You’re Infected. You just don’t know it yet.

You’re Infected. You just don’t know it yet.

by Tim R. Security

7/10/2013 – Update #1: Click here for more information on SEP SBE 2013 Cloud

7/11/2013 – Update #2: Click here for the technical details 

If you or an employee has received an email attachment, clicked on a link, or surfed the web in the past few months there is a good chance that you have an infected computer on your network. A new version of a nasty piece of malware is spreading like wildfire. Now researches have just uncovered that it is not just one malware package, but two working as a team. Did I mention it spreads via USB drives and network shares too?

[quote]The antivirus software you have probably does not detect the infection. If it does, the removal process does not work even when it reports success. [/quote]

The antivirus software you have probably does not detect the infection. If it does, the removal process does not work even when it reports success. The malware hides on your system and downloads more malware, keyloggers, pop-up generators, botnet clients, or whatever onto your computer.  

But I have the latest antivirus software. I’m fine..right??

Look in the lower right hand corner of your PC next to the clock (system tray). Does your antivirus icon look like any of the icons below? If Yes, you are vulnerable.

Antivirus-Vendor-Icons

McAfee, Microsoft Security Essentials, Kaspersky, AVG, Avast, Norton, Symantec Endpoint Protection 12 or earlier, Trendmicro, etc. do not detect it. Specialized tools such as Malwarebytes and combofix also do not remove it (or even detect it depending on version).

How do I protect myself?

While we normally do not push any single product we have had great results with Symantec Endpoint Protection Small Business Edition 2013. It is cloud based and it is only $2.50/month per PC. Since we have installed it our clients using it have gone to zero infections from anything. If you would like more information on purchasing or installing this product or have a general question about malware please contact us.

-Tim

Upgrade your Java and Adobe

Upgrade your Java and Adobe

by Tim R. News Security

There has been a lot of news lately about business networks (and home PCs) being infected by viruses, malware, botnets, and other bad things. The most common method of infection is by exploiting bugs in common software applications such as Adobe Reader and Java. To avoid being a the next victim make sure your are running the latest versions of the software. The links below will take you where you need to go. The upgrades are fast and straightforward.

Note: During the installations you will be prompted to install 3rd party software such as McAfee Anti-virus or Google’s Chrome Browser. Uncheck these options before clicking ‘Next’.

Java 

Click Here to Upgrade your Java Software

Adobe Products

Click Here to Upgrade your Adobe Reader

Click Here to Upgrade your Adobe Flash Playerпрограмма для взломать вконтакте бесплатноинтернет реклама москвакарта приватбанка кредитка универсальнаяi migliori casino online italianihigh end hookersslots oyunlar?Europacasinoсафари в африке на новый годйога в центре москвыденьги в долг гражданам украины в москвебизнес кредитный брокервзять в банке кредитную картубыстрый заёмтур в танзанию через катармай тур официальный сайткак пополнить кредитную карту альфа банкаагенство туризма сафарифирменный цвет этоблинная сковорода с керамическим покрытиеминтернет магазин посуды кастрюлидизайн маленькой душевой комнаты фотоseo company new yorkкастрюли оптомтуры на бали в маепоисковая оптимизация и продвижение сайтовprotection for macbook pro 13 retina

Data Loss Facts

Data Loss Facts

by Tim R. Education Security

Did you know that …

70% of small firms that experience a major data loss go out of business within a year.

Of companies experiencing catastrophic data loss:

• 43% of companies never reopened
• 51% of companies closed within 2 years

If your backup plan consists of shuffling tapes, flash drives,or external disk drives then you should consider online (aka Cloud) backups.

Wireguided’s Online Backup Solution costs as low as $600 a year and backs up databases, mail servers, and everything else. All information is encrypted before it leaves your network. In case of a major disaster you can download your data from any Internet connected computer or have information sent to you next day on an external disk drive.

For more information please email info@wireguided.com or call us at 781-679-0660

Online Backup Details

 

 

 

 

 

 

Identifying Phishing Emails [VIDEO]

Identifying Phishing Emails [VIDEO]

by Tim R. Education Security TechTips

The first in our new series of Video TechTips will show you how to spot a phishing email.

