SECURE IT ALERT: Adobe Shockwave vulnerable on Mac and Windows – Update today!

Secure IT Alert Header

Homeland Secure IT Alert

Homeland Secure IT Alert for Thursday, August 26th 2010

I know it seems like it never ends… Adobe Reader, Adobe Acrobat, Adobe Flash, Adobe Air, Java, Windows, Mac, one update and patch after another following these security announcements….  

The vulnerability de jour is brought to you by Adobe, and it affects Shockwave player on Macintosh OSX and Windows platforms. The short and skinny is – update today, don’t delay….  What follows is information sent out courtesy of WatchGuard who makes a fantastic line of Firewalls, Network Security and Unified Threat Management Appliances for every application. We are proud to partner with WatchGuard and offer their products.

Adobe Shockwave Update Corrects 20 Security Flaws

Severity: Medium

25 August, 2010

Summary:

  • This vulnerability affects: Adobe Shockwave Player 11.5.7.609 and earlier, running on Windows and Macintosh computers
  • How an attacker exploits it: By enticing your users into visiting a website containing malicious Shockwave content
  • Impact: An attacker can execute code on your computer, potentially gaining control of it
  • What to do: If you allow the use of Shockwave in your network, you should download and deploy the latest version (11.5.8.612) of Adobe Shockwave Player as soon as possible.

Exposure:

Adobe Shockwave Player displays interactive, animated web content and movies called Shockwave. According to Adobe, the Shockwave Player is installed on some 450 million PCs.

In a security bulletin released late Tuesday, Adobe warned of twenty critical vulnerabilities that affect Adobe Shockwave Player 11.5.7.609 for Windows and Macintosh (as well as all earlier versions). Adobe’s bulletin doesn’t describe the flaws in much technical detail. It only describes the nature and basic impact of each flaw. For the most part, the flaws consist of unspecified memory corruption vulnerabilities. Though these flaws differ technically, most of them share the same general scope and impact. If an attacker can entice one of your users into visiting a website containing some sort of malicious Shockwave content, he could exploit many of these vulnerabilities to execute code on that user’s computer, with that user’s privileges. If your Windows users have local administrator privileges, an attacker could exploit this flaw to gain full control of their PC. Adobe’s alert doesn’t describe what type of Shockwave content triggers these various flaws. However, other researchers’ alerts have disclosed that malicious Shockwave (.SWF) and Director (.DCR and .DIR) files can trigger these vulnerabilities.

If you use Adobe Shockwave in your network, we recommend you download and deploy the latest version as soon as you can.

Solution Path:

Adobe has released a new version of Shockwave Player, version 11.5.8.612. If you use Adobe Flash in your network, we recommend you download and deploy this updated player as soon as possible.

For All WatchGuard Users:

Some of WatchGuard’s Firebox models allow you to prevent your users from accessing Shockwave content (.SWF, .DIR, and .DCR) via the web (HTTP) or email (SMTP, POP3). If you like, you can temporarily mitigate the risk of this vulnerability by blocking .SWF, .DIR, and .DCR files using your Firebox’s proxy services. That said, many websites rely on Shockwave for interactive content, and blocking it could prevent these sites from working properly.

If you require assistance in in updating the Shockwave player, or specific instructions for applying the WatchGuard content blocks above, please call us at 864.990-4748 or email info@homelandsecureit.com – We provide network and computer support to Greenville / Upstate businesses and individuals! We offer sales of WatchGuard Firewalls and UTMs nationwide.

Homeland Secure IT Alert Footer

Homeland Secure IT Alert

2

Using Internet Explorer? Free Trend Micro tool to prevent browser exploits!

Trend Micro Browser Guard

Trend Micro Browser Guard can protect you from "Zero Day" Exploits

Our friends at Trend Micro Labs are watching out for you, even if you opt to not purchase their incredible anti-virus software!

If you are using Internet Explorer 6, 7, or 8 you could fall victim to what is known as  “zero day exploit”, which is simply a hole that is found by the bad guys and a means for taking advantage of that security flaw is devised and deployed before the good guys can prepare for it.

The easiest application to exploit is Microsoft IE, because it is the most popular browser currently, and we just can’t stop clicking on links. We are addicted to clicking every link we find, and should one of those be a malicious site, we run the risk of becoming a victim if we do not have the latest patches, and sometimes with these zero day exploits, there IS NO PATCH.

Browser Guard 2010 from Trend Micro may help prevent your IE from leading you into trouble. As mentioned, it is a free download and works with IE 6, 7 and 8. If you are using an x64 (64 bit) system, you are out of luck though.

