Attack Computer Wiz

I just saw a great piece on CNBC about a security company called Trace Security and how they used a targeted phishing/social engineering scam to take complete control over a computer. Basically Jim Stickley of Trace Security sent webcams via snail mail to five of his friends and family members. The package included a letter explaining that they had been randomly selected to conduct a survey. The installation software had been modified so that Jim could take complete control of the user’s computer and the webcam itself. Jim could download keystrokes, cookies, files, data, take screen shots and control webcam images and video. Jim even modified the webcam to disable the light that would normally be turned on when the webcam was in operation.

In the video he calls up his brother-in-law, one of his ‘victims’, his brother-in-law said that he did not think anything of installing the webcam and running the software. He also said that he had no idea that any of it was going on until Jim actually called him on the phone.

Posted by Mike Wright

RIM has announced a new BlackBerry Attachment Service PDF Distiller File Parsing Vulnerability for it's BlackBerry Enterprise Server. This vulnerability could inject malicious code into an affected system after the launching of an infected PDF file. Since the PDF would be crafted with the malicious code it would also likely require the use of Phishing or targeted Phishing in order to successfully infect a system.

This is not the first one that we have seen but this time it was very easy to fix and does not really disrupt service during the patching. The process is very simple and should be done immediately. Use the link below to download and follow their instructions. But basically you download a few dll files, un-register the old, over write them with the new, and re-register them. Easy Stuff!

BlackBerry Enterprise Server

BlacBerry Unite was also affected by this.

BlackBerry Attachment Service for BlackBerry Unite

Posted by Mike Wright

The early bird coupons are starting to roll in for RSA 2009 in San Francisco. Below is a link to save $700 off the "Delegate Pass". If you are a CISSP you should see the additional $200 ($900 total) any day now. When I start getting the Free "Expo Only" passes I will pass those on.

RSA Conference 2009

Posted by Mike Wright

Due to heavy traffic Microsoft has postponed the release of Windows 7 Beta 1. (I got mine :P )Microsoft goes on to explain that they will be adding more servers to "...ensure customers have the best possible experience when downloading the beta." This is kind of funny when you think about it. Can you see the Mac vs. PC commercial?

I would like to quote PC Magazine when they state; "It's for reasons like these that the BitTorrent protocol was invented. Why not let your customers share the bandwidth burden, Microsoft?" I agree.

PC Magazine

Posted by Mike Wright

For those of you who have not ‘acquired’ your Windows 7 Beta release from the Pirate Bay you can get your legitimate copy direct from Microsoft. You must be a TechNet, TechBeta, or MSDN subscriber to download. If you are not a TechNet subscriber you must ask yourself… WHY!? Read the fine print of TechNet and see what you really do get out of it. It is money very well spent. Do a web search or attend a TechNet Event in your area and you will likely find 40% or better coupon codes for your TechNet subscription.

Microsoft’s Ballmer Announces Availability of Windows 7 Beta and Windows Live

Windows 7

Posted by Mike Wright

Which? Computing is reporting that they have discovered that using some disk wiping tools may not be sufficient in removing sensitive data from hard disk drives. In their article they state that they purchased 8 computers from eBay and used a free piece of software to wipe those drives. They go on to state that they were able to easily recover 22,000 ‘deleted’ files. Their solution; “If you want to be absolutely sure your files are deleted, remove the hard drive from your PC and destroy it with a hammer!”

Where is the proof of concept? While it may very well be likely that they were able to find and retrieve data, but it would be really nice to know what software they used, how long it took, where they downloaded it from, and so on.

How does destroying a hard drive with a hammer delete data? They specifically state that “if you want to be absolutely sure your files are deleted…” hammers don’t delete, they destroy.

“…destroy it with a hammer!”? A hammer? Really… A hammer. That is like saying the best way to get rid of your car is to drive it off a 500 foot cliff. Oh, did we forget to tell you to jump out of the car before you reached the edge? How about safety? If someone followed these suggestions to the word they would likely end up with a couple cuts and possibly minus the sight in at least one eye.

