Homeland Secure IT Alert

Secure IT Alert for Thursday, February 2, 2012

If you are running a current version of Apple Mac OS X, 10.6.x or OS X 10.7.x  (Snow Leopard & Lion respectively), then you are vulnerable to exploits that these patches correct.

These security flaws could potentially allow an attacker to execute code on your computer after you visit a malicious web site or download/view affected documents or files, or allow Denial of Service (DoS) or even elevation of privileges.

How do you fix this? Apple has released OS X Security Update 2012-001 and OS X 10.7.3 to fix these security problems – UPDATE ASAP.

The 52 security vulnerabilities affect 27 components that are part of OS X and OS X server.  Some of the affected software includes: Apache, OpenGL, PHP, QuickTime and Time Machine.

A few examples:

Buffer overflow vulnerability in ImageIO – View a malicious image and it could result in a crash of an application, or code to be executed on your computer. The upside is, it would only execute with your privileges.

Buffer overflow vulnerability in CoreAudio – Play a malicious audio file and experience a crash of your system, or execute code with your privileges.

QuickTime vulnerabilities – Six of these babies could mean that if you open a malicious image or video in QT, code could be executed with your privileges.

The full update information can be found at http://support.apple.com/kb/HT5130

Should you require assistance in applying these updates, do not hesitate to call us in the Greenville or Upstate SC area at 864.990.4748 or email info@homelandsecureit.com

Homeland Secure IT Alert

#LeapIntoIT Kindle Fire Giveaway

It’s that time again!  Time for us to have some fun, and help one of our Upstate, SC friends get something cool to play with.

We’ve given away stuff before, like Trend Micro anti-virus, a wireless IP security camera, a Cisco Flip Mino HD video camera, Microsoft Office 2010, and even a Microsoft X-BOX 360, but this is likely the most exciting thing yet, or at least the 2nd most exciting!

We decided that since it is a Leap Year, we will help one person leap into the tablet computer revolution by giving them one of the hottest little tablets out… The Amazon Kindle Fire!  It is far more than just an eBook Reader, it’s a smokin’ hot tablet too!  So hot, it’s on FIRE! =)

Let’s call it the “Leap Into IT” giveaway!  #LeapIntoIT

Who is eligible?

Anyone who can walk into the Homeland Secure IT office at 104 Mauldin Rd, STE E in Greenville, SC to retrieve the tablet in person. We will NOT SHIP IT. Also, you must not be prohibited by law from participating in any giveaway, and all that legal mumbo-jumbo. Let’s put an age restriction on it too.  You must not be older than, no wait, you must be at least 18 to participate.

Employees of Homeland Secure IT cannot play this silly game because they would never get any work done.

Past winners of Homeland Secure IT giveaways ARE eligible (Andrea, James, Hal, etc)

How do you get involved in this?

There is NO purchase necessary, but there are some things that you will want to do…

• Pass through our initiation process – This is where you tattoo your forehead with the Homeland Secure IT logo. Okay, this is optional.
• Sign up to this blog by hitting the SUBSCRIBE BUTTON over in the right-hand column. You can receive the daily blog posts in email first thing in the morning this way. And you can opt out later (after the contest is over) when you get tired of my yammering…
• Sign up for our SUPER LOW traffic mailing lists HERE … We rarely send anything out, so you won’t be too annoyed. You can unsubscribe from either or both at anytime, AFTER the contest end date.
• Go to our home page at www.HomelandSecureIT.com and hit the Google +1 button & Facebook “like” while you are there.
• Go to our Google business places page and leave a review and rating (hopefully a good one)
• Go to Merchant Circle and leave a review/rating
• Go to Yelp and leave a review/rating
• Go to Yahoo! and leave a review/rating
• LIKE us on facebook HERE …     Follow us on Twitter HERE …

Here is a list of ways to connect:  

http://www.homelandsecureit.com/connect.html

If you connect in a different manner and you feel it is important, email me, or tag me in a post so I can see what you have done and count that as well!

In review, it is up to you to determine how much, or how little you wish to get involved. The more ways you connect, the more chances to get this darn Kindle Fire!

How is the selection made?

Good question! We lay out a grid, with your each name written in it in the parking lot, and we then shoot a gerbil straight into the air, and in whatever grid the gerbil falls into, that’s our winner.

Okay, (maybe) it isn’t like that at all.  No, in fact it is not.

On February 29th, 2012, I’ll take every name/email address from our mailing lists, all the names of those who have reviewed us on Yelp, Google Places, Yahoo! & Merchant Circle, all the mentions on Facebook, Twitter, Linked-In, all the Likes and Follows on Twitter, Facebook, Linked-In, all the Google Plus +1s, and dump them into a spread sheet. Next I go to www.Random.Org and put the number of lines in my spreadsheet as the max number and generate a random number.

Whoever matches that number in the spreadsheet is contacted.

If they are out of the area and cannot get it in person, another number will be selected and the process repeated until we have a winner!

So, with that said… Let’s do this!   Leap Into IT!!!!

http://www.symantec.com/connect/sites/default/files/pcAnywhere%20Security%20Recommendations%20WP_01_23_Final.pdf

The danger is that someone so inclined could potentially access your computer through vulnerabilities exposed from old source code, and gain full access to your computer, files and your network.

To sum it up, disabling pcAnywhere is a surefire way to protect yourself and your company.

If you have questions about this or any other security issue in the Greenville or Upstate SC area, please call upon Homeland Secure IT, we can help set your mind at ease.  864.990.4748

National Cyber Alert System

Technical Cyber Security Alert TA12-024A

“Anonymous” DDoS Activity

Original release date: January 24, 2012

Last revised: –

Source: US-CERT

Overview

US-CERT has received information from multiple sources about

coordinated distributed denial-of-service (DDoS) attacks with

targets that included U.S. government agency and entertainment

industry websites. The loosely affiliated collective “Anonymous”

allegedly promoted the attacks in response to the shutdown of the

file hosting site MegaUpload and in protest of proposed U.S.

legislation concerning online trafficking in copyrighted

intellectual property and counterfeit goods (Stop Online Piracy

Act, or SOPA, and Preventing Real Online Threats to Economic

Creativity and Theft of Intellectual Property Act, or PIPA).