The following is extracted from their site:

Trend Micro Browser Guard is an easy to use browser plug-in, which prevents known and unknown web threats. Zero-day attacks such as Aurora and Hydraq can be proactively blocked by Browser Guard, which detects and prevents behavior associated with these types of threats.

Cybercriminals often use malicious JavaScript inserted into web pages, where attacks can take place silently, without any visible effect. Browser Guard also protects you from such attacks by analyzing and subsequently blocking malicious JavaScript. For the most advanced and efficient detection, Browser Guard communicates with the Trend Micro Smart Protection Network, bringing you the latest protection when you surf the web.

Key Benefits

  • Protects against zero day exploits
  • Detects buffer-overflow and heap-spray attacks
  • Protects against execution of shell code
  • Analyzes and protects against malicious JavaScript
  • Connects with Trend Micro Smart Protection Network to maximize detections

CLICK HERE to go to the Trend Micro Browser Guard page.

If you are using Chrome, Firefox or another alternative browser, you can still become a victim, just not as easily due to the fact that these browsers are not being targeted as frequently.

If you have questions or require assistance, please call 864-990-4748 or email info@homelandsecureit.com – We offer affordable and fast virus removal and cleanup in Greenville / Upstate SC (If you suspect you have a virus, click here, then select the free online scan)

Greenville computer service, repair, support and more – Way more… #greenville

This morning I was having a discussion with a potential client and we were talking about the “Homeland Secure IT” name, the individual mentioned that they understood the play on words, however they were simply not sure how to take “IT”, because they thought of “IT” only in the terms of “Information Technology”…

I explained that the “IT” in our case is an all encompassing catch-all term that covers just about anything you plug into the wall. We sell, service, repair, support a wide range of technologies, not just a computer, server or network, but VoIP systems, CCTV and network security camera systems, firewall appliances, anti-virus software and software in general.

So basically, whatever IT is, we can help you with IT!

I am unsure of a way to indicate everything we work with, but suffice it to say, it is not limited to just a notebook computer fix, or a simple virus cleanup. While we DO those things, we also deploy Blackberry Enterprise Server so your mobile users can stay connected. We help integrate wireless devices like Androids, iPads and more into your Microsoft Exchange. We configure VPNs that allow a mobile workforce or a branch office to connect to your data as if they were physically in your office. We design and deploy Voice over IP phone systems. We offer biometric and card swipe time clocks.

Again, if it plugs into your network, or connects wirelessly, or you WANT it to, we can help. Give us a call at 864.990.4748 or email info@homelandsecureit.com to discuss your unique needs! We serve the Greenville & Upstate SC area!

Web enabled thermostats aim to save you money and give you control from anywhere!

Ecobee Smart Thermostat

Ecobee Smart Thermostat

Web Enabled Thermostats: A not-so-new technology is becoming mainstream due to the desire to save money and be “green”.

If you have been looking to purchase a new HVAC system for your home or business, you may have been given the option to include a thermostat that enables you to view statistics & make changes to the settings using a web browser or an app on your phone. The price ranges from a round $100.oo to as much as $500.oo at the time you purchase a new system, and you promised that it will pay for itself by allowing you to set schedules to reduce the costs of operating your system during times you are away from the home/business.

Some utility companies, such as UTX in Texas have plans you can sign up for that will enable you to get a FREE web enabled thermostat, and I believe you only pay around $75.oo for the installation. Ultra good deal in my opinion.

The X-300 is a powerful temperature logger and web-enabled thermostat

X-300 Web Enabled Thermostat

But what about those of us with older systems? Fortunately, the majority of web enabled thermostat manufacturers have designed their units with us in mind. Instead of targeting the new HVAC market, they have built devices that can be used with any system, whether it is a heat pump, or an oil fired unit, there is a model for you.

The benefits are as mentioned before… Ability to control your system from a web browser, ability to control your system from a phone with either a web browser or an app loaded on it for that thermostat. Some thermostats feature the ability to control other devices, such as lighting, and some have the ability to sense a contact closure. You can see a graph of system usage and override scheduled events, as well as easily SEE the schedules, rather than paging through one day at a time as you do on older programmable thermostats. Some units feature alerts, should your system not cool or heat properly, which would be perfect for those who have unattended / vacation properties.

X-300 Thermostat Control via iPhone App

X-300 Thermostat Control via iPhone App

What about security? Can someone “hack” my home? Sure! Anything that is accessible via the internet could potentially be exploited by attackers, however, these devices are currently low-profile making them an unlikely target. Most of the manufacturers claim security through encryption of the data stream.

Where do you get one of these? Online vendors have a large selection of web thermostats, and your HVAC vendor probably has their favorite. Some quality brands are Ecobee, Control By Web, Schlage / Trane, Proliphix, BAYweb, among others. Which model is right for you should be based upon exactly what features you require. For instance, some have a Wi-Fi option to eliminate the CAT-V cable run.

