Microsoft: Security Essentials 2010 is a Fake Anti-Virus

One of the oldest tricks used by rogue antivirus products is to use a similar name as, or have a similar look and feel to, legitimate security software. It’s been commonplace for them to mimic the Windows Security Center. So it was inevitable that the day would arrive when a rogue would masquerade as something similar to Microsoft Security Essentials.

This one calls itself “Security Essentials 2010” and looks something like this:

For the record, this is how the real Microsoft Security Essentials appears when it has detected a threat (in this case, Win32/Fakeinit):

If you want to download the real “Security Essentials”, then download it from here:

http://www.microsoft…ity_essentials/

via WinMatrix.

Keywords: antivirus, falsk

februar 28, 2010 Posted by spif | Sikkerhed, Software | Skriv en kommentar

Phishing and Spam IQ Quiz by SonicWALL.

SonicWALL Phishing and Spam IQ Quiz

Formerly the MailFrontier Phishing IQ Test

Chances are that in the past week you’ve received an e-mail in your inbox that pretends to be from your bank, e-commerce vendor, or other on-line site. Hopefully you’ve realized that many times this e-mail is fake – a phishing or spam e-mail. The sender phisher of these fake e-mails wants you to click on the link in the e-mail and go to a phishing Web site – which will look just like the Web site of the company being phished. Once on the phishers Web site they hope to obtain your account, financial, credit and even identity information. Of course not every e-mail you receive is a phish. In fact you should expect your bank or e-commerce vendor to send you legitimate e-mail. But how can you tell the difference? Well that’s what the Phishing IQ test is all about – give it a try.

http://www.sonicwall.com/phishing/index.html

april 8, 2009 Posted by spif | Sikkerhed | Skriv en kommentar

Input Director

Input Director is a Windows application that lets you control multiple Windows systems using the keyboard/mouse attached to one computer. It is designed for folks who have two or more computers set up at home and find themselves regularly sliding from one system to the other and wearing out the carpet in the process. With Input Director, you can share a single keyboard/mouse across a set of systems. You switch which system receives the input either by hotkey or by moving the cursor so that it transitions from one screen to the other in a very similar fashion to a multi-monitor setup. The idea being that you can position the monitors from two or more systems in a row and use a shared keyboard/mouse to control all of them.

via inputdirector

marts 13, 2009 Posted by spif | Freeware, Sikkerhed, Software | Skriv en kommentar

How to Tunnel Web Traffic with SSH Secure Shell.

If you are a Linux or UNIX user, you probably use SSH (Secure Shell) to access the command line on your machines remotely. In addition to providing secure access to shell accounts, SSH can also securely transport other kinds of web traffic as well. In a sense, it can provide you with a quick and easy VPN (Virtual Private Network) into the remote network where your SSH server resides.

via MakeUseOf.com.

marts 8, 2009 Posted by spif | Sikkerhed, Software | Skriv en kommentar

Facebook hacket igen – Alt om DATA – Danmarks bedste IT-magasin

For anden gang på en uge er Facebook ramt af et angreb, som er designet til at stjæle brugernes personlige oplysninger

Af Jeppe R. Børsting ( 27.02.2009 – 11:59:00 )

Det nye angreb påstår, at en af dine venner har meldt dig for at have overtrådt Facebooks berygtede brugervilkår. Applikationen i Facebook hedder “f a c e b o o k – - closing down”, og den sender falske advarsler til brugere om, at han eller hun har overtrådt reglerne og derfor er på nippet til at blive smidt ud. Facebook har nu oprettet en gruppe for de brugere, der er blevet ramt af angrebet, den kan du finde her. ttp://www.facebook.com/group.php?sid=5f4de04561e461ab5c7bd78b72c88b42&gid=68074773326

via  Alt om DATA.

februar 28, 2009 Posted by spif | Sikkerhed | Skriv en kommentar

GBRIDGE your own Virtual Private Network(VPN).

Gbridge is an extension to Google’s Gtalk network service. It automatically forms a VPN between user’s multiple computers if logged in under same Gtalk user account. The VPN can also be extended to Gtalk friends based on invitation. Gbridge also has several built-in features which integrates popular functions such as folder synchronization, remote desktop share (VNC), automatic backup, live browsing, chat, etc.

What its actually does is it gets your port id from your google account info and passes it to your friend . so you two can have direct connection btw you. Your own VPN.

Gbridge has built in several features on top of VPN:

* SecureShare: Share a file or folder on one of your computer, so you can access them from other computer. Or you can grant your friends’ access to those files.

* AutoSync: Automatically synchronize folders between computers.

* LiveBrowse The remote shared folder can be browsed without having been synced. Gbridge automatically generates thumnails and slideshow for picture files. Some types of media files, e.g. mp3, wma, flv, wmv, rm, midi, swf, can be played online.

* EasyBackup: Easily setup backup of files between your own computers.

* DesktopShare: Remotely access your own computer desktop or invite your friend to your computer desktop.

* Chat: You can chat with your friends who are running Gbridge, Gtalk or Gmail.

* 3rd party applications: Microsoft remote desktop, Microsoft share folder, ssh, ftp can run on top the the Gbridge VPN.

Since Gbridge implements these features on top of its custom made VPN, it allows the user to have fine control over what resources other people can see. For example, user can have fine control over which friend can access for each SecureShare.

via WinMatrix.

februar 26, 2009 Posted by spif | Sikkerhed, Software | Skriv en kommentar

SANS Institute -Twenty Most Important Controls and Metrics for Effective Cyber Defense and Continuous FISMA Compliance.

Twenty Most Important Controls and Metrics for Effective Cyber Defense and Continuous FISMA Compliance

Draft 1.0: February 23, 2009

NOTICE to readers of this draft document: Criticisms and suggestions are strongly encouraged. If you are actively engaged in cyber forensics, red teams, blue teams, technical incident response, vulnerability research, or cyber attack research or operations, please help make sure this document is as good as it can be. We also request support in identifying users who have implemented scalable methods for measuring compliance with these controls and producing sharable benchmarks and other types of baseline guidance that can be used to drive tool-based assessment of as many of these controls as possible.

Send criticism/comments/suggestions to John Gilligan as well as to cag@sans.org by March 25, 2009.

via SANS Institute – Consensus Audit Guidelines – Draft 1.0.

februar 25, 2009 Posted by spif | Sikkerhed | Skriv en kommentar