I. Description

US-CERT has evidence of two types of DDoS attacks: One using HTTP

GET requests and another using a simple UDP flood.

The Low Orbit Ion Cannon (LOIC) is a denial-of-service attack tool

associated with previous Anonymous activity. US-CERT has reviewed

at least two implementations of LOIC. One variant is written in

JavaScript and is designed to be used from a web browser. An

attacker can access this variant of LOIC on a website and select

targets, specify an optional message, throttle attack traffic, and

monitor attack progress. A binary variant of LOIC includes the

ability to join a botnet to allow nodes to be controlled via IRC or

RSS command channels (the “HiveMind” feature).

The following is a sample of LOIC traffic recorded in a web server

log:

“GET /?id=1327014400570&msg=We%20Are%20Legion! HTTP/1.1″ 200

99406 “hxxp://pastehtml.com/view/blafp1ly1.html” “Mozilla/5.0

(Windows NT 6.1; WOW64; rv:9.0.1) Gecko/20100101 Firefox/9.0.1″

The following sites have been identified in HTTP referrer headers

of suspected LOIC traffic. This list may not be complete. Please do

not visit any of the links as they may still host functioning LOIC

or other malicious code.

“hxxp://3g.bamatea.com/loic.html”

“hxxp://anonymouse.org/cgi-bin/anon-www.cgi/”

“hxxp://chatimpacto.org/Loic/”

“hxxp://cybercrime.hostzi.com/Ym90bmV0/loic/”

“hxxp://event.seeho.co.kr/loic.html”

“hxxp://pastehtml.com/view/bl3weewxq.html”

“hxxp://pastehtml.com/view/bl7qhhp5c.html”

“hxxp://pastehtml.com/view/blafp1ly1.html”

“hxxp://pastehtml.com/view/blakyjwbi.html”

“hxxp://pastehtml.com/view/blal5t64j.html”

“hxxp://pastehtml.com/view/blaoyp0qs.html”

“hxxp://www.lcnongjipeijian.com/loic.html”

“hxxp://www.rotterproxy.info/browse.php/704521df/ccc21Oi8/

vY3liZXJ/jcmltZS5/ob3N0emk/uY29tL1l/tOTBibVY/wL2xvaWM/v/b5/

fnorefer”

“hxxp://www.tandycollection.co.kr/loic.html”

“hxxp://www.zgon.cn/loic.html”

“hxxp://zgon.cn/loic.html”

“hxxp://www.turbytoy.com.ar/admin/archivos/hive.html”

The following are the A records for the referrer sites as of

January, 20, 2012:

3g[.]bamatea[.]com                A    218[.]5[.]113[.]218

cybercrime[.]hostzi[.]com         A    31[.]170[.]161[.]36

event[.]seeho[.]co[.]kr           A    210[.]207[.]87[.]195

chatimpacto[.]org                 A    66[.]96[.]160[.]151

anonymouse[.]org                  A    193[.]200[.]150[.]125

pastehtml[.]com                   A    88[.]90[.]29[.]58

lcnongjipeijian[.]com             A    49[.]247[.]252[.]105

www[.]rotterproxy[.]info          A    208[.]94[.]245[.]131

www[.]tandycollection[.]co[.]kr   A    121[.]254[.]168[.]87

www[.]zgon[.]cn                   A    59[.]54[.]54[.]204

www[.]turbytoy[.]com[.]ar         A    190[.]228[.]29[.]84

The HTTP requests contained an “id” value based on UNIX time and

user-defined “msg” value, for example:

GET /?id=1327014189930&msg=%C2%A1%C2%A1NO%20NOS%20GUSTA%20LA%20

Other “msg” examples:

msg=%C2%A1%C2%A1NO%20NOS%20GUSTA%20LA%20

msg=:)

msg=:D

msg=Somos%20Legion!!!

msg=Somos%20legi%C3%B3n!

msg=Stop%20S.O.P.A%20:)%20%E2%99%AB%E2%99%AB HTTP/1.1″ 200 99406

“http://pastehtml.com/view/bl7qhhp5c.html”

msg=We%20Are%20Legion!

msg=gh

msg=open%20megaupload

msg=que%20sepan%20los%20nacidos%20y%20los%20que%20van%20a%20nacer

%20que%20nacimos%20para%20vencer%20y%20no%20para%20ser%20vencidos

msg=stop%20SOPA!!

msg=We%20are%20Anonymous.%20We%20are%20Legion.%20We%20do%20not%20

forgive.%20We%20do%20not%20forget.%20Expect%20us!

The “msg” field can be arbitrarily set by the attacker.

As of January 20, 20012, US-CERT has observed another attack that

consists of UDP packets on ports 25 and 80. The packets contained a

message followed by variable amounts of padding, for example:

66:6c:6f:6f:64:00:00:00:00:00:00:00:00:00 | flood………

Target selection, timing, and other attack activity is often

coordinated through social media sites or online forums.

US-CERT is continuing research efforts and will provide additional

data as it becomes available.

II. Solution

There are a number of mitigation strategies available for dealing

with DDoS attacks, depending on the type of attack as well as the

target network infrastructure. In general, the best practice

defense for mitigating DDoS attacks involves advanced preparation.

* Develop a checklist or Standard Operating Procedure (SOP) to

follow in the event of a DDoS attack. One critical point in a

checklist or SOP is to have contact information for your ISP and

hosting providers. Identify who should be contacted during a

DDoS, what processes should be followed, what information is

needed, and what actions will be taken during the attack with

each entity.

* The ISP or hosting provider may provide DDoS mitigation services.

Ensure your staff is aware of the provisions of your service

level agreement (SLA).

* Maintain contact information for firewall teams, IDS teams,

network teams and ensure that it is current and readily available.

* Identify critical services that must be maintained during an

attack as well as their priority. Services should be prioritized

beforehand to identify what resources can be turned off or

blocked as needed to limit the effects of the attack. Also,

ensure that critical systems have sufficient capacity to

withstand a DDoS attack.