Can I really recoup my investment? That remains to be seen. I am sure a $150.oo unit could pay for itself in a year or more if you are replacing a non-programmable thermostat, but for some of the higher end products, I’m thinking that realistically you are looking at a couple years… Your mileage may vary.

If you have any question about these, please email info@homelandsecureit.com, call 864-990-4748×201 or respond here! If you have one, tell us what you like best about them.

Need more speed from your wireless LAN? 802.11n is IN!

Cisco 802.11n Access Point

Typical Cisco 802.11n Certified Access Point

Late in 2009 the 802.11n wireless LAN standard was finally ratified by the IEEE, making way for a host of manufacturers to produce products that are certified with this standard.

What is 802.11n exactly? It is an upgrade to the 802.11b/g standard that has been in use for years in homes and businesses around the world. It’s the same, but different! Think of it as Wi-Fi on steroids.

Just how fast is it? Five times faster throughput than 802.11g and even faster throughput possible through the use of different formats of this new standard. Imagine a wireless LAN having throughput greater than your wired network!

“But I’ve already got 802.11n” you might say. While that is true, depending upon when you obtained it, you probably have the 802.11n Draft product that may not have all the bells and whistles of the post ratification standard and certified devices that are coming on the market.

The real secret sauce will be what is known as “three-spacial” and “four-spacial” systems… These will will make it a toss-up between a wired 10/100 LAN and wireless, even in heavy use environments.

When purchasing 802.11n equipment, you may wish to insure it is on the Wi-Fi Alliance’s list of certified devices which can be found HERE. Every major manufacturer is offering a line of products with the new standard, including our favorite, Cisco.

Need another reason to consider upgrading current 802.11b/g systems to the new standard? How about range? 802.11n has a more consistent coverage area!

If you would like additional information or to purchase new WLAN equipment, please call 864.990.4748 or email info@homelandsecureit.com

Microsoft Windows XP pro pre-install downgrade to be unavailable after 10/22/2010

The time has come for us to say goodbye to Microsoft Windows XP!

All of our computer vendors have been alerting us to the fact that after October 22, 2010 they will no longer be able to provide us with machines that include the downgraded Microsoft Windows XP professional and that Microsoft Windows 7 will be the only option. There are some exceptions, such as storing an image with the PC vendor and providing them with a product key, which they will store and apply to custom ordered machines after 10/22/2010.

I highly recommend you make the move to the new Microsoft Windows 7! Our clients are never disappointed with the performance and reliability of this operating system. Some people have abandoned their alternative OSes (linux and Mac) for the compatibility and features!

If you are still unsure if Windows 7 Pro is for you, please give us a call or email. We offer free computer / server consultation to Greenville & the Upstate of SC. We can also install your software on a Windows 7 machine and insure compatibility without the need for you to switch your infrastructure only to find out it was the wrong thing to do!

SECURE IT ALERT: Adobe to release Reader & Acrobat patches for Windows, Mac & UNIX

Secure IT Alert Header

Homeland Secure IT Alert

Homeland Secure IT Alert for August 18, 2010

Adobe has announced that August 19th will bring out-of-cycle updates to Adobe Reader 9.3.3 across the Microsoft Windows, Apple Mac and UNIX platforms, as well as Acrobat 8.2.3 on Apple Macintosh to address critical vulnerabilities. An update to Adobe Flash player is also anticipated.

More info can be found here but the bottom line is – please insure your products are updated as soon as the release is made. We are seeing clients already exploited through these vulnerabilities.

If you require assistance, contact your computer service professional, or if you are in the Greenville / Upstate SC area, please call 864-990-4748 or email info@homelandsecureit.com

Homeland Secure IT Alert Footer

Homeland Secure IT Alert

Microsoft, Adobe and Java Updates – Please Update Your Systems!!!!

Today we had a young lady come into our office with a severely infected notebook. It had multiple rootkits, trojans, spyware, etc….

The computer did not have updates on it for the Microsoft Windows Operating System, Microsoft Office, or Adobe Reader / Flash / Air.  Nor did it have the latest Java on it. Anti-Virus was handled by AVG (Free).

Vulnerabilities in the operating system and applications were the likely culprit that allowed the malware in, but either way, the computer was badly infected, and data possibly compromised.

Please, use Microsoft Update on your PCs and make sure your Adobe products and Java are up to date! That, combined with quality anti-virus like Trend Micro Internet Security, Trend Micro Worry-Free Business Security, etc, may protect you from a costly infection and provide much greater security for your personal and/or company data.

