Computer Security Weblog

Are you one who has found that the convenience of those USB drives that fit in your pocket but can hold tons of information?  What kind of information are you storing on those drives?  Is it information that you really would prefer to keep private in case it fell into the wrong hands?  Have you even thought about what is there and what happens if you lose it?  This is a great thing to think about and you can take action to protect yourself with a free open source tool called TrueCrypt.

Let’s say you back up files that contain banking information or other financial information, then you need to encrypt these files.  With TrueCrypt, you can encrypt the entire drive.  New technologies are great and there are great uses for these small devices, but you really need to think of what you are storing on these.  With larger sizes of these devices, more and more people are buying these.  They are inexpensive, and very handy.  But can be a security risk to you.  Don’t wait.  If you have personal information on your USB storage device, visit TrueCrypt and encrypt your drive and protect your information.

OK, I’m a huge sports fan and this weekend was a big weekend for my teams.  In college, my KU Jayhawks played those Misery Tigers at Arrowhead Stadium Saturday night.  OK, MU is good.  Really good.  KU couldn’t get anything started and ran out of time.  MU is now number one.  I’ve tried to tell myself that it would be good for MU to win against Oklahoma this weekend for the Big 12 Championship.  Here is what happened though.  I can’t come to accept pulling for the Misery Tigers.  So, BOOMER SOONER I hope the crush the Tigers dream of being the national champion.  So Saturday I’ll be pulling for OU to beat the Tigers.  If there are any Missouri fans who read my blog or run across it this week when they do a Google Search, I hop you don’t take my advice.  I hope you get hacked, I hope you lose your personal information, and I hope you get pwned by some evil bot master.  That really wasn’t nice.

Well Sunday, I had another chance to have my team win and make me feel better.  Kansas City Chiefs played their old hated rivals the Oakland Raiders.  We’ve  owned the series over the past few years.  Oakland on the schedule became a win you could count on.  Well this year, it was different.  Oakland actually ran KC to death in the 4th quarter.   Kolby Smith ran really well.  150 yards for the game.  But KC fell short.  I am OK.  The earth didn’t stop revolving.  This year is just a rough year for the KC Chiefs. May be a few but I think all us fans can bear with it if the outcome is a stronger team in the future.

Hope your weekend was good, and I hope you are finding this information informative.  Stay safe (unless you are Misery fan) and hope your Holiday season has started off well.  ROCK CHALK JAYHAWK GO KU!!!

I review SANS Internet Storm Center everyday to try and keep up with the current “bad guy” happenings that the Internet Storm Center reports back. They are a source of sharing information with the Security Community and let you know what is happening currently. The Storm Center has somewhere around 40 people who rotate 24 hour shifts and it is manned continually. The link I have in the first line of this post is the story I’m using as my source for this posting.

Have you ever asked the question, what would a hacker want with my PC? You may not bank online and you may not shop online, but you need to know what a hacker sees in your PC. Kevin Liston wrote this post to remind us that when you have a presence on the Internet, you do have things of value to the criminal mind. You have a CPU, Memory, Hard Drive, and an Internet access/IP address. From using your PC as a bot that the criminal can control, to your hard drive where they can store pirated files or even child pornography, to an IP that hasn’t been blacklisted.

If you’ve ever thought that “no hacker wants anything on my PC”, look at your PC as an asset that can be used to the hacker’s advantage to gain financially over possibly you, or others. Ignorance is your enemy. Hopefully, if you are reading this for the first time, you will come back for more knowledge.

My Kansas University Jayhawks meet the BEST TEAM EVER the Mizery Tigers lead by Chase Daniels or whatever his name is. The Jayhawks have decided to actually show up and not mail in the victory for Missouri U. Saturday night at Arrowhead Stadium, KU and MU go head to head. Me, I’ll be rooting on my Jayhawks. On top of this game on Saturday, My KC Chiefs take on the dreaded Raiders. Let me tell you, this game will be interesting. Priest Holmes retired this week. Larry Johnson is still unable to play. That leaves…..Colby Smith? Who the heck is he? He will be tested on Sunday.

Hope you all had a great Thanksgiving, and you’ve got a good start to your Christmas shopping on Black Friday. Stay safe, keep reading and learning, and arm yourself with knowledge and protect yourself from the criminal hacker. ROCK CHALK JAYHAWK GO KU!!

The day before Thanksgiving and it has cooled off in my area of the country.  Now it is just starting to feel like we are in the latter part of November.  With Thanksgiving comes the biggest day for retailers on the Friday after Thanksgiving.