* Have current network diagrams, IT infrastructure details, and

asset inventories. This will assist in determining actions and

priorities as the attack progresses.

* Understand your current environment and have a baseline of daily

network traffic volume, type, and performance. This will allow

staff to better identify the type of attack, the point of attack,

and the attack vector used. Also, identify any existing

bottlenecks and remediation actions if required.

* Harden the configuration settings of your network, operating

systems, and applications by disabling services and applications

not required for a system to perform its intended function.

* Implement a bogon block list at the network boundary.

* Employ service screening on edge routers wherever possible in

order to decrease the load on stateful security devices such as

firewalls.

* Separate or compartmentalize critical services:

* Separate public and private services

* Separate intranet, extranet, and internet services

* Create single purpose servers for each service such as HTTP,

FTP, and DNS

* Review the US-CERT Cyber Security Tip Understanding

Denial-of-Service Attacks.

III. References

* Cyber Security Tip ST04-015 -

<http://www.us-cert.gov/cas/tips/ST04-015.html>

* Anonymous&apos;s response to the seizure of MegaUpload according to

CNN -

<http://money.cnn.com/2012/01/19/technology/megaupload_shutdown/index.htm>

* The Internet Strikes Back #OpMegaupload -

<http://anonops.blogspot.com/2012/01/internet-strikes-back-opmegaupload.html>

* Twitter Post from the author of the JavaScript based LOIC code -

<http://www.twitter.com/#!/mendes_rs>

* Anonymous Operations tweets on Twitter -

<http://twitter.com/#!/anonops>

* @Megaupload Tweets on Twitter -

<http://twitter.com/#!/search?q=%2523Megaupload>

* LOIC DDoS Analysis and Detection -

<http://blog.spiderlabs.com/2011/01/loic-ddos-analysis-and-detection.html>

* Impact of Operation Payback according to CNN -

<http://money.cnn.com/2010/12/08/news/companies/mastercard_wiki/index.htm>

* OperationPayback messages on YouTube -

<http://www.youtube.com/results?search_query=operationpayback>

* The Bogon Reference – Team Cymru -

<http://www.team-cymru.org/Services/Bogons/>

____________________________________________________________________

The most recent version of this document can be found at:

<http://www.us-cert.gov/cas/techalerts/TA12-024A.html>

____________________________________________________________________

Feedback can be directed to US-CERT Technical Staff. Please send

email to <cert@cert.org> with “TA12-024A Feedback INFO#919868″ in

the subject.

____________________________________________________________________

For instructions on subscribing to or unsubscribing from this

mailing list, visit <http://www.us-cert.gov/cas/signup.html>.

____________________________________________________________________

Produced 2012 by US-CERT, a government organization.

Terms of use:

<http://www.us-cert.gov/legal.html>

____________________________________________________________________

Revision History

January 24, 2012: Initial release

If you require assistance with DDoS or any other security need for your Greenville or Upstate SC business, please call upon us at 864.990.4748 or email info@homelandsecureit.com

You found that if you reboot that firewall (pull the plug on the thing since there is no power supply) that YOU get back online right away, but then later that day, someone else on the network is now having trouble accessing websites so you reboot the firewall and all is well, for a while.

What could it be? It MUST be the firewall going bad since that fixes it.

Before jumping to that conclusion and just replacing the device, think back. Has your company grown? Maybe you have added a few new employees, or, maybe you have added tablets or other connected devices.

What could be happening here is that you have added one too many devices to your network and exceeded the number of seats that your firewall appliance supports. When you originally purchased that device, a technician counted the number of computers, servers and connected devices and said “You need a 25 user firewall and it will cost $xxx.xx”, to which you agreed and promptly forgot about.

Now, flash forward to today and your 12 users and a server have grown to 15 users, two servers and many people have iPads or Android tablets or phones, taking you past the 25 user limit.  The last person to connect once you go over the limit will generally be denied access to websites by the firewall, as a warning that you have exceeded the license terms, and it probably won’t “reset” just by turning that computer off, you will have to reboot the firewall to free unused seats up.

So what are you going to do about it? I guess you could tell the employees to stop connecting their personal phones to your network, or you could replace the firewall with a cheap router that has no limitations.

Both will work, but are bad ideas.

The real solution is to correct the licensing issue. Determine how many connected devices you have within your network, and estimate how many you will need for the next year, then talk to a vendor who can provide the proper licenses and apply those for you. Don’t forget to include VoIP and security systems, even copiers and connected printers, as they may require a seat too.

If you are experiencing rapid growth, consider upgrading to an unlimited license.

Just a note – If you have an old device, say 4-5 years old, now may be the time to consider upgrading the entire device to the latest technology at the same time you correct the user limitation!

Should you require help with this, Homeland Secure IT offers sales and support of most major brands of firewalls. We partner with Cisco, WatchGuard, SonicWALL, TrendNet, D-Link, NetGear and more! Call us for more information in the Greenville / Upstate SC area – 864.990.4748 or email info@homelandsecureit.com

Actually click HERE

It is quoted below  in its entirety but can be found here.

I’ll be posting about the new WatchGuard XTM 33 designed for Small/Medium businesses, and may be ideal for retailers!

Should you wish to purchase a WatchGuard product, receive more information or support, please call us at 864.990.4748 or email info@homelandsecureit.com… We are a WatchGuard partner!

—

Social Media Release:
WatchGuard Lists PCI Pitfalls for Retailers

NEW YORK (January 16, 2012) – WatchGuard Technologies

Highlights / News Facts:

Businesses that process, transmit or store cardholder data must implement security controls as defined by the latest PCI DSS standard. The following are the nine common PCI DSS compliance pitfalls that many retailers fall into and tips to avoid them.