It seems irresponsible to recommend taking a hammer to a hard disk drive. They could have better stated their point; “If you want to be absolutely sure the data on your hard drive cannot be recovered, remove the hard drive from your PC and destroy it in a manner that would render the drive completely unusable.”

Link

Posted by Mike Wright

Here are some more tips if you are either thinking about building or you have already built a HTPC like Mike and I.

For those of you that missed it Mike did a nice write up on Blu-Ray support in Vista Media Center.

I really wanted to find a solution to play various media files through Vista Media Center. Some of you (like Mike) are probably thinking why not just use VLC? I have VLC installed and it is a great program for playing back various media files, however it didn't solve my Vista Media Center issue. So as most of us geeks would, I found myself googling for an answer and found a fantastic codec pack. The codec pack was very appropriately named Vista Codec Package. It can be found at Shark007's Vista Codecs Homepage. It was easy to install and has a nice menu if you need to modify the various codecs for closed caption and such. I am sure there are other Codec packs out there that would work but Shark007 has done a great job with the pack he created.

Posted by Jason

Update to Post "Dispose your personal data… at Costco?!" on 9/15/2008.

So, my local Costco has moved the ‘recall’ recycle bins to a different location. Instead of being located at the end of an isle for anyone to get a hold of, they have moved them next to the order window of the pharmacy. While this is a good attempt at improving the security by placing this sensitive material near a post where a Costco employee should be able to monitor them all of the time, it still does not instill the trust I would need to dispose of my documents using this service.

I am still going to pass of this service, but good effort Costco.

Posted by Mike Wright

First I would like to start by saying that I really don’t have a Microsoft Zune, my New Years Eve post was in fun. I received a Zune as a Birthday gift in 2006 but was not pleased with it and I returned it. I actually have an iPod touch (1st generation) that I won in a raffle at RSA 2008 and I am very happy with it.

I first heard of the freeze up’s that the Microsoft Zune was experiencing late Wednesday afternoon as the clock stuck midnight in other countries around the world. Before researching it at all I commented to Jason that this must has to do with the leap second. I also assumed that Microsoft must have released an update or patch for this by now and that the people with this problem just didn’t update the devices... or not.

Microsoft announced today that in fact the leap second was likely the cause of the Zune crash and has providing guidance on steps to fix the problem. This very could be a devastating blow to the very late to the game Zune media player and I have no doubt that we will be seeing iPod VS Zune commercials any day now. This is to bad but they did it to themselves. They knew this could have been a problem and should have provided a fix. Guess on this one they should have looked before the leap.

One more note; I think Yahoo! Tech was irresponsible when they implied in their report that Microsoft did this intentionally to “phase out” the first generation Zune’s. That is just irresponsible on their part.

Posted by Mike Wright

As with many IT professionals I find myself often the ‘go-to’ person for family and friends when the need for computer related assistance arises. Many a Christmas I have spent patching this or installing that. I also find myself the family email filter being forwarded countless chain letters with the note, “is this real?” or “is it safe to click this?”

I received one such email from my mother-in-law talking about “Google’s phone number search program”. Basically you type a phone number into Google and click search. If your phone number is listed and your community has been hit with the Google Street View drive by, then your name and number is listed at the very top with a link called “map”. Once you click on “map” Google Maps will open and street view may show your home.

This was true for many people I know, including my mother-in-law. There was her house in full living color and her vehicle parked in her drive. I gave her a hard time when I told her this and added that I can see her through the window talking to me on the phone (laughs). She felt this was an invasion of her privacy as did my parents when I showed them.

I did explain to her that she could remove herself from the phone number search quite easily. Simply type your phone number into Google and click search. Once your number shows at the very top of the list, it should say something like “Phonebook results for 555xxxxxx”, click it. Located just below your information there is a link that says “Request to have your name removed from this list”, click that link and follow the instructions.

Posted by Mike Wright