MOREnet Security News Review -- February 3 - 7, 2014
WEEKLY THREAT RESOURCE SITE
KNOW YOUR ENEMY – THREAT ID OF THE WEEK
Fake Anti-Virus is again in the news. Be aware of unrecognized programs stating your machine is infected. Before clicking the notification, ask these questions:
Is this the anti-virus or anti-malware program previously installed on the machine?
Why would I need to pay for this program if anti-virus is already purchased and installed?
Is my current anti-virus program working and up to date?
NameChanger Fake AV Has over 200 Names, Uses Social Engineering Kit to Spread
Popular Swedish news site latest link to fake AV infection
TOP HEADLINES THIS WEEK
Teens expelled in keylogging of school computers
Target Determined to Deploy Chip-Enabled Card Technology in Stores by Early 2015
GameOver Zeus now uses Encryption to bypass Perimeter Security
Worst Phishing Scam Of The Week Yet: Cryptolocker
Process Explorer now supporting VirusTotal
Javelin Study: A New Identity Fraud Victim Every Two Seconds
NAC Comes Back
Hackers try to hijack Facebook, other high profile domains through domain registrar
Feb OUCH - What Is Malware
The 7 deadly sins of application security
Top Security Questions to Ask Your Cloud Provider
VULNERABILITIES AND PATCHES
Vulnerability Summary for the Week of January 27, 2014
Fortinet FortiOS 5.0.5 contains a reflected cross-site scripting (XSS) vulnerability
Fortinet Fortiweb 5.0.3 contains a reflected cross-site scripting vulnerability
Firefox 27 is out - Tuesday's second non-Patch-Tuesday update
Adobe Pushes Fix for Flash Zero-Day Attack
PNG Image Metadata Leading to iFrame Injections
Microsoft to keep next Patch Tuesday light
MyMOREnet – MyMOREnet is a Web-based service provided by MOREnet to allow members to access organization-specific information. User administrators at each organization decide who has access to what information. Features include…
· View, create and manage MOREnet help desk tickets for your organization.
· View bandwidth usage and other statistics for your circuit and router.
· View information about the type of traffic going through your router.
· View reports from the internal network monitoring tool MOREnet uses to monitor member networks, including any current outages or problems the tool has detected with your router.
For additional information go to http://www.more.net/services/mymorenet-0
UPCOMING TRAINING AND EVENTS
1. Social Media Series Part 2, Understanding the Privacy Settings of Popular Social Media Sites– Wednesday February 19, 2014 – Online Webinar. Even if you understand the risks associated with social media, which settings are best and how do you find them on each site? This webinar will focus primarily on Facebook privacy settings, but will include references to many other social media sites. Click here to register for this event.
2. SANS SEC464: Hacker Guard: Security Baseline Training for IT Administrators and Operations with Continuing Education – Tuesday, February 25 – Wednesday, February 26, 2014, MOREnet, Columbia, MO -- This educational program gives IT admins the tools and techniques to illuminate evidence of potentially malicious activity on their systems and to look deeper to determine whether the problems they see are real. It allows them to become the hacker guards for malicious activity in their organization. It uses hands-on exercises to ensure they are comfortable using the tools. MOREnet members are eligible for a price of $1200. Last day to register is Friday, 2/14/2014. Click here for registration information.
3. Social Media Series Part 3, Understanding the Privacy Settings of Popular Devices Media – Wednesday March 5, 2014 – Online Webinar – So your social media websites are locked down, but are all settings enforced the same if the device isn’t secured? Join us for a discussion of device settings to review to protect yourself from social media and other apps. Click here to register for this event.
4. Introduction to Windows 2008 Server Administration – Monday, March 24, – Tuesday, March 25, 2014 – MOREnet, Columbia, MO -- Designed to build a foundation in basic server administration, this class introduces students to many of Windows Server 2008 features. The class includes extensive exercises which reinforce Microsoft Windows Server 2008 network administration skills as they are learned. Click here to register for this event
5. Introduction to Windows 2008 DNS, DHCP and CSVde – Wednesday, March 26, 2014 – MOREnet, Columbia, MO -- This course is designed to provide a foundation for understanding both Domain Name System and Dynamic Host Configuration Protocol. Students will install and configure these services for automated IP communications. At the end of the day the students will also use the bulk user import utility CSVde. Students must have taken Intro to Windows 2008 server to attend. Click here to register for this event
6. Windows 2008 Group Policy – Thursday, March 27, 2014 – MOREnet, Columbia, MO -- This class is designed to allow students to centrally manage workstations and servers with Group Policy Objects (GPOs) within a Windows Active Directory domain. In class we will start at the beginning with defining what Group Policy is and what can be accomplished by using Group Policies within your organization. We will create simple group policies and test their effectiveness on a windows 7machine. We will explore some advanced Group Policy subjects such as redirecting user data and folders, deploying software and finish with using Group Policy Preferences to Map Drives and clean out folders. Click here to register for this event
Do you know of any upcoming security-related training events? Please send them to firstname.lastname@example.org for inclusion in this newsletter!
SECURITY AWARENESS TIP OF THE WEEK
The past couple of years has brought repeated attention to social engineering in the forms of phishing and technical support scams. It is always a good idea to err on the side of caution when receiving an unexpected message or call. Remind your users and family to be aware of these dangers.
Social Engineering Alert: Missed Call From A Mystery Number?
GoDaddy Admits Hacker’s Social Engineering Led It To Divulge Info In @N Twitter Account Hack