ABestPost

Over the last few years, computers have started shipping with more and more USB connections – it’s that little rectangular plug usually found on the back (and now front and even sides) of your PC, used to connect all sorts of devices to your computer - keyboards, mice, scanners, cameras, MP3 players, and a myriad of others. In fact, it is now impossible to get a computer without one.
One of the most popular uses is to connect small thumb drives (also known as pen drives or USB drives) in order to back up, store, and transport data. In such a fashion, these are quickly becoming the de facto replacement for both write-able CD-ROMS and floppy disks. Typically, these are either dedicated storage devices or integrated as part of portable music players (such as the ever popular iPod) and can hold anywhere from 128 megabytes to 80 gigabytes (enough for most companies ENTIRE record set).

What, exactly, is the problem with this? A standard, high-speed, easy to use connection for almost every device sounds like a great advantage for computer users.

Unfortunately, there are some very serious security implications associated with USB and its ease of use. The worst of these deals with letting data get into the wrong hands. There are several ways that someone interested in your data might leverage USB to get your sensitive information and take over your computer resources. Even worse, as these devices grow in capacity, the danger they pose also increases.

The root of the problem stems from the way Microsoft’s Windows® operating system handles plug and play devices (which is what USB devices are). As you may have noticed, whenever you plug anything into a USB port, nine times out of ten, Windows® will automagically recognize and configure that device for use. If it is a USB drive, it even gets a drive letter.
If Windows® detects that the device isn’t classified as “removable”, it will automatically run certain files found on that drive. (This is known as auto-run and is enabled by default in Windows®.) While many of the drives on the market today are considered by Windows® as “removable”, certain USB drive vendors actually configure their drives so Windows® detects them as “permanent”, thus making them capable of “auto-running” these files.

Someone trying to get your information could use one of these devices with a specially crafted auto-run program. When it is inserted into a computer, Windows® will happily launch this program without even asking the user and very likely not even letting the user know something is happening.

This approach can be used in several ways to compromise your data and computers. An attacker could come to your location posing as a legitimate customer and manufacture some excuse to be alone with your computer for a few minutes (how many times have you left your computer unattended even for a few minutes to check on something or get a print out on a printer?) while they insert one of the small devices into the computer. Within a few seconds or minutes, hundreds of files could be copied to the USB drive (the new term for this is called “pod slurping”). They then unplug the drive and walk out of your business with data they can sell or otherwise use.

Another scenario involves an attacker at a trade show offering “free” USB drives –a very popular item. They might easily distribute hundreds of these if the convention is large enough. Anytime someone inserts one of these drives, it quickly goes about its job of finding sensitive data and emailing or uploading it someplace on the internet. Even worse, it could be used to install a virus, worms, or other malware onto the computer and allow the attacker to connect to the computer whenever they are ready, potentially by-passing any forms of firewalls, virus scanners, and other security measures.

However, this type of threat isn’t only limited to outside attacks. With the size of these drives and the power of readily available software, a disgruntled employee could easily and very quickly copy thousands of files and walk out the door without raising any suspicions even from the most carefully monitored network (Sound far fetched? There have been several reported cases of this.).

Even worse, the danger might not even be directly the cause of disgruntled employees or malicious attackers. Many people use these devices to keep a copy of their files as they travel or take them home to work on them after-hours. With the capacity and small physical size, a lot of data is kept in a way that can be easily lost or stolen. It’s easy to spot someone running away with your laptop bag, but if they slip the USB drive into a pocket, they become impossible to find. More dangerous is the doubting of theft: was it stolen or did you just happen to lose it? This leads to delayed reporting of the loss and potentially greater damage if it was indeed stolen.

Finally, if an employee does use these drives to take work home, is there any guarantee that the home computer is as well protected as the corporate one? Too many times have there been stories about malware making their way into a corporate setting because someone brought a USB drive from home that was infected. Since Windows® configures these drives on the fly, its possible that the anti-virus program could be by-passed since they may be only set to scan previously existing drives, allowing the virus to gain access to your company network.

So what can you do?

