemson, and at a crosswalk, the car lunged forward, towards kids crossing the street. Uhm ENOUGH!

I took it by Roots Goodyear in Easley, and they were backed up with a ton of clients. But still, about 5pm, Bob Root calls and tells me the car is ready.

When I dropped it off, I explained to him that I thought it could be something like a throttle position sensor, and we discussed coils (of which there are 6, and one has been replaced already).  So we were looking at repairs that could have been 200, 300, even 500 dollars.   I told him that I had to have it fixed, I have to get to work.  And I told him to change the oil too with a synthetic.

You wanna know how much the bill was?  Less than 80 dollars.   For the fix of the “bucking” and the oil service.

That’s excellent.  And you know what? It could have been so much worse for me.  If it had been another shop, I am not sure it would have been an 80 dollar repair.  Here’s a self-professed gearhead (me), telling a shop to fix a car. An unscrupulous repair facility might see that opportunity and wrack up a heck of a bill.

Not Bob Root.  Not yesterday. Not ever.

That’s why our family continues to use him. We always get a fair shake.   An honest and trustworthy business is difficult, but great to find.

Pamela and I strive to provide the same type of honest and reliable service here at Homeland for your business computer, server and network repairs. You will never have us replacing parts that we don’t know for sure are bad. We don’t suggest the replacement of a computer just because we make a fortune off of selling you a new one. We want to have you as a customer for a very long time, just like Root’s Goodyear will have us as a patron for a very long time!

THANK YOU BOB… For fast, reliable and affordable service… Hopefully we can return the favor sometime.

If YOU need car service, you know who I recommend…..

Root’s Goodyear Tire & Service
6804 Calhoun Memorial Hwy  Easley, SC 29640
(864) 306-6901

Gasoline has started its seasonal increase in cost, as I am sure you have noticed.

Why does it cost of fluctuate? One reason is that as we move towards summer months, additives are implemented which are mandated to be used between April and September in a bid to reduce pollutants. The process costs money, as do the additives, and that is passed on to us. Another reason is an increase in travel, and obviously, the price is going to raise as high as the market will possibly support.

An article caught my eye and made me wonder if another issue may affect us at some point might be Malware.

The article’s headline says it all, “Some Off-Shore Oil Rigs have been “Incapacitated” By Malware Thanks to Pirated Music and Porn“… Follow the link through to read about how there are fears that malware on an oil rig could cause a blowout, explosion or oil spill and even the loss of life.

And I guess it just illustrates that bored workers with access to computers will do what they do best – waste time.

If you would like to discuss how we can keep your Greenville workers from becoming infected, please give us a call at 864-990-4748 – Infection at your workplace may not cause a “blowout”, but it could still potentially cost your company lots of money in downtime and recovery.

ALL systems, including Apple Mac, Microsoft Windows, Windows Server, Linux, that are running Java may be vulnerable.

Here’s the latest US-CERT Alert for February 20th in its entirety.

—

—–BEGIN PGP SIGNED MESSAGE—–

Hash: SHA1

National Cyber Awareness System

US-CERT Alert TA13-051A
Oracle Java Multiple Vulnerabilities

Original release date: February 20, 2013 Last revised: –

Systems Affected

Any system using Oracle Java including

* JDK and JRE 7 Update 13 and earlier
* JDK and JRE 6 Update 39 and earlier
* JDK and JRE 5.0 Update 39 and earlier
* SDK and JRE 1.4.2_41 and earlier

Web browsers using the Java plug-in are at high risk.

Overview

Multiple vulnerabilities in Java could allow an attacker to execute
arbitrary code on a vulnerable system.

Description

The Oracle Java SE Critical Patch Update Advisory Update for
February 2013 addresses multiple vulnerabilities in the Java
Runtime Environment (JRE). An additional five fixes that had been
previously planned for delivery are in this update. This
distribution therefore completes the content for all originally
planned fixes to be included in the Java SE Critical Patch Update
for February 2013.

Both Java applets delivered via web browsers and stand-alone Java
applications are affected, however web browsers using the Java
plug-in are at particularly high risk.

The Java plug-in, the Java Deployment Toolkit plug-in, and Java Web
Start can be used as attack vectors. An attacker could use social
engineering techniques to entice a user to visit a link to a
website hosting a malicious Java applet. An attacker could also
compromise a legitimate website and upload a malicious Java applet
(a “drive-by download” attack).

Some vulnerabilities affect stand-alone Java applications,
depending on how the Java application functions and how it
processes untrusted data.

Reports indicate that at least one of these vulnerabilities is
being actively exploited.

Impact

By convincing a user to load a malicious Java applet or Java
Network Launching Protocol (JNLP) file, an attacker could execute
arbitrary code on a vulnerable system with the privileges of the
Java plug-in process.

