When selecting a backup solution, you may be considering one of the following:

LTO, DLT, DAT Tape – The de facto standard in backup media for business and enterprise. Though it is growing a little long in the tooth, the format has proven itself to be reliable and affordable when you consider the lifetime of the drive and the media. These are available in a variety of flavors, from SCSI, to SATA, internal and external. And for those needing massive storage and speed, there are enormous auto-loaders such as 96 slot HP LTO 5 fiber channel systems.

Iomega REV removable cartridge systems – Outdated, no longer sold or supported by Iomega. (You can still buy media)

Portable hard drives – While these seem attractive because they are cheap and available at every office supply house in town, the reliability of these devices is not idea for mission critical solutions. The constant plugging and unplugging of USB cables can wear connectors out prematurely and there is the slight possibility that a server can be damaged by static when plugging in a drive. Most IT people feel this is a better solution than no solution at all.

Remote Backup or In-The-Cloud backup – We offer Servosity Online Backup and feel it is a great addition to any existing hardware backup system you may have, and could serve as your primary backup if so desired. These are affordable solutions that require very little hands-on time.

Network based disk storage – These are awesome for speed, and convenience, but they generally remain on site and in the event of a catastrophic disaster such as fire, flood, or even theft, you could be left with no backup. This falls under the “much better than nothing” category.

Flash drives and other non-volatile storage media, including CD & DVD – Again, this better than nothing and surely works for small amounts of data, but longevity may be in question. CDs and DVDs have a lifespan after written to, usually of only a few years, making long term archival use impossible. Flash drives are great to make a quick backup, but there are occurrences of people losing data on one from high powered RF devices erasing them. Probably not a solution for most businesses.

A plethora of other technologies exist, but one that has been gaining momentum in the business and enterprise market is RDX.

RDX, or Removable Disk Technology is based around a docking station that accepts an RDX cartridge. The cartridge encases and protects a hard drive. RDX cartridges come in many sizes, whether you need 160GB or 1.5TB, there is bound to be one that fits your data needs.

What makes RDX different from a typical portable or removable drives? It is a “hardened” solution that encloses the hard drive and enables it to take a drop of up to 1 meter. These systems also offer protection from static discharge. A typical RDX can move upwards of a 100GB an hour. If you outgrow the the original size cartridge, you can begin replacing them with larger capacity as the dock is backwards and forwards compatible with any other RDX cartridge.

RDX is a standard that allows you to purchase cartridges from any manufacture to use in your system. It also offers a shelf life of up to 30 years, allowing you to archive your data and know that if the IRS audits you, you can access it.

No need to upgrade your current backup software in most cases when switching to RDX as the technology is already supported in most backup applications such as Symantec Backup Exec!

If you are looking for a backup solution, whether it is your first, or an upgrade of a current system, then you may wish to give RDX a close look. Call us at 864.990.4748 or email info@homelandsecureit.com. We offer RDX products from HP, Imation, Lenovo, and Quantum to name a few. We offer a free evaluation in Greenville and the Upstate of South Carolina.

Homeland Secure IT Alert

Secure IT Alert #2 for Thursday, August 26 2010

More bad news for Mac owners. PLEASE update your systems. We are seeing the number of Mac and *nix exploits ramp up at an alarming rate. Many people have found rootkits were installed on their systems for no telling how long before they were discovered.

The following information was provided courtesy of WatchGuard. Fantastic firewall devices at reasonable prices! If you should be interested, we are a partner with WatchGuard and offer their full line-up.

 

Malicious Documents and Images Threaten OS X

Severity: Medium

24 August, 2010

Summary:

• These vulnerabilities affect: All current versions of OS X 10.5.x (Leopard) and OS X 10.6.x (Snow Leopard)
• How an attacker exploits them: Multiple vectors of attack, including enticing your users into downloading and viewing various documents or images
• Impact: Various results; in the worst case, an attacker executes code on your user’s computer
• What to do: OS X administrators should download, test and install Security Update 2010-005 as soon as possible, or let Apple’s Software updater do it for you.