• 1) Faulty firewall installation or configuration
  Many DIY (do it yourself) projects are easy; properly configuring a firewall is not one of them. According to WatchGuard research, a majority of small business security breaches are the result of improperly configured firewalls. Best practice: Use security certified technicians or trained resellers to ensure firewall configurations are proper and up to date; regularly audit firewall configurations as people and IT resources constantly change.
• 2) Relying on vendor supplied defaults for system passwords
  Not only is it critical to change vendor supplied default passwords, be sure to use something other than “password” as a password. According to a recently published research report, the most common passwords are: 1) password, 2) 123456, 3) 12345678, 4) qwerty, 5) abc123, 6) monkey, 7) 1234567, letmein, 9) trustno1, and 10) dragon. Best practice: Change vendor settings and utilize strong passwords.
• 3) Failing to utilize IPS to protect stored cardholder data
  There are multiple ways to help protect stored cardholder data. One key technology that is often overlooked is IPS (intrusion prevention systems). IPS is to hackers as anti-virus is to viruses. IPS keeps hackers out and helps cardholder data stay safe. Best practice: Make sure intrusion prevention systems (IPS) are up and running.
• 4) Not encrypting transmission of cardholder data across open, public networks
  Encryption is a key component to PCI DSS compliance. A common problem occurs in the transmission of credit card data, which is often done in unencrypted email. Best practice: Use encryption everywhere, and especially in email systems where any type of sensitive information may be transmitted.
• 5) Failing to use and regularly update anti-virus software or programs
  Unlike desktop/endpoint anti-virus (AV), gateway anti-virus stops threats right at the entry point of a network. Using gateway AV adds an additional layer of defense at the primary point of attack, and because it functions at the gateway, users see no degradation of performance on their local computer. Best practice: Use gateway AV in addition to endpoint AV for maximum defense in depth.
• 6) Not maintaining secure systems and applications
  Many businesses do a good job at maintaining secure systems, however what is often overlooked in today’s social media business world is application security. Most firewalls are incapable of distinguishing a web application from a website. Because of this, crafty cyber-crooks create web applications as a way to sneak past the firewall and steal cardholder data. Best practice: To gain control over web applications, businesses utilize the latest generation of UTMs and firewalls that include application control.
• 7) Providing access to cardholder data to those who do not need to know
  About 80 percent of security violations happen from within an organization. In order to reduce that figure, businesses should use the “least privilege rule,” which parallels the same concept of “need to know.” Users should be granted the minimum necessary permissions and privileges that are required for them to accomplish their jobs. When employees have access to data that they should not, bad things often result. Best practice: Use RBAC (role based access controls), separation of duties and other forms of “least privilege” to make sure data is restricted to those who absolutely must have access to it.
• Forgetting to track and monitor all access to network resources and cardholder data
  Unfortunately, many businesses take a “fire and forget” approach to network security; once the firewall is set, they forget to check the reports. Many security breaches can me mitigated early on simply by checking reports and logs on a regular basis. Best practice: Establish a routine of checking logs and reports to spot trouble before it blossoms into headline security news.
• 9) Not having an information security policy
  In order to meet PCI compliance, businesses must create an information security policy that is up to date, and that addresses the security requirements as proscribed by PCI DSS. This should also include operational security, system usage, security management and other related policies. Best practice: Get IT, HR and other business stakeholders to regularly review information security policies.

Keywords:

PCI DSS, Network Security, Firewall, Cardholder Data, Passwords, Encryption, IPS, Anti-Virus, Application Control, Next-Generation UTM, Policy

Quote:

• “The PCI DSS standard is a model that many businesses – even non-retailers can look to in order to maintain best security practices,” said Eric Aarrestad, Vice President at WatchGuard Technologies. “The devil is in the details when it comes to security. Hopefully, this quick list helps remind businesses owners and IT management that little things can make a big difference in preventing data loss.”

The email included the following information:

1. This is a company-wide project focused on technically positioning our customer base for advanced HSI products and increased speeds.
2. The communication is handled via a browser message that will alert only those customers with older docsis 1 or 1.1 modems and asking them swap.
3. Replaced at no cost to the customer, including customer owned modems. See sample screenshot image below…
4. The customer will communicate with us via phone at 877.739.0427 or use the browser link to expedite the delivery.
5. All modems will be sent via mail to the mailing address on the account. (again, at no cost to the customer)
6. The modems will be mailed as a self install kit from a central distribution center.

Here’s the link: https://connect.charter.com/replacemodem/

If you have any questions about Charter internet, phone or television, either home or business, please call us at 864.990.4748 or email info@homelandsecureit.com

Hughes probably has the highest market penetration, and those using it have been quick to complain about caps and upload speed.

This is where ViaSat comes in. They revealed their home satellite system at CES and Engadget has a pretty good write-up with a video that tells more about the 12 Mbps down/3 Mbps up service that runs $50.oo per month.

What is left out is what types of data caps they may have.

Well, HP released a fix for that a week or so back… However, they didn’t mention fire issue.

None-the-less, you may wish to consider upgrading.

Should you require assistance applying updates to your devices, servers or computers in the Greenville or Upstate SC area, you can call upon us at 864.990.4748 or email info@homelandsecureit.com

‘Twas The Night Before Christmas – Computer Version

I first read this story on a University of Arkansas computer system sometime before 1985 and promptly typed it up and put it on my BBS (Non-Prophet BBS) for people to read. I have sent it in email, and “snail mail” for the last 25 years or so…  I still get a kick out of it.   If anyone knows the author, please contact me so I can give credit and thank them. – John M. Hoyt

‘Twas The Night Before Christmas – Computer Version

‘Twas the night before Christmas, and all through the shop,
The computers were whirring; they never do stop.
The power was on and the temperature right,
In hopes that the input would feed back that night.

The system was ready, the program was coded,
And memory drums had been carefully loaded;
While adding a Christmasy glow to the scene,
The lights on the console, flashed red, white and green.

When out in the hall there arose such a clatter,
The programmer ran to see what was the matter.
Away to the hallway he flew like a flash,
Forgetting his key in his curious dash.
He stood in the hallway and looked all about,
When the door slammed behind him, and he was locked out.

Then, in the computer room what should appear,
But a miniature sleigh and eight tiny reindeer;
And a little old man, who with scarcely a pause,
Chuckled: “My name is Santa…the last name is Claus.”

