Server Security
Hello everyone,I have a need to make a new server highly secure....so far this is what my plan is and would be great to get your thoughts and specially ideas on how to make it even more secure:NO DATA...
View ArticleMitigating the risk of local admins
I lost on keeping our shipping users from being local admin's and now our shipping solution only works if they are local admins. I'm now stuck with this ugly mess and need to limit the amount of...
View ArticleFirst Round of XP Security Flaws
http://www.theverge.com/2014/4/27/5659006/internet-explore-zero-day-security-flaw-affects-all-versio...Just saw this posted. It's unfortunate for any company that hasn't made the switch yet but...
View Article45 CFR 164.308(a)(1) security risk analysis for meaningful use.
I have been going over some of the meaningful use measurements and one of the requirements is that you have a security risk analysis. I can not find anywhere where you have to have an outside party...
View ArticleAh Oh IE, Serious new hack
http://www.nbcnews.com/tech/security/serious-internet-explorer-bug-leaves-half-all-browsers-open-hac...
View ArticleClik here to view.
IE Vulnerability...First unpatched 0-day for XP
Hello all Spiceheads. Already lots of posts around this but wanted to give a quick update from Symantec on the IE vulnerability. We already have some protections built in for our customers plus there...
View ArticleMy little security story
This happened over the weekend. I'm visiting my parents when I go down into the basement where my father is at the computer. He calls me over to check something out, and shows me this "neat" thing...
View ArticleDell Data Protection Encryption
I am in the testing phase with Dell's Data protection software. Has anyone had there used this product before? Pro's ? Con's? Additionally, how long does it take to encrypt a endpoit, and are there any...
View ArticleNew Flash Player 13.0.0.206 (Win and Mac) released
Just showed up this morning at the "Distribution3" page for those with MSI licenses. No security bulletin yet here:Security Bulletins and Advisorieshttps://helpx.adobe.com/security.html
View Articleaward winning stupidity
The other day I found out one of our clients has been using outlook contacts as a password manager.They win the dumbest user of the year award from my perspective, anyone have some comparable cascading...
View ArticleNetwork security AV/FW looking for some suggestions
Hi All,I've been given extra budgets by our directors to spend on secutiry, our 5 year deal with Sophos is coming to an end and we are looking at alternatives (along with a renew), we currently use...
View ArticleNasty IE 0 day effects IE 6 - IE 11
Microsoft has no fix, just work arounds such as a software package that only makes it harder to exploit the vulnerability.News article on...
View ArticleAlienVault - I Like
Have you heard about the AlienVault integration with Spiceworks? I noticed a dashboard alert saying, "A new cloud service AlienVault was been detected..." on one of our public facing servers. Since we...
View ArticleXP password reset
I used to have some software that I could boot off of a usb drive, that would blank out the password for a windows machine for one time only. It allowed me to get into a machine that everybody had...
View ArticleCryptolocker Struck at 5pm ysterday
I had a user with cryptolocker yesterday at 5pm. The user complained of not being able to open an excel file on the network. Turns out his laptop had crytpolocker and had started to lock files on...
View ArticleHeartbleed with a twist - oh the irony
http://www.bbc.co.uk/news/technology-27203766from article - TL : DR - 'researchers' are hacking hackers back The Heartbleed bug has turned cyber criminals from attackers into victims as researchers use...
View Articlevxworks 5.5.1 ftp server
I found a client on our network that has 21 & 23 open. An in depth scan show that 21's service is running "vxworks 5.5.1 ftp server". 23 is "vxworks telnetd". I cannot find much on the web about...
View ArticleCryptolocker still a threat?
I haven't heard anything about this in a while so I wanted to check with the community. Several months ago when Cryptolocker was all over the place I put a few measures in place to prevent an...
View ArticleClik here to view.
How was the latest IE zero-day exploit discovered?
FireEye’s managed defense service responded to a threat, discovered a zero-day, and provided protection to thousands of customers in millions of virtual machines - All within 24 hours!Read the details...
View ArticleWhy is Google search being routed to China??
I get into work this morning and find Google is being blocked due to it being in China.Anyone have some light on this? I tried looking a few different places, but only found one post regarding this...
View Article