<<< SBS news of the week - August 1 2004>>

Discussion in 'Windows Small Business Server' started by Susan Bradley, CPA aka Ebitz SBS Rocks [MVP], Aug 2, 2004.

  1. Coming to you this Sunday, in LAX via cell phone connection [geeze -
    don't they have wireless in this place? We have it in Fresno!] waiting
    for a 9 p.m. flight

    SBS Newsgroup FAQ located online at
    IE PATCH IS out
    The recent unpatched vulnerabilties in IE are now in this fix. This is
    a "out of band patch" and thus should be on the "fast track" as exploits
    are definintely in the "wild" on this one.
    SBS 2003 End User Experience
    Join Microsoft experts on August 5, 2004 to discuss tips, techniques,
    and best practices for the SBS 2003 End User Experience. The topics
    include Remote Web Workplace, SBS intranet (Windows SharePoint Services)
    and Office Outlook 2003 running on SBS clients.

    Date: 10:00-11:00 am Pacific Time, 1:00-2:00 Eastern Time on August 5, 2004.


    So go find some “Ends” that are “users” and drag them to this ;-)

    Seriously, the integration that SBS has right in it's pocket is amazing.
    We DON'T take advantage of what we have.

    In other news --
    - - - - - - - - - -
    NIST says Data Encryption Standard now 'inadequate'
    It says the encryption algorithm should lose its
    certification for use in government software.
    The National Institute of Standards and Technology
    (NIST) is proposing that the Data Encryption
    Standard (DES), a popular encryption algorithm,
    lose its certification for use in software products
    sold to the government. The advent of massively
    parallel computing has rendered DES inadequate
    to protect federal government information, NIST
    - - - - - - - - - -
    PayPal settlement e-mails confuse recipients
    Some think notice of class action case is a hoax
    Millions of PayPal users received an e-mail this
    week offering them a chance to receive a little
    money just for filling out an online form -- and
    for once, the e-mail wasn't a fake. The notice
    tells PayPal customers that they may be eligible
    to receive payment as part of a class-action
    lawsuit settlement the eBay-owned Web signed
    last month.
    - - - - - - - - - -
    Seven of 24 meet security requirements
    A recent audit of 24 of the largest federal
    agencies found only seven agencies in compliance
    with a law requiring that they certify and accredit
    their information systems' security. The audit report
    released this week by the Government Accountability
    Office prompted Rep. Adam Putnam (R-Fla.) to issue
    a statement chastising federal agencies for not
    complying with security policies and guidelines
    issued by Office of Management and Budget officials.
    - - - - - - - - - -
    Law enforcement tackling computer crime
    Federal and state law enforcement agencies are
    joining forces to combat computer crimes, officials
    announced. The Cyber-Crime Strike Force will have
    a staff of seven investigators: four from the FBI,
    two from the state Attorney General Jerry Kilgore's
    office and one from the Virginia State Police. They
    will work out of the Richmond FBI office, which has
    a computer lab from which online undercover
    investigations may be conducted.
    http://seattlepi.nwsource.com/busin...Computer Crimes&searchdiff=2&searchpagefrom=1
    - - - - - - - - - -
    Search engines expose vulnerabilities
    Malicious hackers use search engines to parse
    through a Web site's source code. Internet search
    engines have long been used in uncovering
    vulnerabilities for launching attacks, and security
    experts expect malicious hackers to increase their
    use of the technology to find exploitable information.
    Hackers have long used search engines to parse through
    a Web site's source code, seeking clues about what the
    site contains and configuration information that may
    be useful in launching an attack.

    Google a favorite among hackers too
    - - - - - - - - - -
    Companies take too long to patch software flaws, exec says
    Companies are taking too long to patch critical
    internal vulnerabilities and are still struggling
    to protect systems against external attacks. That's
    according to Qualys Inc. CTO Gerhard Eschelbeck
    addressing the Black Hat conference in Las Vegas.
    He said the typical patching time or "half life"
    for critical internal vulnerabilities was 62 days,
    about 22 days more than the 40 days he suggested
    companies should be aiming for.
    - - - - - - - - - -
    Online shopping increase provides bait for phishers
    More and more people are shopping online, leading
    to an increasing number of incidences of phishing.
    Phishing is on the increase and the phenomenal
    rise of the crime shows little sign of slowing --
    especially with more and more of us moving online
    to use services such as banking and shopping.
    - - - - - - - - - -
    Spam Foes Band Together
    An organization due to launch Thursday will connect
    influential opponents of spam around the world in an
    effort to roust junk e-mailers from their international
    hideouts. Anne Mitchell, president of the Institute
    for Spam and Internet Public Policy, will present
    the group -- the International Council on Internet
    Communications -- Thursday at ISIPP's International
    Spam Law and Policies conference in San Francisco.
    - - - - - - - - - -
    Gates: Security can be an asset and opportunity
    Microsoft Corp. is looking to turn security from
    a "concern" into a "business asset" and "opportunity"
    for the company through software enhancements and
    management applications, Chairman and Chief Software
    Architect Bill Gates said today. Security and network
    complexity are now on top of all business customers'
    minds, Gates said in a presentation at Microsoft's
    annual financial analyst meeting in Redmond, Wash.
    - - - - - - - - - -
    Lining up the defense
    At the Black Hat Security Briefings in Las Vegas,
    the talk turns to e-voting security, tougher tools
    and RFID hacking. Meanwhile, Check Point shores up
    its network software. (Series of articles)
    - - - - - - - - - -
    Internet Snagged In the Hooks Of Phishers
    Maybe it's time we all went to digital self-defense
    school. How else can we learn how to deflect the
    Internet thieves pounding on our electronic doors?
    The pounding is getting louder, judging by recent
    reports of scammers trying to steal identities
    through counterfeit e-mails and bogus Web sites.
    Should the doors give way, I'm afraid we can kiss
    many legitimate Internet commerce sites goodbye,
    because they require a foundation of trust.
    - - - - - - - - - -
    Counting the cost of a worst-case worm
    A single 'superworm' attack could cost business
    as much as $50bn. Each week vnunet.com asks a
    different expert to give their views on recent
    virus and security issues, with advice, warnings
    and information on the latest threats. This week
    Pete Simpson, ThreatLab manager at Clearswift,
    examines research that estimates the possible
    economic impact of a 'worst-case worm' attack.
    Susan Bradley, CPA aka Ebitz SBS Rocks [MVP], Aug 2, 2004
    1. Advertisements

  2. Blame it on LAX ... you missed my SOTW!

    Kevin Weilbacher [SBS-MVP]

    "The days pass by so quickly now, the nights are seldom long"
    Kevin Weilbacher [SBS-MVP], Aug 3, 2004
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.