The computer was startled, confused by the name,
Then it buzzed as it heard the old fellow exclaim:
“This is Dasher and Dancer and Prancer and Vixen,
And Comet and Cupid and Donner and Blitzen.”

With all these odd names, it was puzzled anew;
It hummed and it clanked, and a main circuit blew.
It searched in its memory core, trying to “think”;
Then the multi-line printer went out on the blink.

Unable to do its electronic job,
It said in a voice that was almost a sob:
“Your eyes – how they twinkle – your dimples so merry,
Your cheeks so like roses, your nose like a cherry,

Your smile – all these things, I’ve been programmed to know,
And at data-recall, I am more than so-so;
But your name and your address (computers can’t lie),
Are things that I just cannot identify.

You’ve a jolly old face and a little round belly,
That shakes when you laugh like a bowl full of jelly;
My scanners can see you, but still I insist,
Since you’re not in my program, you cannot exist!”

Old Santa just chuckled a merry “ho, ho”,
And sat down to type out a quick word or so.
The keyboard clack-clattered, its sound sharp and clean,
As Santa fed this “data” into the machine:

“Kids everywhere know me; I come every year;
The presents I bring add to everyone’s cheer;
But you won’t get anything – that’s plain to see;
Too bad your programmers forgot about me.”

Then he faced the machine and said with a shrug,
“Merry Christmas to All,” as he pulled out its plug,
“And to all, a good night!”

 Merry Christmas everyone!!!!

Well, it appears, that someone at the RIAA has been doing a little illegal downloading of their own, though the RIAA claims it was not them.

Here’s more information:

http://torrentfreak.com/riaa-someone-else-is-pirating-through-out-ip-addresses-111221/

So secure those access points, and disable unused network jacks in public locations to keep from receiving a nasty-gram because someone else is using your internet connection to download.

If you need help securing your business or home, we can help in the Greenville / Upstate, SC area. We can even help the RIAA.  Call us at 864.990.4748 or email info@homelandsecureit.com

Wow!!

Are you sure you and your friends don’t work for the RIAA? Maybe Sony or Universal? Maybe you’re both just really good at covering your tracks. Either way, congratulations, neither you or your friends and family returned any results from our crawlers. Tonight, you can jump into bed, open up Netflix or iTunes and sleep comfortably knowing that you’ve been a well-behaved, law-abiding internet user. But remember, there’s always tomorrow.
There’s… always… tomorrow…

—

You Have Downloaded keeps tabs on who downloads what from torent sites. If I had a large company using one IP address, I would be checking that site regularly, in spite of having firewalls, filters, policies in place, just to make sure someone didn’t come knocking at my door because of one bad person on the network, or maybe because of a wireless access point that was not secured.

Charter Ups Broadband Speeds Again, Bumps Top Tier to 100 Mbps –

DiGeronimo says DSL is Basically Archaic

Original Publication Date: 12/1/2011

Original News Source: Multichannel News

By Todd Spangler — Multichannel News, 12/1/2011 3:00:00 PM

Looking to kick more sand in the face of DSL, Charter Communications is increasing connection speeds of its three top broadband tiers — Express, Plus and Ultra, which will now provide downloads of up to 100 Megabits per second — at no additional cost for subscribers.

The speed boosts are the MSO’s fourth in the last three years. The faster speeds will take effect in markets with DOCSIS 3.0 technology deployed, which represents approximately 95% of Charter’s service area.

“As customers share multiple devices on a single connection, we want to send a very strong message: DSL is basically archaic,” said Rich DiGeronimo, Charter’s senior vice president of product and strategy.

Charter is increasing Internet Express downstream speeds from 12 Mbps to up to 15 Mbps, and increasing upstream speeds from 1 Mbps to up to 3 Mbps. Internet Plus downstream speeds are being increased from 18 Mbps to up to 30 Mbps, and upstream speeds are being increased from 2 Mbps to up to 4 Mbps.

In addition, Charter’s fastest residential offering is increasing from 60 Mbps to 100 Mbps — with Ultra100 providing 100 Mbps downstream and 5 Mbps upstream. Charter’s Internet Lite tier will remain 3 Mbps down.

The midlevel Plus tier, at 30/4, is now faster than the fastest AT&T U-verse Internet service available. Charter’s footprint overlap with AT&T is 60%, although U-verse is not available in all of those areas.

“We believe we have an advantage in this space,” DiGeronimo said. “The thirst for speed is only growing.”

Charter is offering Express for $19.99 per month for 12 months to new customers, Plus for $29.99 per month. Ultra100 is $40 more per month than the Express tier.

“We’re not asking for more money. It’s really about differentiation,” DiGeronimo said. About 90% of Charter’s broadband customers take either Express and Plus service.

Charter’s broadband services are subject to different usage thresholds. Customers with Lite and Express tiers are allotted at 100 Gigabytes of bandwidth usage per month, while those on the Plus and Max services have a threshold of 250 GB per month. The Ultra100 tier will be capped at 500 GB per month; previously, the Ultra60 tier did not have a maximum usage limit. Charter currently does not charge overage fees for those who exceed the thresholds; however, users’ accounts may be suspended for repeated violations.

Charter also is increasing speeds for business customers, bumping up commercial Internet speeds at no cost for two of its most popular services, Charter Business Internet Essentials16 and 25. The speed increase will take place in approximately 95% of Charter’s service areas nationwide.

Specifically, the speed increases are: Internet Essetials16, with download speeds of 16 megabits per second (Mbps) and upload speeds of 2 Mbps, will increase to up to 20 Mbps download and up to 3 Mbps upload; and Internet Essentials25, with download speeds of 25 Mbps and upload speeds of 3 Mbps, will increase to up to 30 Mbps download and up to 4 Mbps upload — which the MSO notes is at least 6 times faster than 5 Mbps DSL service and 20 times faster than T1 lines. Charter’s fastest commercial offerings, Pro50 and Pro100, remain the same, providing up to 50 Mbps download/5 Mbps upload and up to 100 Mbps download/5 Mbps upload, respectively.