Thankfully, there are quite a few strategies that can help mitigate the risk of USB drives in your environment. Naturally, the strength of your solution will need to be tailored to the sensitivity of your data, the potential for harm, and the potential for attack. A bank will have much different exposure from this threat than would a cash-only craft’s store, although both should take care to protect their customer’s data.

Although it seems everyone jumps to the technical solutions first, one of the best ways to combat this problem is through a strong, well enforced policy regarding USB drives. If possible and applicable, USB drives should be prohibited. This includes everyone (even the IT staff and system administrators who are some of the most likely to want to use them, but also the most likely to go to conferences that offer them as free gifts!). This means anyone seeing a USB drive will know instantly that it shouldn’t be there and can report the incident immediately.

If this isn’t possible, their use should be permitted on a use-by-use basis to employees that have been made aware of the risk. Any drives of unknown origin (from vendors, gifts, etc) should be connected to an isolated machine to be scanned for viruses and wiped clean before use.

Once a good policy has been established, technical measures can be put into place to enforce it. One of the easiest and cheapest of these is to disable the use of USB ports from the BIOS. The BIOS controls many of the hardware settings of your computer and is typically accessed at the very onset of the boot up process – often a black screen with the manufactures logo on it.

Unfortunately, this means that ALL USB devices will be non-operational. With the spreading use of USB, this solution is impractical on newer machines since they don’t allow for traditionally connected keyboards and mice, only USB connected.

That leaves a software solution. Growing awareness of this problem has seen the introduction of software that allows you to control what kind of devices Windows® will allow to be connected and used. For example, keyboards and mice could be o.k., but any type of storage would be denied. Ultimately, this is the most flexible technical solution. Even better, as these products mature, they are allowing for centralized management. This means if John in accounting gets a scanner to digitize receipts, you could authorize its use from anywhere on the network.

Finally, if USB drives are an integral part of your business, and the use outweighs the risk, then all data should be encrypted on them. This keeps data from being readable should the drive get stolen or lost. There are many products out there that make this process simple and mostly transparent, and offer excellent levels of protection.

Three other strategies can also help mitigate the risk of USB drives if their use is a must in your company. These three are not directly related to USB concerns, but are good network security practices in general.
First, special care should be taken to ensure that your users only have access to files and information that is commensurate with their job titles – don’t let the new hire have access to the president’s files! Second, don’t let your users run as full administrators of their own workstations – many viruses and Trojans rely on this for successful attacks. And finally, keep customers away from your computers if possible. Keep them behind a counter or out of sight. Using these three strategies help limit the amount of data accessible by hackers or disgruntled employees.

Many organizations have no need to allow these devices on all computers and should take steps to ensure they are not used. Those that do feel a need to use these devices should work on training their users and taking the appropriate actions to protect their data, both on their computers and while on the USB drives.

In fact, each company will likely need to investigate and adopt a blend of these strategies to meet their needs and still protect their data.

USB drives really do offer a vast improvement over floppy disks and CD-ROMs. They are fast, portable, and easily re-writeable, making them ideal for certain applications. Unfortunately, the things that make them so convenient can also make them very dangerous and their use must be tempered with knowledge of that danger and the risks weighed against the benefits.

David Hefley operates Meridian Consulting, an information technology firm based out of Lincoln, NE.

Copyright 2007 David Hefley

The same Internet connection that lets you reach out and touch millions of Web servers, e-mail addresses, and other digital entities across the globe also endangers your PC and the information it contains about you. Here’s how to stymie the three gravest Internet risks.

Threat1: IE

Internet Explorer heads the list of top Internet security attack targets in the most recent joint report of the FBI and security organization SANS Institute.

One reason: As the most widely used browser, IE provides the biggest payoff for malicious hackers who set out to exploit its flaws. The biggest problem with IE is its reliance on Microsoft ActiveX technology, which allows Web sites to run executable programs on your PC via your browser.

Security patches and upgrades, including Windows XP Service Pack 2 and the recently released IE 7, make ActiveX safer, but the inevitable flaws that allow malware to circumvent those security measures–combined with the reality that we computer users are often a credulous lot–make ActiveX a risk not worth taking.

