plus 4, Rooting Out Worms & Viruses - Processor.com |
- Rooting Out Worms & Viruses - Processor.com
- Gary Coleman settles Utah man's injury lawsuit - Fresno Bee
- Archive for October 2009 - The Spokesman-Review
- Charges filed against man in alleged scam - Brattleboro Reformer
- Federal Recovery Act Helping Clean Up Leaking Underground Storage ... - Biloxi Sun Herald
| Rooting Out Worms & Viruses - Processor.com Posted: 14 Jan 2010 01:31 PM PST Developers of the most high-powered antiworm and antivirus tools that money can buy cannot always respond fast enough with updates that can block, locate, or eliminate the latest malware and keep it from contaminating workstations and servers. Preventing worms, viruses, and other rogue programs from doing damage thus requires more than just installing software and waiting for the alerts to come. Instead, malware security should also involve skill and savvy on the part of the admin. Here are some tips, strategies, and advice on how to help eliminate the malware scourge, as well as what to look for when seeking out the best software tools.
In today's threat environment, simply ensuring that all machines have the latest security patches is not enough; instead, SMEs should dedicate at least one person on staff to proactively and routinely monitor and probe the network by using monitoring tools to seek out network abnormalities instead of waiting for the alerts. According to Brian Grayek, vice president of product management for CA's Internet Security business unit (www.ca.com), when it comes to malware, the best defense is a good offense. "For many rootkits, they can remain almost completely silent and the only way to find them is to discover anomalous network activity that can lead to an infected workstation." When there is an alert and you have located the rogue program, it is also a good idea to go one step further by making sure that your monitoring tool did what it was supposed to do. "Check that any alerts in the IDS/IPS are consistent with the malware type you think it is and make sure no other machines are affected, which may not have come to your attention," says Jamie Riden, a member of the UK Honeynet Project (www.honeynet.org) and an independent security researcher.
A rogue executable file is detected. Do you quarantine or delete it? The reaction of many novice admins would be the latter. However, even the most high-powered security software can flag false positives, which means clicking the delete option could cause you to remove files you actually need. "Every major anti-malware vendor today has and will continue to experience false positives, where the anti-malware product has falsely identified a 'clean' file (an application or even the operating system) as an infected file. This is occurring more often as generic detections are used to detect the majority of variants that are produced today," Grayek says. "If a false positive does occur and the system still contains the quarantined 'clean' file, then it is quite an easy repair to replace the quarantined file back into the computer." However, if you have deleted all the malware files, then most of the work will involve locating and replacing the removed file in all the affected computer systems, Grayek says. "This can be quite an extensive operation if the company affected is like most, which maintain a heterogeneous environment of mixed operating systems and application revisions," he says.
It is often scary when malware is detected, especially when it is a more dangerous variant that could have done some real harm. But before deleting the scourge forever, now is the time to analyze both the rogue program and the infected machine. The first thing to do is to remove the infected machine from the network while restoring a replacement with a re-imaged one from a backup, Riden says. "You can poke about at your leisure," he says. "You may need to do this if it's a new piece of malware that has affected several machines at your workplace and is not yet dealt with by your [anti-malware] solution." Googling the malware for more information does not hurt, and it is also a good idea to use software that can analyze the rogue file or files, Riden says. "[Proving malware with software] should give you some sort of handle on what it's doing," he says. "This will allow you to do network remediation with IDS/IPS to contain the malware as much as possible. Also, submit it to your antivirus vendor if you haven't already got coverage."