Exposure:

Today, Apple released a security update to fix vulnerabilities in all current versions of OS X. The update fixes thirteen (number based on CVE-IDs) security issues in seven components that ship as part of OS X, including PHP, CoreGraphics, and ClamAV. Some of the fixed vulnerabilities include:

• CoreGraphics Buffer Overflow Vulnerability. CoreGraphics is an OS X component that helps output graphics to your display (or printer). CoreGraphics suffers from a heap buffer overflow vulnerability involving the way it handles PDF files. If an attacker can get a victim to view a specially crafted PDF document (perhaps hosted on a malicious web site), he could exploit this flaw to either crash an application or to execute attack code on the victim’s computer. By default, the attacker would only execute code with that user’s privileges.
• ATF Buffer Overflow Vulnerability. The Apple Type Service (ATS) helps OS X machines handle fonts. ATS suffers from a buffer overflow vulnerability having to do with the way it handles embedded fonts. By tricking one of your users into downloading and viewing a malicious document containing a specially crafted font, an attacker can exploit this flaw to execute code on that user’s computer. By default, the attacker would only execute code with that user’s privileges. 
• Multiple PHP Vulnerabilities. PHP is a general-purpose scripting language primarily used to create dynamic web applications, which ships with OS X. Apple’s update fixes several vulnerabilities found in PHP 5.3.1. However, Apple only describes one of the PHP vulnerabilities in any detail. The vulnerability involves a buffer overflow flaw within one of PHP’s image handling function libraries. By enticing one of your OS X users into viewing a specially crafted PNG image (perhaps hosted on a malicious web site), an attacker could exploit this flaw to execute code on that user’s computer, with that user’s privileges.

Apple’s alert also describes other vulnerabilities, including some Denial of Service (DoS) flaws, information disclosure issues, and a few more code executions flaws. Components patched by this security update include:

ATS	CFNetwork
ClamAV	CoreGraphics
libsecurity	PHP
Samba

Please refer to Apple’s OS X 10.5.x and 10.6.x alert for more details.

Solution Path:

Apple has released OS X Security Update 2010-004 and OS X 10.6.4 to fix these security issues. OS X administrators should download, test, and deploy the corresponding update as soon as they can.

• Security Update 2010-005 (Leopard)
• Security Update 2010-005 (Leopard Server)
• Security Update 2010-005 (Snow Leopard)
• Security Update 2010-005 (Snow Leopard Server)

Note: If you have trouble figuring out which of these patches corresponds to your version of OS X, we recommend that you let OS X’s Software Update utility pick the correct updates for you automatically.

For All Users:

These flaws enable many diverse exploitation methods. Some of the exploits are local, meaning that your perimeter firewall never encounters the attack (unless you use firewalls internally between departments). Installing these updates, therefore, is the most secure course of action.

Status:

Apple has released updates to fix this flaw.

References:

• August 2010 OS X 10.5x and 10.6.x Security Update

This alert was researched and written by Corey Nachreiner, CISSP.

---

Did this alert help you? How could we improve it?
Let us know at lsseditor@watchguard.com.

For past alerts, log into the LiveSecurity Archive.

Jargon defined in the LiveSecurity Online Glossary.

—

If you require assistance please call us at 864.990.4748 or email info@homelandsecureit.com - we offer computer & network support to Greenville / Upstate, SC

Homeland Secure IT Alert for August 18, 2010

Adobe has announced that August 19th will bring out-of-cycle updates to Adobe Reader 9.3.3 across the Microsoft Windows, Apple Mac and UNIX platforms, as well as Acrobat 8.2.3 on Apple Macintosh to address critical vulnerabilities. An update to Adobe Flash player is also anticipated.

More info can be found here but the bottom line is – please insure your products are updated as soon as the release is made. We are seeing clients already exploited through these vulnerabilities.

If you require assistance, contact your computer service professional, or if you are in the Greenville / Upstate SC area, please call 864-990-4748 or email info@homelandsecureit.com

Are you tired of dealing with POP3 or IMAP mail from your ISP? Tired of SLOW email? Do you want to share calendars between coworkers? Do you want to see the same contacts, calendar entries and emails on your phone as you do in your Outlook on your desktop and also via a web interface? Do you want your mobile workforce to have access to the same resources you do, including public / shared calendars & contacts? Want support for your Mac, Apple iPhone, iPad, Android, Blackberry?

Then Microsoft Exchange is the way to go, however, there are costs associated with hosting your own Exchange server that are unattractive to many smaller businesses.

Fortunately there are Hosted / In-The-Cloud alternatives, such as Microsoft’s Own BPOS, the Microsoft Business Productivity Online Suite which features a Hosted Exchange server, SharePoint, Office Live Meeting and Office Communications Online. Using BPOS can eliminate the need to purchase, deploy, maintain, backup and eventually upgrade a Microsoft Windows Server with Microsoft Exchange Server. The services are hosted “in the cloud”, in a data center, where all maintenance and upgrades are maintained FOR you. No need to worry with backups either.

This solution isn’t right for everybody, but it could be the answer to your problems if you have a smaller office, a large mobile workforce, a small budget or possibly no central location to place a server at. Would you like more information? Please call us at 864-990-4748 ext 201 or email info@homelandsecureit.com to arrange for a free, no obligation consultation.