—

Homeland Secure IT loves Charter! We help Greenville & Upstate South Carolina individuals & businesses get connected with high speed internet all the time and Charter, especially Charter Business, has the highest customer satisfaction of any of the ISPs we work with. If you are feeling the need for speed, email us at info@homelandsecureit.com or call 864.990.4748 and we can assist you in the search for the best service and the best price!

There is an article over on ComputerWorld.com that reads, “HP LaserJet Printers vulnerable to attacks, researchers warn“… (opens in a new window).

Our in-house expert, Greg Varner, believes that if an attacker could exploit the device to the point of causing it to brown paper in the fuser,  it would not be overly difficult to disable the safety mechanisms discussed in the article that protects this from happening.

Without question this does give us cause to pause and think about these connected devices.

TP-Link TL-MR3020 3G Wireless N Router

TP-Link just announced a new product in their stable of connectivity devices called the TL-MR3020 Portable 3G/3.75G Wireless N Router.

This little gadget will allow you to plug your USB 3G modem into and it in turn lets multiple Wi-Fi devices to share that connection!

Sure, there are other devices out there that do the same thing, but this one has some distinctive features, such as a firewall with port forwarding & port triggering, UPnP, Parental Controls, Access Schedules, MAC address filtering and a 3G/WAN failover function!

With one of these and your 3G USB modem, your iPad, Android tablet, X-Box, notebook computer and any other Wi-Fi device can be connected to the internet wherever you are! This could be the perfect camping or tailgating companion. It could make for backup connectivity for your business as well.

These are priced at under 40 dollars and they are compatible with over 120 UMTS/HSPA/EVDO 3G USB modems. If you need more information or want to get one, give us a call at 864.990.4748 or email info@homelandsecureit.com

Diamond VStream WPCTV1080H

The question of the day was from a client who asked, “How can I display what I see on my notebook to my big screen TV, without physically connecting it?”.

Obviously, connecting the notebook to your LCD TV is probably the easiest thing in the world, using an HDMI, DVI or even VGA cable, however, it is inconvenient, especially if you are using the notebook for a presentation and the TV is on the other end of the room.

Fortunately, there are a number of devices on the market that allow you to easily stream your video and audio to external displays, wirelessly.

One is the Diamond Multimedia Wireless Converter (WPCTV1080H), that connects to your display with an HDMI cable, and to your notebook with a little USB dongle.

Now your external display becomes an extension of your notebook! You can watch everything from Netflix to YouTube to your security cameras in full 1080p resolution. The computer can be up to about 30 ft away from the display device.

Slick, eh?  Only about 120 dollars, or less.  We have them if you need one.  They even include the HDMI cable.

Free Servosity Online Backup Trial! Click Here...

If you are from the Greenville / Upstate South Carolina area and are into IT, you likely know Damien Stevens, or at least the name of his company, Servosity.

Today, Servosity announced that in addition to their quality online / cloud backup solution, they will have Servosity DR Server and DR Desktop available! DR Server and DR Desktop are Disaster Recovery solutions that allow you to perform a Bare Metal Recovery to dissimilar physical hardware, recover VMware, Microsoft Hyper-V virtual machines, and more.

Features:

• Bare Metal Recovery to Dissimilar hardware, VMWare, Hyper-V, and VirtualBox
• Local, Network, and Cloud Backup and Disaster Recovery
• Purpose built for MSPs and IT Resellers
• No Hardware Required
• Geographically Redundant SAS-70 Type II Cloud
• Recover a server, desktop, or laptop in just minutes
• Disaster Recovery with snapshots to the Network and Cloud every 15 minutes

Whatever you do - Don't panic...

You’ve been hearing about it for a while now, but the time is has finally come for the first nationwide Emergency Alert System (EAS) test.

It is scheduled for November 9th, 2011 at 2pm Eastern and will last a few minutes.

You can get the full scoop on this event on the FCC site.

Of course, many conspiracy theorists can give you other reasons for the test, my favorite of which is that the Government is testing their ability to control of all media outlets, even phone lines, cell phones, and the internet itself. (As has been done in other countries).

The following letter comes from Charter, and while their email distribution from them is normally marked with a non-disclosure, this one was specifically authorized FOR distribution:

INTERNAL NEWS ALERT

Re:         Charter to Participate in First Ever Nationwide EAS Test

This Wednesday, November 9, 2011 at 2:00pm EST, a nationwide test of the Emergency Alert System (EAS) will be conducted. Similar to local EAS tests conducted on a regular basis in our area, the national test will also include all broadcast TV stations, radio stations and video providers, including cable and satellite operators at the same time. As a result, all Charter systems nationwide will be participating in the test.

However…unlike the local EAS tests that usually last approximately 30 seconds, the nationwide test may last up to three and a half minutes.

This national EAS test will be conducted jointly by the Department of Homeland Security (DHS) through its Federal Emergency Management Agency (FEMA), the Federal Communications Commission (FCC), and the National Oceanic and Atmospheric Administration’s (NOAA) National Weather Service (NWS), the three federal agencies that have EAS management responsibilities.

Although the EAS has been in existence for over 15 years, there has never been an end-to-end, nationwide test of the system. The nationwide test is being conducted to verify the reliability of the EAS system and its effectiveness in alerting the public on a national scale.

The upcoming national test is critical to ensuring that the EAS works as designed. As recent disasters here at home and in Japan have reminded us, a reliable and effective emergency alert and warning system is key to ensuring the public’s safety during times of emergency.

Charter is currently in the process of preparing for the national test on November 9. We are providing a message to our customers in their bill statement (see below), and will utilize Weather Channel crawls, DCT messaging, .com and .net posts and cross channel TV commercials to provide our customers with awareness of the test. We will also be training our customer care team to effectively manage any increase in the number of calls we receive as a result of the test.

OCTOBER CUSTOMER STATEMENT MESSAGE:

The first nationwide test of the U.S. Emergency Alert System will occur at 2:00 p.m. Eastern Standard Time on November 9, 2011, and it will interrupt programming on all channels from all service providers for a few minutes. Visit www.fcc.gov/pshs for more information.

Come to the dark side - We have cookies, and downloads.