Stand-alone java applications may also be affected.

Solution

Update Java

The Oracle Java SE Critical Patch Update Advisory Update for
February 2013 states that Java 7 Update 15 and Java 6 Update 41
address these vulnerabilities.

Disable Java in web browsers

These and previous Java vulnerabilities have been widely targeted
by attackers, and new Java vulnerabilities are likely to be
discovered. To defend against this and future Java vulnerabilities,
consider disabling Java in web browsers until adequate updates have
been installed. As with any software, unnecessary features should
be disabled or removed as appropriate for your environment.

Starting with Java 7 Update 10, it is possible to disable Java
content in web browsers through the Java control panel applet. From
Setting the Security Level of the Java Client:

For installations where the highest level of security is required,
it is possible to entirely prevent any Java apps (signed or
unsigned) from running in a browser by de-selecting Enable Java
content in the browser in the Java Control Panel under the Security
tab.

If you are unable to update to at least Java 7 Update 10, please
see the solution section of Vulnerability Note VU#636312 for
instructions on how to disable Java on a per-browser basis.

Restrict access to Java applets

Network administrators unable to disable Java in web browsers may
be able to help mitigate these and other Java vulnerabilities by
restricting access to Java applets using a web proxy. Most web
proxies have features that can be used to block or whitelist
requests for .jar and .class files based on network location.
Filtering requests that contain a Java User-Agent header may also
be effective. For environments where Java is required on the local
intranet, the proxy can be configured to allow access to Java
applets hosted locally, but block access to Java applets on the
internet.

References

* Oracle Java SE Critical Patch Update Advisory Update – February
2013
<http://www.oracle.com/technetwork/topics/security/javacpufeb2013update-1905892.html>

* Setting the Security Level of the Java Client
<http://docs.oracle.com/javase/7/docs/technotes/guides/jweb/client-security.html>

* The Security Manager
<http://docs.oracle.com/javase/tutorial/essential/environment/security.html>

* How to disable the Java web plug-in in Safari
<https://support.apple.com/kb/HT5241>

* How to turn off Java applets
<https://support.mozilla.org/en-US/kb/How%20to%20turn%20off%20Java%20applets>

* NoScript
<http://noscript.net/>

* Securing Your Web Browser
<https://www.us-cert.gov/reading_room/securing_browser/#Safari>

* Vulnerability Note VU#636312
<http://www.kb.cert.org/vuls/id/636312#solution>

Revision History

February 20, 2013: Initial release

____________________________________________________________________

Feedback can be directed to US-CERT Technical Staff. Please send
email to <cert@cert.org> with “TA13-051A Feedback ” in
the subject.
____________________________________________________________________

Produced by US-CERT, a government organization.
____________________________________________________________________

This product is provided subject to this Notification:

http://www.us-cert.gov/privacy/notification.html

Privacy & Use policy:

http://www.us-cert.gov/privacy/

This document can also be found at

http://www.us-cert.gov/cas/techalerts/TA13-051A.html

For instructions on subscribing to or unsubscribing from this mailing list, visit http://www.us-cert.gov/cas/signup.html
—–BEGIN PGP SIGNATURE—–
Version: GnuPG v1.4.5 (GNU/Linux)

iQEVAwUBUSTaW3dnhE8Qi3ZhAQICaQf/SaqOpnQuVQ88Tq98/3wMwyHUHRu+Vj0f
vJlK9q2/Mc6kQxPYqWv9Ef8nTMAODAZzvWagcrhKRtvYgl0VMsmNkxSwsc94N8AT
tp6lknZwtKoEztvmwiCTPe6ad/IZWbg+PuYJlgy3UUaN0Wqsk1yKEkvshG3G4w0+
7azUTjgHWK3gmyofkOZgZVFgp+VupHBJH6v+n3H1TvMw6hTbS8takF9ZJbdUI1VJ
MNKC0O/v8cl713C0/wslgf704sB029E7QFBzWEjrzgas+a+026OETSr3y9zWCzk1
KgzLuL3Tww7ijwAKyU4Pe+09f4e3t9XtPoTcRJQysTYjTBZFbKlLCg==
=U2lT
—–END PGP SIGNATURE—–

Yesterday, Apple Inc announced that computers within their own network have been exploited.  Mac computers in other companies have also been exploited.

It’s always a heated subject whenever I mention that more and more Apple Macs are becoming compromised. Very passionate people will argue with me until they are blue in the face about how Microsoft Windows machines are more vulnerable, and that their Mac never gets infected. However, I must add this in – as a provider of business computer service and support. We have seen a steady decline in malware on Windows 7 computers, and no infections as of this date on Windows 8. While, Mac issues are increasing.