Optionally, you can sign up for a FREE 30 day trial of BPOS - Business Productivity Online Standard Suite - This trial includes 20 user licenses for Exchange Online, SharePoint Online, Office Live Meeting, and Office Communications Online.

Homeland Secure IT offers Hosted Microsoft Online Services including the full BPOS / Business Productivity Online Standard Suite (Exchange Online, SharePoint Online, Office Live Meeting & Office Communications Online) as well as the Business Productivity Online Deskless Worker Suite (Exchange Online & SharePoint Online), and each service individually.

If you are in the Upstate / Greenville SC area, we can assist you with configuring your Outlook to work with the Hosted Exchange Online service at your location or ours.

We also offer full remote support and phone support to clients anywhere in the United States.

The Androids are coming, the Androids are coming!

A few posts ago I talked about the number of portable tablet computers / pads that are coming on the market. Yesterday I took Scott’s Android pad to a Greenville meeting spot (Halfway to Habana) where we gather on Thursdays for fun and fellowship – nobody seemed too impressed with the device due to the speed, or lack there of.

While discussing the inexpensive Chinese import (called the iPed) with its 8″ display, wi-fi, etc, Phil Yanov / @thinkhammer brought up the Augen Android pad being offered exclusively by K-Mart. I had not heard of it, but I promptly Googled it to find that the Augen is far superior to the iPed in that it is faster and more responsive and that it is has the Android 2.1 OS loaded on it from the factory. Also, it doesn’t hurt that it is being offered by a reputable franchise (K-Mart) that would allow you to return it should you be disappointed with the performance.

I have checked K-Mart stores around the Upstate and none of them show the device is in inventory, but you can get a rain check to help you be  the first on your block to sport one. Will it be serious competition for the Apple iPad? I don’t think so, not yet. However, the Android pad devices are maturing and as they do so, the sales from all vendors combined are going to (eventually) cut into the Apple market share. (Still waiting on the Palm and Windows Mobile tablets to make their showing)

Here is a first look at the Augen from a new user’s point of view:

If you have one of these devices, I would like to hear from you, so please shoot me an email or respond here!  Have a great weekend!

It is no surprise that Electronic Healthcare Records / Electronic Medical Records are all over the news currently. It is an issue that affects our privacy and anytime that is in question, we get people on both sides of the fence up in arms.

Built into the 2009 stimulus bill are requirements that healthcare records go digital by 2014. Yet it is not mandated exactly how that be done, nor how that is to be protected. If you Google around a little bit you will find websites and forums dedicated to this topic. Obviously more is being said about the policy itself than the mechanics of it. I won’t get into what I believe here, but I will cover some specifics about how medical facilities are handling this requirement.

Some doctors in small practices are already digital, or at least using a blend of paper records and electronic records. They may be storing them in various formats, from scanning the paper documents and storing images of them on a computer, to having full fledged professionally written and mainstream client management systems, but the majority I am aware of in family practices go for the cheapest way out in order to have their data on computers. The advantages of having digital copies are that they can back it up offsite in case of  a catastrophe and, they can access it from another location besides their own office, in the event they need to do so.

Now for the downsides. These systems have the exact same vulnerabilities that your desktop PC has, because they are using nothing more than the standard desktop PC. IF they are at all concerned about HIPAA they may have some safeguards in place, but time and time again, I hear about computers with some of the following issues:

No backup system in place: Not a threat to YOUR data, but all that information could be lost.

No anti-virus, or outdated / non-functional anti-virus: Of course this is a huge issue and could pose the largest threat. Even though anti-virus, like Trend Micro Worry Free Business Security is affordable, many doctors fail to realize the importance of this, or feel that using a FREE product is fine, when in fact it is against the terms of usage for those “free” products to be used in business.

Machines not patched: Another common-place problem is for computers to go without updates from Microsoft (or even Apple if they are using Mac OS-X) which make for extremely vulnerable systems – one part-time employee gets bored and browses to the wrong site and a bad guy now has access to everything inside that doctor’s office because the OS had big gaping holes in it, or applications such as Adobe Flash were unpatched.

Hardware firewall not in use or outdated: Many people believe the firewall on their PC (either built-in one or one provided by an anti-virus solution) is adequate and all they have in place is a Linksys, D-Link or other router. Firewalls keep bad guys from getting in, or at least slow them down. Quality devices from Cisco, WatchGuard, SonicWALL, Zyxel are affordable these days, however many opt to leave them out of the mix. A common excuse I hear is that the ISP provides their firewall, in the form of an Adtran or even a Cisco router, but nobody is aware of whether it has the latest software loaded on it. Any firewall in place is better than none, but one that is not up to date is vulnerable to someone who really wants in.