Are you using something other than Microsoft Internet Explorer 9 (IE9) for your web browser? A growing number of you are, and Microsoft does not like it one bit. In fact, if you go visit their promo site, you can receive “Free stuff from sites you love” if you will just cross over to the dark side, so to speak.

Here’s the link to the “Beauty of the Web” site…  HERE

Sites represented are Slacker Radio, AOL Radio, Grooveshark, hulu, Flixter, Fandango, ticketmaster, vimeo, zynga and Pandora.

Of course, you have to be using IE to take advantage of the offers. The process is to drag the icon to your taskbar to pin it there, then share the information on Twitter or Facebook.

Mac OS X users will have to run IE 9 in a virtual machine in order to take advantage of this…

Copyrights & Wrongs

You’ve got a great phone system (hopefully you have moved up to a Voice over IP phone system by now!) and you want to use all the great features of it.

One feature that is common to (most) all VoIP systems is that you can use Music On Hold (MOH) which gives the poor caller who gets placed on hold something to listen to other than dead air, or beep, or, God forbid, constant ringing like I got the other day for 2 minutes solid when calling a very large vendor for support.  RING RING RING AHHHHHHHHHHHHHHHHHHHHHHH!

The trend for the last few years has been to get voice talent to record promotional messages, combined with music that makes the time spent on hold for the client productive. A large number of sales have been made due to a promotional message telling a holding client about services or sales specials offered. I guess the impulse buyers hear, “Did you know we offer Microsoft Licensing?” and immediately place an order for 1000 seats of Microsoft Office 2010 or something. Hmmm, maybe we should do that here at Homeland?

The costs of having these messages produced vary from 5 dollars (if you want an Indian accent) to thousands of dollars, with the average falling at about 500 dollars for high quality, professional voice talent and music to be provided.

Some businesses have gone the extreme budget route and recorded their own messages, complete with lots of “uhhhs” and the like and plenty of background noise.

A smaller organization may just want to plug in a radio to the MOH port on the phone system and let that play, or maybe use their iPod or other MP3 player to put on their favorite tunes. I mean, let’s get real here, if you like Adele and Rhianna, your clients should love it to!

There’s a slight problem with that. Okay, not so slight; You are using unlicensed music which could result in law suits and fines…

The music that you own already, which you purchased off of iTunes or Amazon, or even own the vinyl record that you converted over to an MP3, is not your’s for public performance. Confused? Me too! Basically, there is a difference between owning the right to play that music for yourself, and the right to play it for others to hear.

So what’s a soul to do in order to provide entertainment on hold in the form of music?

• You could find “royalty free” music, but be warned, it won’t keep a licensing organization from coming after you. You could STILL get a letter to cease the use of that music with the threat of lawsuit or fines if they believe it is owned by them. Make sure you can backup the fact that the music is in the public domain, the person/group performing it do not have a copyright on it and that it is not just released for listening or performance, that it has no “mechanical copyright” on it which would prohibit you from using it in the manner you wish to use it.
• There are licensing entities such as ASCAP and BMI which you can pay in order to use the music which you want to play. You can license a single song in some cases, or get a blanket license to use anything from their repertoire.
• There are “music on hold” providers, which take care of all the licensing for you (be careful here, there are some shady ones). These are the ones who will give you professional voice talent if you want that, along with a genre of music that is appealing to your callers, hopefully.
• You could find a local musician who writes and produces their own original content and tell them you would like to showcase their talent on your on-hold system. Get it in writing that they are giving you permission to use their original music for a set time, and what the cost is. It may be free!

I am sure I have overlooked something as I am no expert in this field. But, this may be give you an idea of what you are up against regarding Music On Hold.

Myself, I am sad I can’t use a loop of Sugarloaf’s “Don’t Call us, We’ll Call you” to play to telemarketers….

If you do decide to hire a professional voice artist in the Greenville / Upstate area, please email me and I may be able to point you in the right direction.

Homeland SECURE IT Achieves Select Certification from Cisco

Greenville, SC, November 1, 2011:  Homeland Secure IT announced today that it has achieved Select Certification from Cisco. The Select Certification recognizes Cisco® resale channel partners that focus on meeting the technology and service needs of small businesses.

Cisco’s portfolio of both Small Business and Small Business Professional Series products directly complement and enhance Homeland Secure IT’s Systems Design, Sales, Installation and Support of end-to-end communications and physical networks.

Cisco Select Certified

“The Cisco Select Certification was created in response to customer demand for channel partners capable of designing and implementing Cisco solutions purpose-built for small businesses,” said Andrew Sage, vice president of Worldwide Small Business Sales at Cisco. “With the Select Certification, Homeland Secure IT has made an investment in obtaining the training, skills and knowledge necessary to play a pivotal role in meeting this growing demand.”

To earn Select Certification, Homeland Secure IT fulfilled the training and exam requirements for the Cisco Small Business Specialization.  Homeland Secure IT also met the personnel, training and post-sales support requirements set forth by Cisco.

The Cisco Resale Channel Program provides a framework for channel partners to build the sales, technical and Cisco Lifecycle Services skills required to deliver Cisco solutions to end customers. Through the program’s specializations and certifications, Cisco recognizes a channel partner’s expertise in deploying solutions based on Cisco advanced technologies and services. Using a third-party audit process, the program validates channel partner qualifications such as technology skills, business best practices, customer satisfaction, and presales and post-sales support capabilities — critical factors for customers choosing a trusted channel partner.

About Homeland Secure IT

Homeland Secure IT is headquartered in Greenville, SC, and serves Greenville and the Upstate of South Carolina.  Our goal is to deliver seamless design, implementation, and support to customers requiring both simple and sophisticated communications solutions.

• Unified Communications (VoIP)
• Wireless (WLAN)
• Video Surveillance
• Storage Solutions (NAS, SAN)
• Backup and Disaster Recovery
• Security (Firewall, A/V)
• Switching

For more information about this topic or to schedule meeting with our design and engineering team, please call 864-990-4748 or visit our website at http://www.HomelandSecureIT.com

Do you have a unified threat management or spam protection device that is not from WatchGuard?