Here’s a link to the Reuters story.

As always, regardless of whether you own a Windows based computer or a Mac, please take these simple steps at the very least to help insure the security of your computer:

• Keep your machine’s operating system up to date with patches!
• Keep all applications, such as Microsoft Office, Adobe Reader up to date with patches
• Support applications such as JAVA should be kept up to date (and some feel disabled or uninstalled
• Use current COMMERCIAL anti-virus which permits the scanning of websites in real time (We suggest Trend Micro)
• Avoid sketchy websites, don’t open emails (You didn’t win the Microsoft Lotto, trust me)
• If you feel you have been exposed, seek a professional immediately
• Watch those public hot spots if using a notebook (man-in-the-middle)
• Do not give permission for anything to install that you didn’t initiate
• Go straight to Adobe or other software provider for your updates
• Don’t initiate a scan for malware if prompted while visiting a website

Should you need assistance with any computer or network security issue for your home or business in the Greenville or Upstate SC area, please do not hesitate to call upon us at 864-990-4748 or use our contact form.

Today, on my daily drive in to work, I passed an unusual scene that caught my eye…  A number of Easley PD vehicles were in the parking lot of the Easley Cinema 8 movie theater.

As I made my way back to the location, I spotted officers clad in camouflage entering a back door with weapons drawn. My first thought was that something had gone terribly wrong at the theater, images of the horrific 2012 Aurora Colorado shooting filled my head. Then, I came to my senses. It was 10:00 AM on a weekday, and the police vehicles were neatly backed in.  This had to be a drill.

The first officer I made contact with confirmed that was what was going on.  I then asked him if I could snap a few pictures, not wanting to simply go plastering the web and TV with images that could reveal details that would give a potential perpetrator any kind of tactical advantage. This officer was understandably not keen on it, but gave me the name of the person in charge, who I reached out to in hopes of giving me permission to share this newsworthy event.

Major Tim Tollison of the Easley Police Department was more than generous in giving me a rundown of the exercise unfolding. In short, Major Tollison explained that their newly formed tactical unit was undergoing training on “hostage and active shooter scenarios”. The vice-president of REI Cinemas, Don Massingill, was also present and stated that,  ”REI Cinemas is definitely committed to public safety and anything we can do to make their patrons safer and let the police be better trained, and we are happy to participate.”

I attempted to contact my friend and news diva, Amy Wood, with WSPA, but time was limited. The exercise had started at 8:00 AM and was soon to wrap up, leaving little time for a news crew to be dispatched. In lieu of the professionals being there, I was permitted to take a few pictures which I have posted on my Facebook account as well as a short video, which did not turn out nearly as well as I had hoped.

My personal reaction is that Easley’s new tactical response team is off to a great start! In watching them, I was left with the impression that these men know what they are doing, and if ever they have to use these skills, they are going to do a superb job of carrying out the task at hand. I know that

Pictures on Facebook HERE.

Video on Facebook HERE.

Major Tollison and Don Massingill statements HERE.

I give full permission to anyone wanting to use the information contained within this blog post or pictures, audio or video related to it, with two stipulations:  You credit John M. Hoyt and notify me of it’s usage using a pingback, tag, email, phone call or some other form of letting me know.

If you have purchased, or plan to purchase, a new computer with the OEM version of Microsoft Office 2013 on it, please understand that the installation of that Office 2013 can only be done on the computer it was first installed on.

In other words, let’s assume you buy a new computer from Homeland Secure IT along with Microsoft Office 2013 OEM / PKC, and 2 years later, you replace the computer. Previous versions of Microsoft Office would permit you to reinstall the OEM office that you originally purchased on a new computer, but, 2013 will NOT.

This is not anything new, as OEM / PKC versions of Microsoft Office have always been licensed for use with a new computer only. The license agreement expressly forbid you from installing it again on another computer.  Just like the OEM version of the Microsoft Windows Operating System. It was meant for one computer only. Without question, people have purchased the OEM version and then (against the license agreement) installed it on their next new computer too.

What IS new is that the RETAIL version of Microsoft Office will only allow you to load it on the first computer you install it on, then it is forever locked to that computer. That’s not just part of the EULA, it is apparently part of the registration mechanism.

Computer World and other computer news outlets have been obtaining more information, but it appears that this is true for the OEM, Academic, and the retail Home & Business versions.

You can read the Microsoft EULAs here: http://www.microsoft.com/en-us/legal/intellectualproperty/UseTerms/default.aspx

Homeland Secure IT is an authorized Microsoft reseller and partner… Offering the complete line of Microsoft products for sale in the Greenville / Upstate area. We can provide Office, Office 356 or Windows for one computer or one thousand.

