Beware of new malware that holds your data hostage

 

You probably have had some exposure to spyware, malware and viruses.  There are the typical spyware/malware instances that have been around for years that display tons of pop ups or look like an antivirus program that is telling you that you have spyware and you should scan with their scan.  Then there is spyware/malware that locks up your desktop by displaying a message that the government is watching you.  But this new malware causes so much damage it can be put into a category all by itself.

 

What is does is this:  It looks at your local and network drives and share folders and will ENCRYPT files matching a set of extensions from common applications that you probably use.  These include Word, Word Perfect, Excel, etc. 

 

What this means:   You can’t get into ANY of your files. 

 

How it gets in:  Malware/spyware comes in through e-mail attachments, drive-by downloads from websites that are infected, a trojan-downloaded or backdoor scenario or manual infiltration though remote desktop protocol.

 

What can you do? 

 

1)  First, be sure that you are checking your back up every day.  A good backup is the best chance for restoration of your data. 

 

2) You should also have a firewall to proactively block known websites that tend to be infected. 

 

3) All of your computers should be up to date with the latest windows updates installed. 

 

4) Restrict all Users from being able to install Applications to their computers.  While some users may find this annoying, we have found that this reduces the risk of a network breach/compromise.

 

5) Patch Management.  Patch management would automatically apply updates such as Windows, Flash, Java, Acrobat Reader, etc.  Quite often we find clients that do not have Patch Management have security holes because not all users are applying all the patches.

 

Let us help you pro-actively block spyware, malware and viruses.  Call Glasser Tech at 516-762-0155

Microsoft Releases Critical Temporary Fix for Internet Explorer

Microsoft “Fix it”

Vulnerability affects: All Internet Explorer Versions.

How an attacker exploits it:  Microsoft says:  "This would typically occur when an attacker compromises the security of trusted websites regularly frequented, or convinces someone to click on a link in an email or instant message" 

Impact:  In the worst case, an attacker can execute code on your user’s computer, potentially gaining complete control of it.

What to do: Click Here to Connect to the Website and Download the Fix it

The ‘Fix it' applies only to 32-bit versions of Internet Explorer.  If you are running 64-bit, the ‘Fix it' cannot be applied.

Three Other Microsoft Recommendations on the Advisory:  

1) "Enable the MHTML protocol lockdown"

2) "Set Internet and Local intranet security zone settings to "High" to block ActiveX Controls and Active Scripting in these zones"

3) "Configure Internet Explorer to prompt before running Active Scripting or to disable Active Scripting in the Internet and Local intranet security zone."

In its advisory, Microsoft said that it was actively working to release a patch for the issue, either in its next monthly security update – due out Oct. 8 – or in an out-of-cycle release.

Clients with our Proactive Solution to Patch Management Automatically get the Updates.  

Contact us to find out how you can become "Proactive" instead of "Reactive".

Michael Glasser, Glasser Tech LLC (516) 762-0155

What’s important for you to know about this month’s Patch Tuesday

 

Patches are available this month for Microsoft, Adobe and Java.

 

First, let’s start with Adobe.

 

This month’s patches are for Reader (and Acrobat) Adobe Flash Player and Shockwave Player.

 

To reach the appropriate patches for Adobe, click on these links.

 

· APSB13-23: Two Shockwave Player Memory Corruption Vulnerabilities

· APSB13-22: Multiple Reader and Acrobat  Vulnerabilities

· APSB13-21: Four Flash Player Memory Corruption Flaws

 

There were also updates released for Microsoft’s Office and Internet Explorer

 

September’s Microsoft Patch includes fixes for 47 issues and 13 bulletins.  A list of these updates can be found at Microsoft Security Bulletin Summary for September 2013.

 

Some of the more important vulnerabilities include:

· MS13-070: OLE Code Execution Vulnerability

· MS13-071:  Windows Theme Code Execution Vulnerability

· MS13-076: Multiple Kernel-Mode Driver Elevation of Privilege Vulnerabilities

· MS13-077:  Service Control Manager Elevation of Privilege Vulnerabilities

· MS13-079:  Active Directory DoS Flaw

 

Also have you updated your Java recently?

 

The website theregister.co.uk states that 81 percent of businesses run outdated Java.  What is Java?  Java is a programming language.  Many websites need Java to run properly. 

 

You should download the latest version of Java by going to their website java.com

 

Updates are important because they protect you from vulnerabilities.  When your computer is updated, you are less apt to be hacked.