In addition to aggressive hands-on tactics, you still need the right software tools to get the job done of detecting and removing malware. When seeking out the best tools, determine whether it can be easily managed and monitored, its potential impact on system performance, and its ease of deployment, says John Matzek, co-CEO of Logic IT Consulting (www.logicitc.com). It is also important to make sure that anti-malware can do what it is supposed to do on a network level. For example, Matzek says it is possible to add a tool at the edge of your network that cleans viruses from your HTTP or SMTP traffic. "This will prevent a virus from even getting into or out of your network through email or Web traffic," he says. "Other software allows you to scan the network and look for all hosts that do not already have antivirus installed," Matzek says. "Then, of course, you can deploy antivirus from the server without having to log in to each host." by Bruce Gain
Five Filters featured article: Chilcot Inquiry. Available tools: PDF Newspaper, Full Text RSS, Term Extraction. |
| Gary Coleman settles Utah man's injury lawsuit - Fresno Bee Posted: 14 Jan 2010 11:58 AM PST '+'>'); } --> Hawk in scuffle with local journalistAll the action at a Monday morning hearing for Dave Hawk - the leading suspect in the disappearance of his former wife, Debbie Hawk - occurred outside the courtroom when Hawk allegedly shoved a newspaper photographer. Gary Feinstein, a photographer for the Hanford Sentinel newspaper, was taking pictures of Hawk outside a Hanford courtroom when he said Hawk yelled, "Get away from me!" and shoved his hand into his face, knocking down his camera. "Hey, I'm just trying to do my job," Feinstein said afterward. Hawk murder trial jury to start deliberationsHANFORD -- A Kings County jury will begin deliberations today to decide whether Dave Hawk was the only person with a motive to kill his ex-wife or whether the prosecution failed to put Hawk at the murder scene. Those were the key points hammered home Tuesday as the 11-day trial reached closing arguments. Hawk, 51, of Lemoore, was charged in mid-2007 with embezzlement in connection with his three children's trust accounts and was awaiting trial in that case when he was arrested in May 2008 in connection with the murder of his ex-wife, Debbie Hawk. She disappeared in June 2006. Her body has never been found. Jayson Williams pleads guilty in fatal NJ shootingFormer NBA star Jayson Williams, his personal life in shambles, took responsibility for accidentally shooting his limousine driver to death eight years ago by pleading guilty Monday to assault and agreeing to serve at least 18 months in prison. Williams was awaiting retrial on a reckless manslaughter count but pleaded guilty to the lesser aggravated assault count for the 2002 death of Costas Christofi. Williams remained poised during the hearing and mostly answered yes and no questions, though he did tell the judge that he had not fully checked a shotgun he was showing off to friends before snapping it closed. Hawk waives court dateDave Hawk, suspected in the 2006 disappearance of his ex-wife, Debbie Hawk, will face trial later this year on charges of tax evasion, embezzlement and perjury over trust funds established for the couple's three children. In a brief hearing Friday in Kings County Superior Court, Hawk, 49, waived his right to a preliminary hearing on an array of 10 felony criminal counts. Hawk's attorney, Mark Coleman, and Deputy District Attorney Larry Crouch also agreed that a misdemeanor charge of possessing child pornography will be dropped. A preliminary hearing is where a judge considers whether prosecutors have enough evidence to warrant a trial. OC man suspected in fire that burns homeless manA 32-year-old man has been arrested in Santa Ana after police say he set a fire that burned a 64-year-old homeless man. Commander Lawrence Coleman says suspect Hector Medina confronted the man near an auto repair shop Sunday, and when he the man refused to leave the area, Medina spread accelerant on the man's belongings and set them on fire. Coleman says the man tried to put out the fire and suffered burns on his upper body. The wounds are not considered life-threatening. SALT LAKE CITY -- An attorney says a personal injury lawsuit against actor Gary Coleman and his wife over an incident at a Utah bowling alley has been settled. Dustin Lance, the attorney for Colt Rushton, says his client's suit against Coleman and Shannon Price was settled within the last 30 days. Court records show the suit was dismissed Tuesday. Lance says he can't discuss the terms of the settlement. Rushton sued Coleman over a September 2008 incident in which the actor allegedly hit Rushton with his truck in a Payson bowling alley parking lot after an altercation over photos. In December 2008, Coleman pleaded no contest to a disorderly conduct charge stemming from the incident and was ordered to pay a $100 fine. Coleman's attorney, Terry Plant, didn't immediately return a message seeking comment Thursday. Showing: @Nyx.CommentBody@ Five Filters featured article: Chilcot Inquiry. Available tools: PDF Newspaper, Full Text RSS, Term Extraction. |