Please call us if you have any questions or would like to purchase a Microsoft product. 864-990-4748

You should insure that updates are installed!

Should you require assistance applying these critical security updates to your computer or your entire network of computers, please call us at 864-990-4748. We specialize in providing computer and network service and support in Greenville, Spartanburg and Anderson South Carolina.

—

Here’s some reading for you regarding the Flash Windows and Mac Attacks:

http://securitywatch.pcmag.com/none/307887-adobe-patches-flash-windows-mac-users-under-attack

And the latest bulletin from MS:

********************************************************************
Title: Microsoft Security Advisory Notification
Issued: February 12, 2013
********************************************************************

Security Advisories Updated or Released Today ==============================================

* Microsoft Security Advisory (2755801)
  – Title: Update for Vulnerabilities in Adobe Flash Player in
    Internet Explorer 10
  – http://technet.microsoft.com/security/advisory/2755801
  – Revision Note: V8.0 (February 12, 2013): Added KB2805940 to
    the Current update section. 

Strap in….  Patches are ‘a comin’ to your Microsoft Windows based computer or Server on February 12, 2013, just in time for Valentine’s Day.

See, Microsoft DOES love you.  Never doubt.

That’s right! For the low, low price of only zero dollars, you will be receiving a number of feature loaded patches, the Microsoft Advance Notification for February 2013 says that you will be eligible for up to a dozen fun-packed bulletins worth of heart-felt updates.

There are five CRITICAL bulletins that affect Microsoft Windows, Internet Explorer and Microsoft Server Software. One absolutely requires a reboot, and it is suggested that you apply it and reboot afterwards. The penalties for avoiding these? Remote Code Execution! In layman’s terms, it means, your machine could be owned by the bad guys and they could have their way with it, scouring it for content, watching for you to log into your bank, or enter a credit card online.

The other bulletins are just as important, hence the label of “Important”, allowing remote code execution, denial of service and elevation of privilege to potentially ruin your day. The affected products are Windows Server Software, Microsoft Windows, Microsoft Office and the Microsoft .NET Framework.

Don’t delay, update today. Errrrrrm, well, after Patch Tuesday anyway!

While you are at it, you need to get the JAVA and Adobe Flash/Reader/Acrobat updates installed too, even if you are using an Apple Mac!

If you have questions, or need assistance with these or any other updates or security concerns in the Greenville or Upstate SC area, please call upon us at 864-990-4748 or use our contact links.

(More info about Compass of Carolina can be found at: http://www.compassofcarolina.org/)

Compass of Carolina is proud to announce the return of
South Carolina’s First Lady of Song – Loretta Holloway
on Friday, February 15th

For the first time ever-
ZOSO: The Ultimate Led Zeppelin Experience
on Saturday, February 16th!

Tickets are available now, so act fast because both shows are likely to sell out — amazing musical acts, amazing value and an amazing cause make this the best fund-raising weekend of the year! Without the musicians’ participation, there would be no event. These musicians are the “heart and soul” of this event that enables Compass of Carolina to help heal the “hearts and souls” of children, individuals and families in our community. Tickets are available for purchase at the Handlebar, Compass of Carolina and here online through EventBrite!

Order tickets via Eventbrite:
http://catb-efbevent.eventbrite.com

If you are using Java on your system… Please make sure it is up to date, or consider disabling it all together if you can live without it to decrease the likelihood you could become exploited.

A large number of the machines that we are aware of being infected with malicious software recently, have been as a direct result of Java and Adobe products, not the operating systems themselves.

This goes for Microsoft Windows XP and 7, and Apple Mac.

Should you need help with any virus or malware related issue, for your business or your personal computer in the Upstate SC area, please do not hesitate to call upon us at 864-990-4748.

Hopefully, you will be home, safe and sound yourself, but if you are not, and need assistance with your computer, server or network, please call or email us and we shall attempt to help remotely.

Be careful out there!

Every once in a while, something comes along that can make your life easier, while being affordable. The Jabra SPEAK 510 series bluetooth wireless conferencing system is exactly that.

Not so long ago, a business would have a conference take place in an actual conference room. However, these days, people might crowd around a computer in an office, or a speakerphone in the break room, and some might even be using Skype on an iPad on a business retreat. Usually with poor audio quality on both ends.

Jabra has taken notice and created the new SPEAK 510 and 510+ conferencing systems for use in just about any scenario!

These are portable devices that can wander up to 300 feet away and turn any room into a conference room!

You can use it wirelessly with ANY bluetooth phone, tablet or PC, or optionally tether it.

Using one could not be more simple thanks to very easy to understand controls.

If a Jabra conferencing system could be of use to your business, please contact us as we are your Greenville and Upstate SC Jabra dealer!  864-990-4748 for more information.