These are just a few of the more common issues that can make Electronic Medical Records vulnerable to disclosure. The list is a long one, and it is best to enlist the assistance of a computer service provider to evaluate your network. In fact, it would be a good idea to have more than one network support specialist look over your network if you are in the medical field. If you are in the Greenville or Upstate SC area, please call upon us at 864-990-4748 or email info@homelandsecureit.com if you would like more information. We are authorized dealers for Cisco, Trend Micro, SonicWall, Zyxel, WatchGuard, Servosity Online Backup and more.

If you worry about the security of your medical records, ask your healthcare provider to provide you with information that shows what they are doing to protect your privacy.

My initial reaction to the iPad was that it was cute little toy, but then immediately after its release it became apparent that people wanted to use them for business as well as pleasure. First was the use of Remote Desktop (Terminal Services), which I wrote about and has been finding extreme popularity, then of course was Microsoft Exchange integration to get corporate mail and with that came ways to get connectivity without buying the 3G version of the iPad, using a MiFi from Verizon, and ultimately, hacking the iPad itself and putting a MiFi inside the iPad.

Now that some time has passed since the release of the iPad, we see that many companies and even government organizations have adopted them for real business use. Case in point, the Ontario, CA City Council has begun using the tablet computers and that alone shows how a new technology is changing the way we do business.

I’m seeing more and more interest in these highly portable devices from business users and as more manufacturers develop and release their products, we may see a tablet computing revolution, where the day planners, notebooks, notepads, and even post-it notes go in the trash in favor of this digital ink. And the SaaS (Software as a Service) model will make a lot of providers wealthy.

Businesses who want to get in on this phenomenon should talk to their IT provider to see how easily this technology can be integrated into their networks. Your computer service provider can help you get your pad /tablet computer linked to your corporate Microsoft Exchange mail, setup clients that allow you to remote to your Microsoft Server and much more!

If we can be of any assistance in the Greenville / Upstate area, please call us at 864-990-4748 or email info@homelandsecureit.com

The tablet computer wars are coming…  The awesome little Apple iPad will soon have serious competition from some big names in desktop, laptop and notebook computers….

Cisco, Lenovo, Toshiba, HP and LG, to name a few have either made plans to release pad / tablet computers, or have actually got a product to offer. And that is just the tip of the iceberg.

No longer will you have to choose an Apple iPad, you will be able to select tablets based on the Google Android operating system, which will instantly provide you with tons of apps from the Android scene, and when HP gets their WebOS based system out, which was really part of the Palm lineup, that will be yet another platform for the tablet market. We shouldn’t forget about Microsoft (which some of you would love to), as they have an OS that is working on tablets also.

So how will you decide which is the best solution for you? It may come down to dollars and cents for some, while others may select based upon devices they already own. I was sure that most Mac and iPhone users would opt for an iPad out of owner loyalty to the brand, but the Android offering seems to be getting a lot of attention among the current Apple owners, enough so that they are holding out for the Android pads to hit the market!

Only time will tell who will come out on top, but my money is on the consumer in the end, as they are going to get many choices and the competition between brands and platforms will help bring the prices down!

There may be a few of you who want to be early adopters of the Android tablet and purchase an imported product. Buyer beware here – they may not support the new Android OS due out later this year…

Homeland Secure IT offers tablet computers built on the proven Windows platform currently, and as soon as HP releases their WebOS based product, we will offer that as well as any other products which are suited to business use mainly, like the Android Powered Cisco Cius tablet. Please contact us at 864-990-4748 or email info@homelandsecureit.com for more information

The awesome little iPad tablet computer from apple is still vulnerable to the hacks that were reported earlier. According to this article, ‘Once implemented, the hack can reportedly allow hackers to steal someone else’s email identity, reflash network devices with firmware, or trick Safari into doing “pretty much anything on any TCP port and not have any current IDS/IPS in existence be any wiser for it.”‘

The Safari browser has been patched on other platforms, but remains vulnerable on the iPad. User beware…

Homeland Secure IT is committed to helping our clients stay safe by informing them of potential security issues. If we can help you or your business with network security or network support, please email info@homelandsecureit.com or call us today at 864-990-4748.

Apple iPad owners have their first major security worry….  As the title says…

Read more here: http://gawker.com/5559346/apples-worst-security-breach-114000-ipad-owners-exposed

If you own an iPad, you may wish to visit that page.