| Archive for October 2009 - The Spokesman-Review Posted: 14 Jan 2010 10:54 AM PST Spokane County commissioners fired the company they hired less than a year ago to operate the county's Raceway Park , their controversial purchase near Airway Heights that drew good crowds this summer but racked up some $1.2 million in unpaid construction debt. The county's insurance may be needed to pay contractors that performed the work ordered by Austin Motor Sports Management but never approved by the county, they said. Commissioners voted unanimously during a special afternoon meeting Thursday to terminate the contract with the company and its owner Bucky Austin, a racing enthusiast who owns a chain of auto repair shops in the Puget Sound region. Despite promises in August and September that he would make good on all outstanding debts for improvements in the park, Austin still owes several local contractors, who have filed liens worth about $1.2 million against him and the county. They're looking for a new operator to run the track in 2010, although next time, they expect to keep "a closer, watchful eye" on Austin 's replacement, County Board Chairman Todd Mielke said. The county became aware of financial problems at the track last summer, when contractors began serving notice that they would file liens for unpaid bills. Austin called the liens standard procedure, said he had to review billing to make sure the work was actually done and promised to pay everybody by November. But commissioners discovered Austin had ordered more construction than they expected, essentially compressing renovations the county thought would take two years into the first year the track operated. He did it without securing performance bonds, as required by state law, or putting the projects out to competitive bids, commissioners said. Because of those problems, commissioners said Austin 's contract was in default and terminated on Thursday afternoon. Austin was put on notice in September that he'd lose the contract in 60 days if he didn't "cure" those problems. He said he would find financing or partners to make payments. But this week, his attorney confirmed that "Austin Motor Sports Management is unable to find additional financing to continue to operate the raceway," Jim Emacio, the county's chief civil deputy, told commissioners. The notice of default had a 60-day time limit, which would have been up on Sunday. When asked why they were terminating it just three days early, they said the weather was turning cold and they wanted to have county staff "winterize" the facility as soon as possible. Asked if the decision was at all prompted by fears Austin 's management company, a limited liability corporation apart from his repair shops, could declare bankruptcy, Mielke would only say: "Rumors abound." The county will draft a new request for proposal and allow potential operators to submit bids. "We hope to find an operator that can continue to operate the track… and maintain it's credibility with the community," Mielke said. "We're going to do our due diligence with any construction projects that take place." They want to county will also review all the outstanding claims to make sure the work was done, is up to standards and has been double-billed, Commissioner Mark Richard said. Legitimate claims will be submitted to the county's insurance carrier for payment. That process could take up to 60 days. John Black, an attorney who represents seven of the contractors holding some $1.19 million in unpaid bills, said his clients could eventually file suit against the county if they aren't paid. But it might take about two months to prepare a lawsuit, so the contractors might hold off. "If in fact there is a commitment to pay, it would make sense to wait," said Black, who added he heard about the commissioners' decision from the reporter calling to ask for comment. Story also filed on the Local News section, and generating comments. Join the discussion here.