This year like most is going to be the largest day where people do shopping online.  Just be vigilant when shopping online this year.  If you’ve been reading my blog, you’ve already got information that can help you stay safe this year.  Bad guy attackers know this is the biggest shopping day so don’t be surprised if your inbox fills up with great offers.  Just remember, don’t give up personal or financial information in unsolicited e-mails.  The attackers prey on those who are ignorant.  Arm yourself with a little information and stay safe this year and beyond.

This weekend is huge in this area as my KU Jayhawks take on the boys who are the greatest thing since sliced bread, Misery Tigers at Arrowhead.  A lot of talk going on but I am hoping that MU believes all the talk and that KU really should just forfeit the game without playing it.  Chase Daniels is the greatest QB and will be a first round pick in the NFL when the time comes and we might as well give him the Heisman also.  I’m looking forward to sitting back and watching my Jayhawks take on a hopefully over confident MU and put them down as we have with everyone else this year.

Have a great Turkey day, don’t eat too much, and stay safe.  Be aware of bad guys want to take advantage of the ignorant.  Join the ranks of the informed and ROCK CHALK JAYHAWK!  GO KU!!!!

Hope your Sunday evening is going great. We are at the end of the weekend and we have Thanksgiving coming up this Thursday. In my job, I keep tabs on how attackers are targeting good folks out there who will eventually click on something and give attackers control of their PC. Today the popular YouTube is being used as bait. There is a write up in Trend Micro’s blog that really gives great information. This is one of my sources I use when keeping up with Computer Security news.

Seems that the attacker sends spam e-mails out to millions and millions of e-mail addresses and you may be one of those who gets one in their inbox. Here is an example of the e-mail that Trend Micro has seen.

The trick is this. You click on the link in the spam e-mail and you get presented a message stating something like, to view this video, you need to download a new FlashPlayer and some similar spam e-mails have said you need to download a new codec file which really is the nasty file. This is once again a reminder to not click on links in unsolicited e-mails and NEVER give information when asked from an unsolicited e-mail.  If you want to check the out Trend Micro’s blog you can find it at http://blog.trendmicro.com/

The KU Jayhawks are 11 - 0. Ranked number 2 in the BCS polls. And who’s number 3? Mizzery (Missouri) Tigers. A nationally televised game this coming Saturday in Kansas City Chief’s Arrowhead Stadium. Let us all remember that the Mizzery Tigers are the greatest team ever and should always have been rated over the KU Jayhawks and the Jayhawks should never even show up because they can’t stand up to the great and mighty Mizzery Tigers. Oh well, I’m REALLY looking forward to this game and I’ll be glued to the tube. The game has been sold out for weeks prior to all that has happened to make this game huge in the BCS standings.

My Chiefs…didn’t get their butts kicked like I thought. Really the defense is the best thing the Chiefs have this year. They did a great job holding Manning and the Colts down. Granted, the Colts have a lot of injuries.

Hope you have a great week and with the Holiday’s coming fast, the spammers will come up with new twists and try to trick you so stay safe. Be careful out there and we’ll talk again soon.

By far, my most popular post has been the one titled “How to Find My SSID” so it is obviously a topic on people’s minds. Well we will talk wireless as we enter in to this weekend just prior to Thanksgiving. I won’t repeat myself totally, so if you want more information on wireless and computer security, you can read my previous posts.

This is probably a good time to talk about wireless with the Holiday Season is upon us. A few years back, TJ Maxx had what has now been reported at over 94 million personal records being stolen. Well almost 3 years later, many retailers have not done enough to secure the wireless security and is putting YOU at risk. A company called Security Sweep who does wi-fi penetration testing for companies, did a study in what type of security is in place. They found a whopping 85% of retailers have little or no security at all. Click here to read the whole story. Makes you wonder what to do with your Christmas shopping. This argument may make you think more before you whip that plastic card down.

Here is another helpful hint if you do shopping online for Christmas. Apply for a credit card that you will use only for your online shopping. Have your financial institution only set a low limit. Maybe $300. You just have to ask for a low limit credit card. Use this only when making purchases online and then you can spot inconsistency’s on your bill each month. This low limit will minimize the losses that can be run up.

Review some of my tips we reviewed in other posts from my blog here on WordPress.

Hey, the KU Jayhawks play in a big home game tomorrow against the Iowa Stae Cyclones. They will hopefully come out strong and do what is expected. KU football has totally impressed me this year. All must say this has really been a strange season with all the teams who you normally see there getting beat. Well the dream stays alive tomorrow.

My beloved KC Chiefs will probably get a can of “whoop ass” opened up on them Sunday at Indy. I’d say they are mad they have lost 2 games in a row. With our change to a new QB, no LJ, and no O Line , it will be a LONG day.

That is it for now, so stay save and have a great weekend!!

We’ve talked about this in previous entries but it is always good to review how your behavior while surfing the Internet can go a long way in protecting yourself from the bad guys. The specifics we’ll talk about in this entry will be porn, P2P, and free applications on the Internet.

