<< SBS News of the week Nov 7th 2004>>

Australia are you ready?
http://www.wheresjeffnow.com/default.aspx

http://www.microsoft.com/australia/partner/events/partnerbriefings/summit.aspx#anchor1
Jeff Middleton and the rest of the SBS MVP incredibles are coming to a
city near you

Perth
Thursday 11th Nov 2004
Hyatt Regency Perth Hyatt Regency Perth
99 Adelaide Terrace
Perth WA 6000

Adelaide
Wednesday 17th Nov 2004
Adelaide Convention Centre Adelaide Convention Centre
North Terrace
Adelaide SA 5000

Sydney
Tuesday 23rd Nov 2004
Sydney Convention Centre Sydney Convention & Exhibition Centre
Darling Drive
Darling Harbour

Melbourne
Wednesday 1st Dec 2004
Crown Towers - Melbourne Crown Towers
8 Whiteman Street
Southbank VIC 3006

Brisbane
Tuesday 7th Dec 2004
Brisbane Convention & Exhibition Centre Brisbane Convention & Exhibition
Centre
Cnr Merivale & Glenelg Streets
South Brisbane QLD 4101


----------------------
Javier does a song of the week

-----------------------
Security patch Tuesday
PLEASE SEE THE NEWS STORY BELOW - MS OPENS UP ADVANCE NOTICE TO ALL]
ISA server
Important rating [not critical]
Reboot needed

---------------------
Chapter 1 and 2 of the Patch Management ebook now available
By Anne Stanton and Susan Brdley
https://www.ecora.com/ecora/jump/pm123.asp


----------------------
Blogs of interest

Good catch Chad - found a SBS in a Windows server
Wonder how many other "hidden" sbs machines there are out there installed.
Dead Server Walking:
http://msmvps.com/cgross/archive/2004/11/03/17826.aspx

Javier and User groups
http://msmvps.com/javier/archive/2004/11/07/18184.aspx

Do you plan for your IT?
http://msmvps.com/sbs/archive/2004/11/07/18203.aspx

I hope everyone is following SeanDaniel.com's blog!
http://seanda.blogspot.com/

Dr. J's article on how hackers enter your network
http://blogs.msdn.com/brianjo/archive/2004/10/28/249159.aspx

Mike Walsh's Sharepoint RSS
http://mikeswss.blogg.de/eintrag.php?id=140

-----------------------
SMBnation SBS converence
http://www.smbnation.com/smb_nation_summits.htm
London November 10th
----------------------

In other news

- - - - - - - - - -
Microsoft to help users prep for patching
Microsoft Corp. will give customers advance
notice of its monthly security updates in an
effort to help them prepare to install related
software patches, the company announced today.
Starting this month, Microsoft will publish on
its Web site a summary of planned security
bulletins three days before they are released
in their entirety.
http://computerworld.com/securitytopics/security/story/0,10801,97221,00.html

Microsoft opens up corporate security bulletin to all
http://www.theinquirer.net/?article=19472
Microsoft: Security requires teamwork
http://news.zdnet.com/2100-1009_22-5439285.html
- - - - - - - - - -

Ex-Austin student indicted for data theft
A federal grand jury on Wednesday indicted a former
University of Texas at Austin student for breaking
into the school's computers and stealing 37,000
names and social security numbers. The university
estimated the data theft cost the school $167,000
to recover the system affected by the breach and
warned people about potential identity theft.
http://news.com.com/Ex-Austin+student+indicted+for+data+theft/2110-1029_3-5441013.html
http://www.usatoday.com/tech/news/computersecurity/hacking/2004-11-05-ut-hack-charge_x.htm
- - - - - - - - - -
Bank accounts in online security scare
British Internet bank Cahoot has plugged a flaw
in its online security that could have enabled
people to move freely in and out of other customers'
accounts. Cahoot took the site down for 10 hours
while it fixed the flaw, according to a representative
for Abbey, Cahoot's parent financial institution.
The problem was likely the result of an upgrade
12 days ago.
http://news.zdnet.com/2100-1009_22-5440931.html
http://news.zdnet.co.uk/internet/security/0,39020375,39172762,00.htm
http://www.vnunet.com/news/1159191