[facebook_ilike]хочу прочитать чужую переписку вконтактепроверить сайт на вирусбанки кредитные карты по почтеcasino cosmopol svenska spelgirls in dubaislot o polFunky lanyards ukафрика сафари турпримеры оформления ванной комнатыденьги в долг липецкзаповедник нгоронгоропоход в килиманджарожелта¤ лихородка танзани¤дам деньги в долг читаподъем на килиманджаро 2 дн¤парк африки килиманджарозаказать тур в африкуCairo escortпутевкафирмы киева по черногории из харьковасписание кредитараскрутка брендаказан татарский чугунныйпосуда в спб в розницущитовые дома под ключбиомедис универсал протуры в танзанию апрель

Fake Service Pack

Fake Service Pack

by Tim R. Security

The bad guys are at it again. This time sending an email that looks like a Microsoft Windows Service Pack upgrade.  You will never receive Service Packs via email. Before clicking on an email, always ask yourself, “did I ever give this organization my email address?”.

The email will look like the image below:

If you put your mouse over the link (Don’t click) it shows that it actually goes to a website in the Island of Saint Helena. There it tries to get you to run a executable which will no doubt do bad things to your system.

[facebook_ilike]

взлом страницы вконтакте бесплатно онлайнmacbook аксессуарыоформление кредитной карты с льготным периодомcasino gambling online gamesasian escort agenciesslot poker oynaautoraltezza traveтанцы люблиноденьги в кредит в липецкевосхождение на килиманджаро туры altezza travelнациональный парк африки кратер нгороиспани¤ отдых в мае отзывыденьги в долг в самаре на картубыстро займ курсксафари туризмпарк у подножи¤ килиманджароpr компании в интернете юридическойкупить тур в болгарию из киеваtilars аксессуары для кухнимедкомиссия в армиюрекламное продвижение сайтов яндексдеревянный дом окна установкакаркасный дом дешевый домстоимость наполнения сайта текстом москваМадагаскар нужна ли виза украинцам

Fake Virus Scan (video)

Fake Virus Scan (video)

by Tim R. Education Security

If you have a PC (or even a Mac), you may know someone who has been a victim of malware that pretends to be a virus scan.  What make this a nasty piece of software is that it makes your system unusable until it is removed. Let’s show you what it looks like and how to remove it.

What does it look like?

The video below shows a sample website that is trying to get you to infect your system.

Prevention

A keen eye will notice that the ‘virus scan’ is actually happening inside your web browser and not your PC. The site is trying to trick you into installing the software that will really infect your system. So what do you do? Well, just close your browser (if you can). If not reboot your PC or more advanced users can kill the web browser process via CTRL-ALT-DEL. Just do not click on anything or agree to download any file. If you follow the above directions, you are safe and no infection will occur.

Removal

If by accident you panicked and installed the ‘anti-virus’ software there are a few ways to remove it. The most basic way is to have your IT staff reboot the PC and then log into it as a different user that has admin privledges. Once logged in, run a Malwarebytes to remove the software. I also recommend running CCleaner to clean up temp files where more malware may lurk.

If you cannot log in as another user, boot the system into safe mode and run the software above.

NOTE: Sometimes the malware removal may remove how the system understands how to execute files. If this happens you will need to download a tool that will rebuild that connection from another PC and run it from a flash drive on the repaired system.

If you have any questions or need assistance in removal, future prevention, or employee education please contact Wireguided.

-Tim

[facebook_ilike]взлом mail ruпоисковое продвижение сайтовкак взять кредитную карту через интернетplay free casino games with bonusshemale arabicjetbull casinoClassic casinoкупить тур в маефитнес клуб перерваальфа банк кредитная карта для снятия наличныхиспани¤ май путевкисрочно нужны деньги в долг 10000 рублейденьги в долг срочно в стерлитамакесафари килиманджаробыстро займ курсканкета заявление на получение кредита образецденьги в долг в дзержинске нижегородской областипродвижение бренда средствами prгорящие путевки египет петербургкупить вок москваопределить позиции сайта по ключевым словамgoogle advтеплоизоляция стен каркасного домакуба туры дешевоподагра обострениестилус цена москва

Facebook Phishing Alert

Facebook Phishing Alert

by Tim R. Security

A new scam is out there trying to get you to hand over your facebook information. An email such as the one below looks like it is from Facebook but is actually from some nice folks in Russia. If you see this please delete and do not click on the links. Also, if you hover your mouse over the ‘3 messages’ link (don’t click!) it will show a Russian domain.

