MOREnet Security News Review -- February 24 - 28, 2014
WEEKLY THREAT RESOURCE SITE
KNOW YOUR ENEMY – THREAT ID OF THE WEEK
Have you ever thought to yourself “I am my own worst enemy?” If you are a network administrator allowing end users to utilize administrative privileges, this may be a true statement. Although removing these privileges has been a recommended best security practice for quite some time, there is new research to support it!
Removing Admin Rights Mitigates 92% Of Critical Microsoft Vulnerabilities
TOP HEADLINES THIS WEEK
Mac malware spread disguised as cracked versions of Angry Birds, Pixelmator and other top apps
Exploring the Misconceptions of Linux Security: Focus
Apple retires Snow Leopard from support, leaves 1 in 5 Macs vulnerable to attacks
Hacker Defaces Website of IT Security Certification Body EC-Council
Ongoing NTP Amplification Attacks
Top Five Most Popular Security Awareness Topics
Non-profit tax forms posted by IRS expose 630,000 SSNs
How emails can be used to track your location and how to stop it
VULNERABILITIES AND PATCHES
Free eBook: Guide to secure file transfers
Free tool helps fend off most cyber attacks
SAFECode releases free online software security training courses
Identify and fix vulnerabilities in your SSL certificates
Business Continuity and Disaster Recovery -- MOREnet has developed several services to assist our members with their BC/DR planning. From our smaller members to our largest, or those with more diverse infrastructures, we offer a number of solutions which can be tailored to meet your needs. To find out more go to http://www.more.net/content/business-continuity-disaster-recovery
UPCOMING TRAINING AND EVENTS
1. Social Media Series Part 3, Understanding the Privacy Settings of Popular Devices Media – Wednesday March 5, 2014 – Online Webinar – So your social media websites are locked down, but are all settings enforced the same if the device isn’t secured? Join us for a discussion of device settings to review to protect yourself from social media and other apps. Click here to register for this event.
2. Introduction to Windows 2008 Server Administration – Monday, March 24, – Tuesday, March 25, 2014 – MOREnet, Columbia, MO -- Designed to build a foundation in basic server administration, this class introduces students to many of Windows Server 2008 features. The class includes extensive exercises which reinforce Microsoft Windows Server 2008 network administration skills as they are learned. Click here to register for this event
3. Introduction to Windows 2008 DNS, DHCP and CSVde – Wednesday, March 26, 2014 – MOREnet, Columbia, MO -- This course is designed to provide a foundation for understanding both Domain Name System and Dynamic Host Configuration Protocol. Students will install and configure these services for automated IP communications. At the end of the day the students will also use the bulk user import utility CSVde. Students must have taken Intro to Windows 2008 server to attend. Click here to register for this event
4. Windows 2008 Group Policy – Thursday, March 27, 2014 – MOREnet, Columbia, MO -- This class is designed to allow students to centrally manage workstations and servers with Group Policy Objects (GPOs) within a Windows Active Directory domain. In class we will start at the beginning with defining what Group Policy is and what can be accomplished by using Group Policies within your organization. We will create simple group policies and test their effectiveness on a windows 7machine. We will explore some advanced Group Policy subjects such as redirecting user data and folders, deploying software and finish with using Group Policy Preferences to Map Drives and clean out folders. Click here to register for this event
Do you know of any upcoming security-related training events? Please send them to email@example.com for inclusion in this newsletter!
SECURITY AWARENESS TIP OF THE WEEK
It is once again tax time. Unfortunately that means the scammers are working as hard as the accountants. Don’t get caught up in one of this year’s dirty dozen scams!
IRS Releases the “Dirty Dozen” Tax Scams for 2014; Identity Theft, Phone Scams Lead List