Cisco, Wells Fargo face new security breaches
http://computerworld.com/securitytopics/security/story/0,10801,97279,00.html
A new, more sneaky phishing attack
http://www.msnbc.msn.com/id/6416723/
- - - - - - - - - -
Email worm poses as Osama videogram
Emails claiming to contain video clips of terrorist
mastermind Osama bin Laden are likely to be example
of a new computer worm. The Famus-F worm normally
arrives in the form of a bilingual English and
Spanish email, with the subject line "More terrorism
this year". The message body states: "Last speech
from Bin Laden. Please forwards this video to
everybody."
http://www.theregister.co.uk/2004/11/05/osama_email_worm/
http://news.zdnet.co.uk/internet/security/0,39020375,39172757,00.htm
http://www.vnunet.com/news/1159201
- - - - - - - - - -
IE bug allows hackers to take over PCs
Security watchdog the US Computer Emergency
Readiness Team (US-Cert) has warned Internet
Explorer (IE) users to update patches after
it discovered a buffer overflow vulnerability
that gives hackers local admin rights to
execute arbitrary code on compromised PCs.
http://www.vnunet.com/news/1159190
- - - - - - - - - -
Virus writers elude Microsoft's bounty hunt
Virus writers have a price on their heads--but it's
done little to discourage them. In the year since
Microsoft kicked off its Anti-Virus Reward Program,
it has tallied only a single success. The program
has offered $1 million to informants who help close
official investigations into four major viruses and
worms, and has another $4 million earmarked for
future rewards, but the deluge of online threats
has continued to swell.
http://news.zdnet.com/2100-1009_22-5439456.html
- - - - - - - - - -
Fax.com barred from doing business in Idaho
Idaho has won a court order permanently barring
the advertising company Fax.com from doing
business within the state. The Aliso Viejo,
Calif.-based company is believed to be the
largest volume ``fax-spammer'' in the nation,
Idaho Attorney General Lawrence Wasden said
Friday.
http://www.siliconvalley.com/mld/siliconvalley/news/editorial/10110305.htm
- - - - - - - - - -
Software piracy whistle-blowers get bigger rewards
The Business Software Alliance is doubling the
maximum reward it will pay to individuals who
report companies that are using pirated software.
The BSA--a trade group supported by Microsoft,
Adobe Systems and other major software makers
to enforce software licenses and copyrights--
announced on Friday that it is raising the
ceiling on payments to U.K. whistle-blowers
to $37,000(20,000 pounds) for reports received
during November and December this year.
http://news.com.com/Software+piracy+whistle-blowers+get+bigger+rewards/2100-1012_3-5440483.html
http://news.zdnet.co.uk/business/legal/0,39020651,39172761,00.htm
- - - - - - - - - -
Online fraud tutorials... from the Secret Service?
Until Wednesday one of the best public sources
of information on how to use a stolen credit card
number, forge a drivers license, defeat a burglar
alarm or silence a firearm was a website under
the control of the U.S. Secret Service. As a jaunty
flourish in its high-profile roundup of fraudsters
and forgers last Thursday, the agency took over
Shadowcrew.com, a New Jersey-based online crime
bazaar that sits at the center of the government's
"Operation Firewall" investigation.
http://www.securityfocus.com/news/9866
- - - - - - - - - -
Symantec adds threat data to managed security services
The data will be posted using its Secure Internet
Interface. In a bid to expand its services business,
Symantec Corp. next week plans to start selling
security intelligence data as an add-on to its
Managed Security Services. Users who pay Symantec
to manage their security infrastructures will now
also be able to get extensive information on threats
particular to their IT systems as well as global
cyberthreats, said Dee Liebenstein, group product
manager at Cupertino, Calif.-based Symantec.
http://computerworld.com/securitytopics/security/story/0,10801,97292,00.html

Symantec builds double-clad security service
http://news.zdnet.com/2100-1009_22-5440691.html
- - - - - - - - - -
Microsoft to provide early warning of security flaws
Criticized for a program that only provided some
of its largest customers with warnings on security
problems in its products, Microsoft Corp. now says
it will give all computer users early word on such
issues. Beginning this month, the Redmond software
giant will make public in advance how many security
fixes it plans to release in its regular monthly
bulletin, how severe the problems are and what
products are affected.
http://www.securityfocus.com/news/9867
http://software.silicon.com/security/0,39024655,39125659,00.htm

Microsoft: Security requires teamwork
http://news.zdnet.co.uk/internet/0,39020369,39172758,00.htms
- - - - - - - - - -
SonicWall to bolster next OS with antivirus scanning
Security vendor SonicWall is expected to formally
announce on Monday a new operating system that
includes the capability for scanning for viruses
at the gateway.
http://news.zdnet.com/2100-1009_22-5440957.html
- - - - - - - - - -
RSA sees looming identity crisis online
RSA Conference: Businesses must shift their
online customers towards a federated identity
policy if e-commerce is to take off, says RSA's
director of technology. The director of technology
for RSA, Andrew Nash, said that businesses need
to move their online customers towards a federated
identity policy or security threats could bring
people to lose confidence in trading.
http://news.zdnet.co.uk/0,39020330,39172722,00.htm

Avoiding downstream liability
We've seen it before: innocent and unsuspecting
organizations that have their networked computers
hijacked for use as pawns in attacks against other
companies' networks. But what about when such
hijacking can be averted? Is it the middleman's
responsibility to prevent further dispersal
of attacks? When a hacker sends a virus and/or
infiltrates a system and then uses that system
to break into or infect other systems, does it
result in potential liability for the victim?
http://computerworld.com/securitytopics/security/story/0,,97174,00.html
- - - - - - - - - -

 

Not only did Javier write his own 'song of the week' -- he completely shoved
me off Susan's weekly updates! Does trhis mean that I am officially retired?
Nope. I'll chalk this up to Susan's hectic travel schedule.

BTW -- here is a link to my 'song of the week' --
http://msmvps.com/kwsupport/articles/18257.aspx

--
Kevin Weilbacher [SBS-MVP]
"The days pass by so quickly now, the nights are seldom long"

 

Don't feel bad Kevin she can't even spell her own name right ;-)
By Anne Stanton and Susan Brdley

--
Frank McCallister SBS MVP
COMPUMAC

 

I finally got around to reading Chapter 1 this weekend and this is GOOD
STUFF. I consider myself fairly well informed about security issues, but I
learned quite a bit from it. And, it's well written and easy to read, so it
won't put you to sleep, and the price is right.

I'd encourage everyone to read it.

<snip>

 

That's ShowBiz !
Life's tough at the top of the Pop Charts.

 

rtf

--
Henry Craven {SBS-MVP}
Melbourne Australia