If you think for a moment that your computer may be compromised, be sure to contact your computer service professional! Don’t take a chance with your security.

Homeland Secure IT offers complete computer, server & network support, repair, security & sales in Greenville and the Upstate of SC. Please call 864-990-4748 or email info@homelandsecureit.com for more information or a free evaluation! Our typical virus cleanup / removal rates are very competitive with rapid turnaround!

Microsoft Business Productivity Online Suite and your Outlook work well together! #SaaS #BPOS #MS

Microsoft Office Outlook 2010

Microsoft Office Outlook 2010 With BPOS Goodness

So you are setup with a FREE trial of Microsoft’s Business Productivity Online Suite and are enjoying all the online apps but something is missing, you don’t want to use web apps, you want to use all the features of Microsoft Office Outlook 2007 or 2010 that you have already paid for and know your way around.

Well it is possible to have your cake and eat it too! *IF* you signed up for the BPOS Standard trial instead of the “Deskless Worker” trial, then you can configure your Outlook to view the same Exchange data you see with Outlook Web Access. You will see the same emails, the same contacts, the same tasks, folders, public folders, calendars etc!

Wait, you didn’t get the Standard version of the BPOS demo? That’s okay, you can log back into the portal and activate the Standard version, then deactivate the Deskless Worker product and not even lose your configuration. YOU MAY lose your emails though and have to start over, but hey, it’s just a demo, you didn’t have that much anyway!

Okay, so back to task at hand, getting Outlook configured. It’s EASY, relatively speaking to accomplish this. First you log into your online mail app (OWA) at http://mail.microsoft.com and once in there, click on OPTIONS at the upper right hand corner, then, select ABOUT from the left hand menu. You will see something that looks like this:

BPOS configuration data from OWA

Data to gather from OWA to setup Outlook

The important information for you to gather will be the “Outlook Web Access host name”, and the “Mailbox server name”.

Now, close out Outlook on your desktop and go to START/Control Panel and select Mail (If using Win 7 64 bit, once you open Control Panel, type “mail” in the Search Control Panel input at the top right hand side and select “Mail (32-Bit)”).

Select “Show Profiles” and add a new one… Let’s call it “BPOS”.  Next, select the checkbox for “Manually configure server settings or additional server types” then hit “Next >”. Select “Microsoft Exchange or compatible service” and hit “Next >”.

In the “Server:” field, put the information you gathered from Outlook Web Access for the Mailbox Server Name… (Ex: A3DIAXVS251.RED001.local). For “User Name:” enter your email address, then select “More Settings”. Don’t bother hitting “Check Name” as it will not function (yet)…

Select the “Connection” tab, at the bottom, select “Connect to Microsoft Exchange using HTTP” and then hit the button “Exchange Proxy Settings…”, for “Use this URL to connect to my proxy server for Exchange:”, you need to enter the Outlook Web Access hostname from OWA (Ex: red001.mail.microsoftonline.com) and do not include the “https://” or the “/owa” here, just the hostname.

You can select to “Only connect to proxy servers that have this principal name in their certificate” if you wish, but not necessary.

DO select both of the checkboxes at the bottom for “On xxxx networks, connect using HTTP first, then connect using TCP/IP”, and set the proxy authentication settings to “NTLM Authentication”.

Click OKAY and apply those settings and now try to open Outlook… You should be prompted with a login.

Sounds complicated? Kinda-sorta, but it works well, and you only have to do it once. You can also use the Microsoft single signon client if you wish, which will remember your login and password and allow you to open Outlook without any issue, but some company policies may not allow you to install additional software, or automatic login applications so the above should work for you.

If you get stuck, please reply here or shoot me an email at info@homelandsecureit.com and I will try to give you a hand.

Oh my, another #greenville computer user lost their data – Wish they had used our online backup service…

Just saw where another computer user in Greenville could have avoided a nightmare. They posted their computer was toast. Bad hard drive according to some geeky type people that looked at it. The computer is back to running, but their data is GONE.

Homeland Secure IT offers many backup solutions that can protect you from this scenario, but our favorite is Servosity Online Backup, which runs on your computer, regardless of the operating system of that computer (Server, Workstation, Notebook, etc) and quietly backs up your data to a secure server located “in the cloud”.

It is affordable, it is reliable, and the president of Servosity is an Upstate SC native. What more could you ask for?

If you would like to try this awesome online backup service, we offer a FREE trial, just call 864.990.4748 or email info@homelandsecureit.com for additional details or get setup for a trial.

Please do it before it is too late. Losing your pictures, music, documents, etc is a painful experience, and potentially devastating. The cost of recovering hard drives can be in the thousands!