People that do this kind of thing are the same people that never defrag their hard drive or scan it for errors. It gets slow and infected with viruses and spyware and they say,"Fuck Bill Gates!". They then proceed to buy another computer with WINDOWS on it and it happens all over again. People never cease to amaze me. And this is a prime example why computer techs have good job security.
What I don't understand is, if people don't want the computer, why don't they take it to a pawn shop? They could at least get a little (and I do mean a little) cash from it.
Risk Management would be the first step. Deciding what you value is part of that. But you also have to consider threat probability and whether or not the perceived value of assets is worth protecting. And if they are worth protecting, you have to make the cost of obtaining those assets greater than the intruder's perceived value.
Also remember that social engineering can be used to penetrate networks.
If you want to get the bad guy, you have to become him. Think about what you would do to break into a network. It's really part of critical thinking where you poke holes in your own arguments. In this case, you're poking holes in your own work.
I blame the people that commercialized the Internet. If money was anything but a first priority, we would have had something far more secure than what we have now. The Internet was insecure to begin with. Then it was commercialized, the world was wrapped around it and it become available to anyone. It's like wireless. Everyone, their mother and his brother thinks it's the coolest thing since sliced bread and therefore gets it without thinking of the consequences.
How naive can people be? You have a global, untrusted network available to anyone. What fool actually expects it to be even remotely safe?
People think that NAT and VPN were both improvements in security. And, while in a way they were, the reason that drove their conception was monetary. They were both made to save money. Security was a second priority. Until security is put first, you can forget things getting safer.
You can blame hackers all you want, but corporations are more likely to spy on your than hackers. Corporations have public trust and therefore already have a backdoor to your system.
I'm a field installer and a road warrior so visible tattoos and piercings are definitely a no-no. The same goes for offensive bumper stickers. Besides, a man is ultimately measured by his actions, not his looks.
You save someone's life and you're a hero. You get pierced from head to toe and you're pincushion.
That's what I did and I got good results. As it turns out, I wasn't marketing myself well enough. I had a resume and cover letter done for $195. Then I sent my resume and cover letter to over 1400 recruiters across the country for $60. A month later, I'm still getting responses.
The majority of attacks come from within an organization. It could have easily been a disgruntled employee. He might not have received his vacation pay or didn't get promoted like he was hoping, etc.
I remember back in the 80's there was even a Pac-man cartoon. In the cartoon pac-man had a pac-dog and a wife. The head bad guy was the ghosts' boss. He looked kind of like Darth Vader.
Users should just let Windows Automatic Update download security updates for them. It takes place in the background non-intrusively and users are notified when they are ready to be installed.
The article says that Microsoft will respond to ZDNet Australia readers. That's it. And why Australia and not world wide? Was that a randomly selected country or did Microsoft have a specific reason for choosing it? If MS's Q and A's are anything like the so-called "studies" they do, it won't even be worth the time reading the replies.
You know, I think some of it has to do with everyone having a different definition of spyware and adware. WintoolsA.exe is malware that Adaware finds, but Trojan Hunter won't even detect it. Trend Micro finds it.
You need advanced trojan detection to fully eliminate malware. You need Trojan Hunter as well as Trend Micro Housecall in addition to Spybot and Adaware. At the Trend Micro site, be sure to choose the complete scan. Also, you may have to run Trojan Hunter in Safe Mode along with Adware and possibly Spybot. It depends how much malware is left over after the scan. Some of it might not be able to be removed unless you boot into safe mode. If you run less than those four programs, you will probably miss some malware. I'm saying that from my own experience. The four programs essentially compensate for one another.
Microsoft isn't helping the user out any. It still doesn't mean anything to them. People have asked me what the BSOD means to the average person. Instead of intimidating the user, Microsoft could at least try to give the user a sense of confidence and hope.
According to an article I remember reading on WindowsSecurity.com, only 0.1% of companies are spending the appropriate budget on Intrusion Detection Systems.
Slashdot Mirror
They provide a firewall with XP. But yeah you're right, they do leave ports open.
If people are stupid enough to leave port 445 open, then they deserve to get infected.
This would be even more effective than the jpg exploit. And how many of those vulnerable web cams use USB? Talk about hacking the planet.
People that do this kind of thing are the same people that never defrag their hard drive or scan it for errors. It gets slow and infected with viruses and spyware and they say,"Fuck Bill Gates!". They then proceed to buy another computer with WINDOWS on it and it happens all over again. People never cease to amaze me. And this is a prime example why computer techs have good job security.
What I don't understand is, if people don't want the computer, why don't they take it to a pawn shop? They could at least get a little (and I do mean a little) cash from it.
