Microsoft Security Advisory (2718704): Unauthorized Digital Certificates Could Allow Spoofing – Version: 1.1

Revision Note: V1.1 (June 13, 2012): Advisory revised to notify customers that Windows Mobile 6.x, Windows Phone 7, and Windows Phone 7.5 devices are not affected by the issue.
Summary: Microsoft is aware of active attacks usin…

6.5M LinkedIn Passwords Reportedly Stolen: What Users Should Do Now

–Updated at 2pm pacific– Earlier today, Norwegian computer site, DagensIT.no, reported that 6.5 million LinkedIn passwords were recently posted to a Russian hacker site. LinkedIn is continuing to investigate the incident, but has confirmed that “some of the passwords that were comprimised correspond to LinkedIn accounts.” According to DagensIT.no, only the hashed passwords were posted. Read more…

Consumer Alert: McAfee Releases Results of Global Unprotected Rates Study

Security experts labelled 2011 “Year of the Hack,” with a string of high-profile attacks against corporations and consumers alike. There is no doubt cybercrime is increasing at an alarming rate. The question is: what can you do about it? McAfee set out to address this question by first understanding the overall level of consumer security Read more…

McAfee Finds Personal Computer and Smartphone Threats at Four-Year High

8 million new malicious software samples have been detected since January 2012 due to unrelenting spammers and hackers Since the start of the new year, PC malware (malicious software) has already reached the highest levels in four years, according to the McAfee Threats Report: First Quarter 2012. The report exposes a disturbing increase in malicious Read more…

McAfee Issues Pinterest Scam Alert, Warns Users to “Pin with Caution”

Pinterest users should be careful when visiting a link that uses catchy titles like “Free Gift Card” “Shocking video” or “Free Giveaways” In March, McAfee Labs reported a new wave of social scams targeting Pinterest users that could compromise their personal information. Today, McAfee Labs warns consumers that ready-to-use toolkits, that make it easy for Read more…

Protecting Cloud Services, Applications and Storage with Symantec Protection Engine

Did you see my session at Symantec Vision 2012?  If not, you missed me talk about how you need your very own Robocop to protect services, applications and storage that accept and distribute files.

His prime directives align very well with how you should approach your service and infrastructure security:

1. Serve the public trust – Your users will TRUST your service.  They’ll ignore warnings and common sense because YOU are giving them access to something.

2. Protect the innocent – Your users are unlikely to be as security-aware as you are, they may not understand risks and they certainly shouldn’t be trusted to protect themselves 🙂

3. Uphold the law – You need to be able to set and enforce policies and you need to do this at your application or storage level.

{If you’re a fan of Robocop, as I am, just ignore the “Classified” 4th directive… It doesn’t quite fit the metaphor 🙂 }

 

Symantec Protection Engine gives you the ability to do just that.

It gives you out-of-the box integrations with almost all storage vendors, many applications and services.  Oh and we’ll also give you access to our SDK so you can embed our industry leading threat detection technology DIRECTLY INTO YOUR OWN APPLICATIONS.

BETA

I’m delighted to announce that we’re now accepting registrations for the Symantec Protection Engine 7.0 beta program.
This major release is the next generation of the technologies currently sold as Symantec Scan Engine and Symantec AV for NAS/Messaging/Caching.

For more information about this new release and the benefits of participating in our beta program, use this link: https://symbeta.symantec.com/callout/default.html?callid=7E4530E666124B0A80EFBF428FE32301

 

Malware Installed on Travelers’ Laptops Through Software Updates on Hotel Internet Connections

Recent analysis from the FBI and other government agencies demonstrates that malicious actors are targeting travelers abroad through pop-up windows while they are establishing an Internet connection in their hotel rooms. Recently, there have been instances of travelers’ laptops being infected with malicious software while using hotel Internet connections. In… Read more »