If so, and you would like to upgrade to the WatchGuard XTM or XCS series UTMs, then through December 2011 you can take advantage of their offer to allow trade-ins of competitor’s appliances for a three-year XTM Security Bundle on selected models or a three-year XCS Email Security Bundle and pay ONLY for the services.

You get the box for free!

Some of the brands that are acceptable trade-ins are:

• Aastaro
• Barracuda
• Cisco
• Clearswift
• Fortigate
• IronPort
• Juniper
• M86 MailMarshal
• McAfee Email Gateway
• ProofPoint
• SonicWall
• St. Bernard
• Symantec
• Trend Micro

For more information, please contact your WatchGuard reseller, or if you’re in the Greenville / Upstate SC area, please call Homeland Secure IT at 864.990.4748 or email info@homelandsecureit.com

Apple iPhone

Smartphones: Whether it is an Android, iPhone or even a Windows based phone, you cannot survive without one. These devices provide instant communication with your clients through email, text message and phone, along with the ability to browse the web and select from tens of thousands of applications to assist in your business. Your clients will not wait for you to get to your office to respond to an email. Even a quick, “I’m driving, will respond as soon as it is safe” auto-response is better than no response. The cost of a typical phone can range from 100 to 300 dollars per phone depending on features and term of contract from the carrier of your choice.

Square Credit Card Reader

Credit Card Processing: If you expect to get paid, then you need to accept every form of payment possible, including plastic. Yes, you will lose a little bit on the sale, but you will gain an instant payment. If you are just getting started, without purchasing a machine or paying a monthly charge, you can accept credit cards anywhere you have a cell signal using the Square credit card application with your smart phone and the free reader device that they provide to you. No per-swipe fee, and less than 3.0% charge. Fast, secure, and in your account the next business day. Find it in your phones’s marketplace.

Reliable & Fast Internet: There are a lot of choices these days for fast internet, from DSL to cable to fiber, and the old tried and true T1 standard, but some businesses may find that a wireless broadband internet plan may be enough for them. We recommend Charter Business in most situations, but that varies depending upon what is available at the business location. One advantage to using a cellular based broadband internet connection is that you can take it with you, which is great for businesses that are not tied to one specific location. Typical 4G plans will provide over 5 meg down and up to 2 meg up. Verizon Wireless offers the MiFi devices for around 50 dollars with 5GB plans for 50 dollars per month.

IP Surveillance Cameras

IP surveillance: Sure it sounds like the CIA, but IP security cameras at your business will decrease loss of inventory, increase productivity, and may provide an insurance savings. You can even keep tabs on your employees using a smartphone or any web browser to view these camera. Recordings can be reviewed after events occur, and most systems can email you when there is movement in a particular location. Prices range from $150 for a single entry level camera into the $2000 range to cover an entire business. You can install yourself, or get an IT provider to handle this for you for the most professional results.

Email: This is a no-brainer, but many small businesses will cut corners here. A Hotmail account will work for sure, but who wants AcmeWidgetCo@hotmail.com on their business cards. At the very least, your business should use a service that allows for linking a domain to your mail, such as Google Apps (Gmail) or Microsoft Office 365. This gives you a professional appearance, and provides for important features such as linking of your smartphones, sharing of calendars between users and so much more. Microsoft Office 365 costs about 5 dollars per person per month and gives you up to 20GB of storage.

Anti-Virus & Security: Far too often this is overlooked, or taken for granted. A business that is vulnerable to viruses or malware is a business that could experience costly downtime and repairs, not to mention, open yourself up for compliance violations and potential fines or legal issues depending upon the field you are in. The components of a secure network are as simple as a quality firewall like those offered from Cisco, Watchguard or SonicWall, an anti-virus software package from Trend Micro or Symantec, and taking the time to apply updates to the Operating System (Windows, Mac, etc) and support software (Microsoft Office, Adobe Reader, Adobe Flash, JAVA).

Backup: When disaster strikes, you need to be prepared for it. Having backups of your important files will insure you are not out of business when a computer or server fails. Backups technology can be as simple as an external USB drive or remote backup solution, or on the other end of the spectrum, as complicated as auto-loader tape drives. One thing is for sure, ANY attempt to backup your data is better than none. For automated cloud backup solutions, consider Servosity or Mozy Pro.

Here at Homeland Secure IT, we utilize a vast array of technology and we also help many small and medium businesses and even home offices stay up to date. If we can help you with decisions regarding your Greenville or Upstate technology infrastructure, please call us at 864.990.4748 or email info@homelandsecureit.com. We offer sales, service, repair and consultation of everything from computers to VoIP.

What is your “must have” business technology? I would love to hear about it.  VoIP phone systems? iPad, Android or Windows based tablet computers? A favorite app (We love TiKL & Waze)?

Large businesses have full-time IT staff or fully outsourced IT support that provide monitoring of their infrastructure and keep them up to date and now small & medium (SMB) businesses can have the same level of support when it comes to devices on their network.

Cisco OnPlus works by allowing Homeland Secure IT or your Cisco SMB service provider to place a Cisco OnPlus Network Agent at your location and configure it for reporting.  The Cisco SMB specialist will be able to monitor your site from remote on a variety of devices, from handheld to tablets, to desktops and take action when needed.

OnPlus is the latest tool in the Managed Service Provider’s arsenal. Using it, Cisco products can be backed up, restored and fully managed remotely. Other devices are supported as well!

As always with Cisco, security is the name of the game and OnPlus provides a secure environment for your IT service provider to manage your network. Your data is safe from prying eyes, only the devices themselves can be managed and use of this system does not permit access to data outside of configuration and management.

If you would like your business to have monitoring, alerting, reporting and managing capabilities, then ask your Cisco SMB provider about this exciting offering. No need to wait for a service or repair technician to visit your location, management is handled in real-time, remotely! This service is one of the most affordable methods for managing your firewalls and security appliances, IP surveillance systems, switches, routers, VoIP phone systems and more.

Homeland Secure IT provides Cisco SMB sales and support in the Greenville & Upstate SC area. Call us today at 864.990.4748 or email info@homelandsecureit.com.