Happily, with very few exceptions (such as Microsoft Windows Update site), you can browse the Internet effectively without ActiveX.
To disable ActiveX in IE 6 and 7, choose Tools, Internet Options, Security, Custom Level, scroll to ‘Run ActiveX controls and plug-ins, and select Disable.

Click OK, Yes, and OK to close the dialog boxes. To enable ActiveX on a known and trusted site, click Tools, Internet Options, Security, choose Trusted Sites, click Sites, enter the site address in the text box, and click Add. Uncheck Require server verification (https:) for all sites in this zone, and click Close and OK.

If you leave ActiveX enabled, you may quickly encounter malware-harboring sites and e-mail attachments that ask you to let them install their ActiveX controls on your system. Unless you are 100 percent certain that the control is safe and legitimate, do not allow it.

Regardless of which browser is set as the default on your system, always keep Windows (and IE) updated to minimize your risk.

To keep Windows XP up-to-date, visit update.microsoft.com (you will have to use Internet Explorer) and install Service Pack 2, if you have not already. Next, choose Start, Control Panel, System, and click the Automatic Updates tab.

Select Automatic (recommended) If you trust Microsoft implicitly, Download updates for me, but let me choose when to install them if you trust the company a little bit, or Notify me but do not automatically download or install them to play it safest. (Click “Do not Let a Windows Update Bring You Down” for more on Windows updates.)
Whichever option you choose, click OK to download and install the most recent security patches.

If you stick with IE, upgrade to version 7, which improves ActiveX security. Still, the best way to reduce your PC vulnerability to ActiveX exploits is to download and install another browser, and set it as your default browser.

Mozilla Firefox is the most popular IE alternative. Unfortunately, Firefox growing popularity has enticed malware authors to exploit its own flaws. While no software is perfectly secure, many experts think the Opera browser is safer than either IE or Firefox.

Threat 2: Phishing and Identity Theft

You have probably seen your share of phishing attacks, which look like communications from your bank, PayPal, eBay, or another online account. The message may ask you to click a link that leads to a bogus Web page, complete with realistic user-name and password log-in fields, or it might ask for a credit-card number.

The fake address often resembles the real institution URL–’citibank.fakesite.com’ in place of ‘citibank.com’, for example. The phishers site and e-mail message may even load images from your bank, or have links to the institution own Web site.

When you take the bait, the phisher harvests your data, and either sells it to someone else, or uses it to drain your account right away. A variant called spear phishing identifies you by name in the lure message or Web site, making the sham even harder to spot.

You may have read that your bank will never send you an e-mail asking you to log in to your account, and it should not, though it does happen on occasion. The vast majority of messages that appear to come from financial institutions are phishing attacks, so assume that such messages are bogus and avoid opening them at all, let alone clicking any links they contain.

If you are concerned that the bank or other service is really trying to notify you of a problem with your account, open your browser manually and log in to the site directly, or better yet, pick up the phone and call a customer service agent (if you can find one via the bank automated phone system).

The place you are most likely to notice that your credit card or bank account has been compromised by a phishing attack or identity theft is on the statement you receive from them via mail. Check it carefully for unauthorized charges, and report any to the institution immediately.

IE 7 asks you a couple of times if you had like to enable its phishing filter during installation; say yes. To enable this feature, choose Tools, Phishing Filter, Turn On Automatic Website Checking, and click OK.

Firefox 2 phishing filter is enabled by default, but it uses a static downloaded list of known phishing sites. Many firewalls and other security programs include identity-protection features that scan the stream of data leaving your PC for sensitive information, such as passwords or social security and credit card numbers, and then block the unauthorized transfers.

Resist the temptation to post personal information on your Web page, blog, or social site (Facebook/MySpace) account. Identity thieves, spammers, and online predators are always on the lookout for such data. Browse to “Safeguard Your Reputation While Socially Networking” for an explanation of the risks to both adults and children, and for tips on what you can do to avoid the dangers.

Threat 3: Malware

Every day, virus, spyware, and adware creators come up with new, ingenious ways to gain access to your PC.

These steps will help keep you safe:
Think before you click.Use a spam filter. Update your antivirus software.Download with discretion.Use a bidirectional firewall.Use antispyware.

