Huge Sony PSN Data Breach: What Should I Do? (From the WatchGuard Security Blog)

I am reposting this from WatchGuard Security Center blog in its entirety below.  I have kept fairly silent on this subject as everyone has said everything that needs to be covered. Corey did a fine job of outlining the situation though, so for your reading enjoyment:   Huge Sony PSN Data Breach; What Should I Do? Corey Nachreiner | April …

1

“We’re from the government and we’re here to help!” – FBI in regards to removing Coreflood from infected computers

The FBI seized control of the Coreflood servers a couple weeks ago, drastically reducing the traffic that was being generated by the large botnet by stopping the update of the bot clients. This will allow anti-virus programs to begin to discover the presence on infected machines and hopefully remove it. That’s awesome, but what’s next? The FBI is seeking to …

2

Password for life? Yeah, maybe…

I just read an interesting blog post over on http://www.baekdal.com/tips/password-security-usability which gives a good case for not using random letters, numbers, case and special characters… The writer claims the password of “this is fun” would take about 2500 years to hack. Most business security policies require passwords that are a minimum of 8 characters, with upper and lower case, numbers and …

1

“Privacy Bill of Rights” perspective from the WatchGuard blog

The following blog post is from the WatchGuard Security Center, posted by Chris McKie….   The “Privacy Bill of Rights” – A WatchGuard Perspective Chris McKie | April 12, 2011 at 12:50 pm | Tags: Compliance, Privacy Bill of Rights, Regulation, Security Law | Categories: Editorial Articles | URL: http://wp.me/pVP8E-8K “Whenever industry fails to self-regulate, government will fill the void …

Secure IT Alert: Microsoft Patch Tuesday is Coming – Strap In! Lots of Updates!

Homeland Secure IT Alert for Monday, April 11th, 2011 You’ve waited a whole month for this, and Microsoft has not let you down.  Updates galore are ‘a comin’ tomorrow, April 12th, 2011. The Microsoft Security Bulletin Advance Notification states that this Patch Tuesday will be a big one. A total of 17 fixes, addressing 64 security vulnerabilities are there for …

Bogus Intuit QuickBooks Online Warnings Via Email Lead to Infection

Watch out for emails from Intuit and other software and service providers that appear to be legitimate and make sense on the surface… I was told by one of our friends/clients today that they had become infected after receiving an email from “software@quickbooks.com” which read something like this: Subject: QuickBooks Update: Urgent <Official Intuit QuickBooks Online logo here> You will …

What does the Epsilon security breach mean for you?

We’ve been hearing about Epsilon’s security breach for several days now. Some thought it was an April Fool’s joke due to how vague the initial press release release was, but obviously it was no joke at all. Epsilon has since updated their press release to indicate that this breach affects only 2% of total clients, but what exactly does that mean? …

Trend Micro Worry-Free Business Security Critical Patch 1417

Trend Micro released Critical Patch 1417 for Worry-Free Business Security last week which includes previous patches and corrects known issues. Businesses running Trend Micro WFBS should update to insure reliable operation of their anti-virus solution.  For a full list of issues addressed see the Trend Micro download site. If you require assistance or wish to purchase Trend Micro products in …

2

Please stop following every link through that you see in email, Facebook, Twitter, etc…

Being in the computer service business, every day we are seeing more and more computers that have been compromised, whether they are Microsoft Windows, Apple Mac OS X, Linux, it doesn’t matter. Even iPhones and Androids are falling victim to various malware found as a result of blindly following links. What can you do to help protect yourself, your computer …

1

Cisco IOS patch delayed until September

Cisco announced an update to their IOS operating system that was scheduled for March 23rd, unfortunately, due to the earthquake and tsunami in Japan, Cisco has stated that we will all have to wait until the next scheduled disclosure destined to take place in September. Cisco revealed over 10 vulnerabilities since the last update back in September of 2010 that …