Maybe the people that broke into the site did so in order to create anti-MS sentiment. Hell, if anyone broke into it, it was probably malware writers.
Risk Management would be the first step. Deciding what you value is part of that. But you also have to consider threat probability and whether or not the perceived value of assets is worth protecting. And if they are worth protecting, you have to make the cost of obtaining those assets greater than the intruder's perceived value.
Also remember that social engineering can be used to penetrate networks.
If you want to get the bad guy, you have to become him. Think about what you would do to break into a network. It's really part of critical thinking where you poke holes in your own arguments. In this case, you're poking holes in your own work.
Go into a Linux IRC chat session as root and you'll be kicked and receive a message that says,"Don't IRC as root!"
Go into a Windows IRC chat session as administrator and someone might gain root access.
I blame the people that commercialized the Internet. If money was anything but a first priority, we would have had something far more secure than what we have now. The Internet was insecure to begin with. Then it was commercialized, the world was wrapped around it and it become available to anyone. It's like wireless. Everyone, their mother and his brother thinks it's the coolest thing since sliced bread and therefore gets it without thinking of the consequences.
How naive can people be? You have a global, untrusted network available to anyone. What fool actually expects it to be even remotely safe?
People think that NAT and VPN were both improvements in security. And, while in a way they were, the reason that drove their conception was monetary. They were both made to save money. Security was a second priority. Until security is put first, you can forget things getting safer.
You can blame hackers all you want, but corporations are more likely to spy on your than hackers. Corporations have public trust and therefore already have a backdoor to your system.
I'm a field installer and a road warrior so visible tattoos and piercings are definitely a no-no. The same goes for offensive bumper stickers. Besides, a man is ultimately measured by his actions, not his looks.
You save someone's life and you're a hero. You get pierced from head to toe and you're pincushion.
That's what I did and I got good results. As it turns out, I wasn't marketing myself well enough. I had a resume and cover letter done for $195. Then I sent my resume and cover letter to over 1400 recruiters across the country for $60. A month later, I'm still getting responses.
For one thing, it can be severely blinding when the sun hit is it.
The majority of attacks come from within an organization. It could have easily been a disgruntled employee. He might not have received his vacation pay or didn't get promoted like he was hoping, etc.
This might sound silly, but what about static electricity? I would think that would provide some power(If you could generate alot of it.)
Either way, the user is notified that there are updates. I didn't say to have it install automatically.
I remember back in the 80's there was even a Pac-man cartoon. In the cartoon pac-man had a pac-dog and a wife. The head bad guy was the ghosts' boss. He looked kind of like Darth Vader.
Users should just let Windows Automatic Update download security updates for them. It takes place in the background non-intrusively and users are notified when they are ready to be installed.
The article says that Microsoft will respond to ZDNet Australia readers. That's it. And why Australia and not world wide? Was that a randomly selected country or did Microsoft have a specific reason for choosing it? If MS's Q and A's are anything like the so-called "studies" they do, it won't even be worth the time reading the replies.
You know, I think some of it has to do with everyone having a different definition of spyware and adware. WintoolsA.exe is malware that Adaware finds, but Trojan Hunter won't even detect it. Trend Micro finds it.
You need advanced trojan detection to fully eliminate malware. You need Trojan Hunter as well as Trend Micro Housecall in addition to Spybot and Adaware. At the Trend Micro site, be sure to choose the complete scan. Also, you may have to run Trojan Hunter in Safe Mode along with Adware and possibly Spybot. It depends how much malware is left over after the scan. Some of it might not be able to be removed unless you boot into safe mode. If you run less than those four programs, you will probably miss some malware. I'm saying that from my own experience. The four programs essentially compensate for one another.
Microsoft isn't helping the user out any. It still doesn't mean anything to them. People have asked me what the BSOD means to the average person. Instead of intimidating the user, Microsoft could at least try to give the user a sense of confidence and hope.
Or you have malware such as a trojan horse or virus that is crashing your system.
According to an article I remember reading on WindowsSecurity.com, only 0.1% of companies are spending the appropriate budget on Intrusion Detection Systems.
AMC = Ain't My Car
GMC = Got a Mechanic Comin'
Toyota = That Old Yankee Overpriced This Auto
Fiat = Fix It Again Tony
Chevrolet = Cracked Heads Every Valve Rotted Oil Leaks Engine Toots
BMW = Busts My Wallet
FORD spelled backwards is Drivers Run On Foot
Dodge = Darn Old Driver Gets Everywhere
Pinto = Put In New Transmission Often
What SDLC model were they using for that application?