Cher K Markov is an Internet Marketer. In her quest to protect her own PC, she has researched into PC security resources including
anti spyware.

To ensure high protection for your PC, you can get the details about the most suitable Free Anti Spyware Download at http://antispyware.onlinedownloads.org

Every day, millions of people, worldwide, log on to the internet in the course of conducting business or to look for information or buy goods or services. Many will be new to surfing, taking the advantage of broadband, now widely available to all.

Sadly, while you are reading this, a large number of internet users - experienced and newbies alike - will become the latest victims of internet crime which is growing almost at the speed of light. Make no mistake, internet crime is now highly organized big business. Of course, there are still a number of comparative ‘amateurs’ trying to make a quick buck at the expense of the unwary, and although these villains can be just as dangerous as their ‘professional’ counterparts, it is the big boys that are employing the subtle, high – tech scams and under-the-radar methods of emptying our wallets, even shutting our businesses down.

Okay, many of us ‘old hands’ may think that we are too wise and wary to be duped by internet fraudsters. Maybe so, but believe it or not, the fact is that it is this very attitude that makes us more vulnerable – and the fraudsters know it all too well!

Don’t believe it? Well…if it wasn’t for our over-confidence the Ebay and Paypal (to mention but two) phishing and pharming scams would probably die out overnight. Sadly, the fact is that these scams are drawing more and more people into their nefarious net.

Basically, phishing and pharming relies on our familiarity with popular websites – Paypal and Ebay, for example. When an email arrives in our inbox, which contains all the look and psychological feel of the genuine article, our immediate reaction is to follow the instructions it contains – often without a moment’s thought. Even if the penny drops when we are some way through following the instructions and click out of the ‘spoof’ website, even the smallest amount of personal information we have already given can be very useful to the scammer, in some way or another.

Okay, so think you have a barbed wire fence around your computer. You have installed virtually every piece of ‘protection’ software you can get your hands on. Your computer is as safe as Fort Knox…Wrong…for there are many ways fraudsters can get under the best state of the art defences. Indeed, it could be argued that the well organized and technically adept internet criminals are invariably one step ahead of even the latest hi-tech protection software. If they are’nt, they will certainly be quick to find a solution – you can bet your last buck on it!

Of the ever-growing ways of illegally accessing your computer,’ malware’ is probably one of the most popular. Generally speaking, this is a ‘sneaky’ software designed to infiltrate, even damage, a computer system without the owner being aware of its presence. The very thought that our innocent-looking computer may be harbouring an uninvited guest is enough to scare the pants of anyone, and, maybe, so it should for it could prove to be an inconvenience at best and extremely costly – in more ways than one - at worst!

To think that our computer could, and maybe is, being used as a proxy to protect the anonymity of those who send out spam messages from prosecution is bad enough, but to know that our computer may be the vehicle through which an internet criminal may be conducting more serious illegal activities is much more scary – to say the least!

The foregoing aside, it is also possible for a criminal using malware to profit from stealing information from an infected computer. One of the ways this is done is to surreptitiously install a ‘key logger; on your computer which copies down your key strokes – just think how much information the installer (criminal) can gain when you enter a password, credit number, ID or other personal details. The ironic fact is that such a key logger can be innocently introduced into your computer by no less a person than YOU - by way of downloading innocent-looking software, for example.

Although we all know what the internet is, how many of us have heard of a botnet? Simply put, a botnet is where the mailbot or malware logs into an Internet Relay Chat channel and suchlike. By so doing, the attacker can give simultaneous instructions to all the computers he, or it, has infected. Furthermore, botnets can also be used to introduce upgraded malware to these infected systems, thereby keeping them resistant to antivirus software and suchlike.

By 2006, the broadband exp meant that malware was an even more common phenomena. For example, Webroot Software estimates that 9 out of 10 computers connected to the internet are infected. Furthermore, 86% of people surveyed by the company reported that they had lost money due to the effects of malware.

Although it is difficult to know the real cost of malware fraud. What is known is that spyware is a favorite tool of identity thieves; stealware takes money from affiliate merchants and vendors, while viruses and worms are used to turn PCs into proxy servers for the purpose of launching ‘denial of service’ attacks or online protection rackets, to quote two examples.