Porn. It is a weakness that a lot of men have and probably some women too. You have to understand that bad guys know that they want as many targets as possible so they look to what can be used to spread their evil wares. Like anyone else, bad guys want to spread their keyloggers, file stealing applications, and bot software to be able to use your computer for their evil purposes. Since many have a weakness for pornography, this is a known target for bad guys to plant their traps. My advice? Stay away. Make sure all people in your household stay away also.

P2P. Also known as peer 2 peer software. It is known as file sharing software that can be used to spread software, music, videos, and pictures. All I have to say about P2P is that you need to be warned. Not only is it illegal, you may get more that you than you bargained for. Bad guys like attaching some of their evil software along for the ride. My advice? Don’t use P2P unless it is a trusted source and if it is legal.

Lastly, we’ll talk free applications.  I am really careful about what applications that are free that I use.  I’ve mentioned in previous entries that I use firewall, antispyware, and antivirus that are free.  When you are making the decision to download a “free” application from the Internet, it is best to actually read the EULA.  The EULA is end user license agreement.  You may be agreeing to be tracked so adware popups can be sent to you or your e-mail address might be given to spammers so you get even more of the e-mail crap than you do today.

Your behavior on the Internet really may be your absolutely best protection.  More than antivirus, or antispyware.  Be smart and don’t fall for the bad guys out there trying to take advantage of you in a financial way.

OK, now to my KC Chiefs.  OK, the whole AFC West is really bad.  KC got beat by the Stinkin’ Broncos.  They suck just a little less than we do.  My mid-season prediction is San Diego will win the West.   KC and Denver will really suck.  Oakland sucks too.  Doesn’t matter who actually wins because it will be one and done in the playoffs.  KC changed QB’s today and I don’t think that will make much of a difference, but then you never know.

KU on the other hand looked fantastic defeating the OSU Cowboys.  I want to continue to hear how much better the Misery Tigers are than KU.  Ask the Tigers and they think that they should be rated number one in the country.  Wake up Misery!

That is it for now.  Stay safe and have a great week!

It’s been a few days since I last posted anything so it is time.  That way I can comment on my Jayhawks as they face Oklahoma State on Saturday.  On Sunday my Chiefs host the stinkin’ Broncos at Arrowhead.  I love watching the NFL and I love watching my Chiefs beat the Broncos.  Looking forward to that.

OK, back to Computer Security for a moment.  It has actually been a rather quiet week.  As I browse through all the security stories for this week, I don’t think the Storm Worm was mentioned one time.  This is actually SOP for the Storm Worm.  It turns off and on at the attackers will.  So on this slow week, we’ll talk about a really nice computer security tool that helps you to check and see if your machine has all the patches, so that is what we’ll talk about in today’s posting.

The tool is a Google gadget that works with Google Desktop.  So if you want to use it, then you will need to download and install the Google Desktop tool.  After doing this, then you can visit Shavlik’s site to download the Shavlik Patch Google Gadget.  Once installed, you can scan your PC to see that you are patched.  The great thing about this tool is it doesn’t limit you to just Microsoft patches but it includes scanning for other products too, like Adobe, RealPlayer, and WinZip to name a few.  It is a great tool to make sure you are patched.  You can run the scan and it is very quick.  You can then view what patches you are missing and  gives you links  to go get the patches.

That is my one fantastic tip I can give you on what seems to be a fairly slow week.  Have a great weekend and stay safe.  Rock Chalk Jayhawk GO KU!!

Wrote about this one about a week ago and now RealPlayer has a security update that you’ll want to go get and install it. Open up your RealPlayer application and depending on what version you have, click on the Tools or Update option on the action bar and find the “check for updates” option. This will then take you through updating your RealPlayer.

Stay safe and keep patching!

Holy cow! Kansas University Football team is still undefeated after crushing the Big Red Machine from Lincoln, NE. Now I await my beloved KC Chiefs Sunday against the Favre machine. Come on Jarrod Allen. Welcome Bret to KC.

Nothing new for the topic of computer security except I read an interesting article out of Tallahassee about unsecured wireless and why you should secure your wireless. You may want to take a look at it and then check out my previous blog entry on taking steps to secure your own wireless router. Check this link out:

http://www.tallahassee.com/apps/pbcs.dll/article?AID=2007711030342

….and the home of the….CHIEFS!!!

This one cracks me up.  I guess MAC users are known also to partake in a bit of porn on the net.  The latest attack has been written for you Mac users by the bad guys.  Maybe your behavior really does have a lot to do with getting pwned.  Stay safe and have a great weekend! ROCK CHALK JAYHAWK GO KU!!!!!