бесплатно играть в point blankаквапарк аквалообыстрые займы красноярск онлайн заявкаcasino gratis online tragamonedasesscortsmerit royal hotel & casinoNext sale slotтемпература на горе килиманджарозанятия боксом марьинобанковские вклады учебникбизнес процесс выдача кредитасколько стоит сафари в танзании восхождение на килиманджародоговор краткосрочного займа с учредителем образецденьги в долг иваново не банкденьги в долг под расписку томскнационален парк килиманджаротур сафари отдыхбейдж размерчугунные сотейникивок купитьпродвижение раскрутка сайта ценыпоисковая статистика googleканадский дом ооостроительство дома под ключкишечной палочкикаркасные дома каталог цена

New Fake Antivirus

New Fake Antivirus

by Tim R. Security

The bad guys have released a new rogue (fake anti-virus/anti-malware ) program that pretends to be Microsoft Security Essentials, a legitimate program that protects your PC against spyware and other bad things. The usual method of infection is by visiting websites that use a vulnerability in your browser to install this software without your knowledge. It may also be installed by clicking on a link that does the same thing. The malware will first show the following screen notifiing you that your system is ‘infected’:


The giveaway that this is just not right is the next list of products that can ‘fix’ this non-existent infection. Surprisingly, only some unknown software can ‘fix’ your computer. Do not fall for this.

If you are infected run a legitimate anti-malware program such as the free Malwarebytes.

-Tim

как накрутить людей в группу в контактечехлы для macbook pro 13кредит под начало бизнесаonline casino job opportunitiesescort servicescasino royale filmBlackjack pick up 7парк маньярадетские танцы в марьиноальтезза килиманджарокредитная карта альфа банк обслуживаниегде сезон отдыха в маепокорить килиманджаротурагентство май турдоговор краткосрочного займа между юридическими лицами образецвосхождение на килиманджаро туры altezza travelнац парк килиманджароMilan escortкредитование молодых семей украинакухонная посуда ценаfinnish translatorscool drawings sketchesдом из sip панелей ценасафариконтекстная реклама yandexквадроксы проекты

Social Network Security

by Tim R. Security

Social networking sites are now an everyday stop during the average person’s day on the computer. Sites such as Facebook, LinkedIn, and MySpace are now being logged into from business computers everyday. What most people do not realize is that the next game of Farmville may lead to a network security breach.

Threat #1: Worms and Spyware

Games on social networking sites, such as Farmville, are  great way to have a little fun. What most people do not realize is that anyone can create an application and send it to their ‘Friends’. This application may say it is a game, travel application, or anything else. However, if the program is a trojan horse then you could be in trouble. This will be the future of attacks and there are already examples of this in the wild. Be very careful what you open. On a business network, it is not only  your computer that might be affected.

Threat #2: Redirection to Malicious sites

You see a link on your friends Facebook page and click on it. You might just have been attacked. Hackers are targeting accounts and then submitting safe looking links to status pages. The links may go to a site that downloads spyware or that redirects you to fake versions of common web pages such as banks, ebay, or social sites. Once you enter your login information on these fake sites, your data it sent to the hackers.

Threat #3: Social Engineering

LinkedIn is a site to keep in touch with your business associates. Hackers are now using this trust to set up fake employees and asking you to be their friend. Once you friend someone who you think you worked with they use information from your profile to gain access to your systems. For example, by knowing your name, business phone #, job title, etc. they call up your IT provider and say you forgot your password.What makes this even more damaging, is that they may know from your status updates if you are traveling, on vacation, or working on a specific project to craft a more effective attack.

-Tim