Five Filters featured article: Chilcot Inquiry. Available tools: PDF Newspaper, Full Text RSS, Term Extraction. |
| Charges filed against man in alleged scam - Brattleboro Reformer Posted: 14 Jan 2010 11:44 AM PST BRATTLEBORO -- A man accused of scamming a local body shop for more than $1,000 in auto repairs is being charged with felony theft of services by the Windham County State's Attorney's Office. On Wednesday afternoon, a Windham District Court judge issued a pair of arrest warrants for Simon George, 26, of Wilmington, who is believed to have fled to England, where he was born. On Dec. 8, George drove into Vianor on Putney Road in need of a vehicle inspection, which revealed the vehicle needed new tires and a tie-rod replacement. George then allegedly told the manager of Vianor that he didn't have the money for the repairs as he was a soldier on his way back to Afghanistan. George also told the manager that he had served two tours in Iraq and one in Afghanistan, where he was wounded and received a Purple Heart. Both Vianor and Consumer Auto Parts chipped in to repair George's truck at no cost to him. According to a spokesman for the U.S. Army, George spent four months in the service in 2007 but is not on active duty at this time. The Army has no record of him being deployed overseas. When police learned about the alleged scam, they tracked George down in Wilmington. During an interview with police, George admitted he hadn't told the truth to the auto shop manager. This was not the first time George has portrayed himself as someone other than himself. In August 2009 in Wilmington, he impersonated an undercover narcotics officer. In that incident, he pleaded guilty to impersonating a public official. He was sentenced to three months, all suspended, and one year of probation.Six days later he allegedly pulled the scam on Vianor. Arrest warrants were issued against him for both violating his probation and on the theft of services charge. Because his theft of services exceeded $900, if convicted he could be sentenced to up to 10 years in jail. Bob Audette can be reached at raudette@reformer.com, or at 802-254-2311, ext. 273. Five Filters featured article: Chilcot Inquiry. Available tools: PDF Newspaper, Full Text RSS, Term Extraction.  This posting includes an audio/video/photo media file: Download Now |
| Federal Recovery Act Helping Clean Up Leaking Underground Storage ... - Biloxi Sun Herald Posted: 14 Jan 2010 09:50 AM PST "It is easy to see that this property does not fit with the surrounding development," said Hanger. "All productive activity here ended years ago, but the underground petroleum storage tanks remained. Those tanks were leaking and have impacted the environment and the economy. "While businesses flourish in the surrounding area, this site remains an eyesore and the leaking tanks serve as a tall hurdle that must be overcome before the site can flourish again." Malcolm's is one of the sites being cleaned up with financial assistance from the American Recovery and Reinvestment Act. In August, EPA awarded $6.1 million to Pennsylvania to clean up sites where historic abandoned underground tanks are hindering economic development due to concerns about possible contamination and potential cleanup costs. Currently, DEP contractors have initiated field work at 35 of the sites. Corrective actions include removing leaking and abandoned tanks and contaminated soil, as well as investigating the extent of contamination. During the fourth quarter of 2009, the 10,300 hours worked by environmental technicians, equipment operators, drilling technicians and various environmental professionals on these projects accounted for 20 full-time equivalent jobs. It is expected that 80 to 90 full-time equivalent jobs will be funded by Recovery Act investments to clean up the 71 sites. Plans are being made to begin work at the 36 other sites as soon as possible, depending on the weather and securing agreements with property owners. "Few people are willing to take a risk on purchasing land in a prime location such as this when they suspect that it may be contaminated," said Hanger. "By removing the remaining product from these tanks and getting the abandoned tanks out of the ground, not only are we ending the threat of groundwater contamination and any potential danger to public health and safety, we are clearing the way for this property to once again be useful to the community." To learn more about how the federal Recovery Act will benefit communities across Pennsylvania, visit www.recovery.pa.gov. Media contact: Deborah Fries, 484-250-5808 SOURCE Pennsylvania Department of Environmental Protection Five Filters featured article: Chilcot Inquiry. Available tools: PDF Newspaper, Full Text RSS, Term Extraction. |
| You are subscribed to email updates from Add Images to any RSS Feed To stop receiving these emails, you may unsubscribe now. | Email delivery powered by Google |
| Google Inc., 20 West Kinzie, Chicago IL USA 60610 | |
.gif "OBAT KUAT")
.gif)
.JPG){kind=link}
Tidak ada komentar:
Posting Komentar