There can be little doubt that the threat of online crime is significant and it is spreading rapidly. Often, scammers attack the most vulnerable people – members of society who need money and aspire to a better life. The realization that they have been proverbially ‘taken to the cleaners’ and/or taken for everything they have can be utterly devastating. Worse still, if that is possible, scams that begin online can and have developed into violent offences such as kidnapping and murder in the real world – the 4-1-9 scam being a typical example!

In my view, based on many years of IT experience in general, and internet crime in particular, the only effective way to tackle the problem is through education. Teaching people not only to recognise the many systems and schemes scammers and fraudsters use, but how to defend themselves against such attack.

Let us never forget that more and more people are going online – often for the first time. Because of this, the scales are inevitably tipped in the scammers favor. The internet and email will be here for a long time to come, which means their target lists are always being replenished and refreshed.

We can only be vigilant if we know what we are looking for. Sadly, this knowledge is scant at best and non-existent at worst. We must all recognize that our computer has the potential to be a very real threat to our security. A threat that is ever-present every time we switch it on.

To learn more please click here: http://www.intercrime.org

Damian Hawkins has enjoyed many years in the IT industry where he quickly made a name for himself amongst colleagues and contacts within some of the UK’s largest enterprises. He first cut his teeth on new technology in telecoms, but quickly gravitated to the ISP arena where he specialised in high speed internet connectivity, hosting and security. In his time he has advised corporations such as Vodafone, Fujitsu Siemens and Taylor Woodrow on secure technical solutions for their own communication requirements and those of their customers.

Recently, in partnership with James Keith, a consultant psychologist. Intercrime was launched, with the sole purpose of providing all computer users with the means to help protect themselves against internet crime in all its facets.

Since a majority of people use the internet these days, it is wise to ensure that you have high-quality computer security software installed. This provides maximum protection of virus attacks on your computer. The market is filled with various antivirus software, anti spy ware software, and software and hardware firewalls. Since it is almost a parameter of sorts for computer users to use protection against virus, you may want to resort to antivirus software ratings and charts to understand market trends.

An antivirus software rating helps you analyze software that protects your computer from virus threats. These potentially damaging mediums can taint your computer or even make your computer drastically sluggish.

Antivirus software ratings help you understand which investments can protect your files from being damaged. A deeper awareness of the market allows you to realize that installing the right software can prevent damage to your hard drive, eliminate the need to reconfigure and reinstall your hard drive so that you could have things just the way they need to be.

Antivirus software ratings help you differentiate between the effective and dud software, and helps you finalize upon a brand that can work well for you.

When scanning through antivirus software ratings, make sure you read between the walls. This is vital because merely installing antivirus software is not really an absolute solution. Users need to constantly up date as everyday you need to have protection against new and novel anti virus epidemics. Hence users need to find a provider that permits you to upgrade your software programs let you update easily over the internet.

Antivirus software ratings discuss anti virus provider details. As such, you learn about damage causing virus. This includes dialers, spy ware, malware, Trojans, keystroke loggers, tracking cookies, and useless commercial software. Users need to be aware of their irreversible damage causing ability.

At all times, such data or recordings need to be deleted and wiped. This leaves no room for error or compromise. Antivirus software ratings help find a program that can guard your identity against dodgy people, scams, breakdowns and fraudsters.

Antivirus software ratings help compare and evaluate various computer firewalls. This refers to the multiple software programs and/or hardware gadgets that permit only authorised users to access your computer system. Apart from this, they prevent illicit users from gaining admission to your computer through the internet or a network. Whether one should use a software or hardware protection has long been debated. However, there is an established school of thoughts that prefers hardware.

So, in case you do not have such a choice, be happy, and invest in a program that is affordable. Prior to making a final decision, make sure u check all other available options. When you choose to refer to ratings and other measuring tools, make sure you are looking at reliable data. This is important because an incorrect database can cause potential losses, as you would never be able to pick the right stuff. Make sure you gather your information from sources that are genuine.

Find out more about antivirus software and how you can prevent viruses from affecting your computer.