Security

Bitstop Re-enrolled in Microsoft Partner Network

Bitstop Network Services, Inc — Sun, 14 Aug 2011 02:14:52 GMT

Bitstop Inc successfully completed the requirements for us to be re-enrolled into the Microsoft Partner Network. As part of the benefits, Bitstop Inc is now eligible to sell Microsoft Online Services (Cloud based offerrings) Office 365, Exchange Online, Office Live Meeting, Sharpoint ONline, Windows Intune.

Windows Intune is specially useful for organizations that need to centrally manage their PC inventories, provide Security and malware protection, AND upgrade their PCs to windows 7 on a very low 11 USD per device per month fee!

Pirated Windows XP leads in Infections

Bitstop Network Services, Inc — Fri, 12 Aug 2011 02:03:45 GMT

A study that has been conducted by the AVAST Virus Lab has identified unpatched and pirated versions of Windows XP as the perfect target for rootkit infection. The study found that rootkits infecting via the MBR were responsible for [more than] 62 percent all rootkit infections. Driver infection made up only 27 percent of infection. The clear leader in rootkit infection is the Alureon (TDL4/TDL3) family, responsible for 74 percent of infections.

For more details: http://www.sectechno.com/2011/08/06/pirated-copies-of-windows-xp-top-rootkit-target/

IE 9 vs 99% of Malware

Bitstop Network Services, Inc — Wed, 02 Feb 2011 02:39:56 GMT

The Internet Explorer 9 beta protects against 99 percent of “socially engineered malware,” according to independent researcher NSS Labs.

What is socially engineered malware?

Cybercriminals use socially engineered malware to gain access to your computer. According to NSS Labs, socially engineered malware describes any link that leads to malicious websites or downloads that could harm your computer.

Research shows that these links appear on popular websites and services such as Facebook, Twitter, and LinkedIn as cybercriminals are increasingly taking advantage of people’s trust in these sites.

How Internet Explorer 9 protects against socially engineered malware

NSS Labs says that the success of Internet Explorer in blocking this kind of malware can be credited to SmartScreen URL filtering (included in Internet Explorer 8 and Internet Explorer 9) and SmartScreen application reputation (new to Internet Explorer 9).

IE Security Vulnerability

Bitstop Network Services, Inc — Sat, 06 Nov 2010 01:03:57 GMT

Microsoft Warns of Zero-Day Flaw in Internet Explorer (November 3, 2010) Microsoft has issued an advisory warning of active attacks on a zero-day flaw in Internet Explorer (IE).

The vulnerability is being exploited to install malware on users' computers. The flaw affects IE 6, 7 and 8; users who have not already done so are being urged to upgrade to IE 8, which includes Data Execution prevention technology that makes the flaw harder to exploit. IE 9, which is in beta release, is not affected.

Microsoft says it is working on a fix for the vulnerability, but it does not appear to warrant an out-of-band fix. Microsoft's next scheduled security update is slated for Tuesday, November 9, but it does not appear to include a fix for this vulnerability.

52 Percent of New Virus dead within 24 hours

Bitstop Network Services, Inc — Wed, 12 Aug 2009 12:15:49 GMT

Panda Software has research that shows:

An average of 37,000 new viruses, worms, Trojans and other security threats appear every day

The amount of cataloged malware totaled 30 million individual samples by July 2009

Hackers are modifying their creations every day to avoid detection by security companies

Every day, PandaLabs receives nearly 37,000 samples of new viruses, worms, Trojans and other types of Internet threats, 52 percent of which (that is 19,240 on average) spread and try to infect users for just 24 hours. After this, they become inactive and harmless as they are replaced by other, new variants that join the list of new specimens in circulation.

The reason for this lies in hackers’ motivation to profit financially from malware. To do this, they try to ensure their creations go unnoticed by users and security solution vendors.

Just 24 hours after they put any strain of malware into circulation, they will modify its code so that it can continue to spread without being detected by security companies.

This explains the significant increase in the number of new threats detected by PandaLabs, which leapt from a total of 18 million in the 20 years from the company’s foundation until 2008 to 30 million by July 31, 2009.

According to Luis Corrons, Technical Director of PandaLabs, “This is a never-ending race which, unfortunately, the hackers are still winning. We have to wait until we get hold of the malware they have created to be able to analyze, classify and combat it.

Interested in Panda Software? Order it from our Online Computer Store!

BNS Adopts ITIL Hosted Solution

Bitstop Network Services, Inc — Mon, 18 May 2009 23:40:37 GMT

As part of ITIL v3.0 initiatives at Bitstop Inc, Bitstop Network Service is proud to announce the adoption of ITIL Software to manage, track and identify our service assets. The hosted solution enables us at Bitstop Inc to quickly enter our inventory including warranty, license and supplier information for quick reference and fast servicing.

Brace for Conficker Worm

Bitstop Network Services, Inc — Tue, 31 Mar 2009 22:53:04 GMT

Major News organizations have highlighted a possible surge in Conficker worm. Users are advised to go to http://safety.live.com to conduct a free scan of their computers to make sure that the malware is neutralized.

Protect yourself from Conficker Worm

Bitstop Network Services, Inc — Sat, 28 Feb 2009 09:38:35 GMT

Scan all files Since Conficker uses random extension names to avoid detection, Windows users should make sure their security software is set to scan all files, rather than checking on specific extensions.

Update Windows The alarmingly high number of Conficker infections led Microsoft last Tuesday to enable its anti-malware utility, Microsoft Software Removal Tool (MSRT), to detect the worm. So it's important that Windows users, if they haven't already, download the latest Microsoft security patch that went out earlier this week.

Use a blocklist This is less relevant for home users, but network administrators can also use a Conficker blocklist provided by F-Secure to try and stop the worm's attempts to connect to websites.

Disable Autoron You can disable Autorun so that a PC won't suffer automatic attack from an infected USB drive or other removable media when it's connected. The Internet Storm Center links to one method for doing so, but the instructions involve changing the Windows Registry and should only be attempted by adminstrators or tech experts.

From:PCWorld.com http://www.pcadvisor.co.uk/blogs/index.cfm?blogid=4&entryid=109750

Join our Partner Associate Program

Bitstop Network Services, Inc — Sat, 28 Feb 2009 00:27:44 GMT

Bitstop Inc is inviting IT trainors and professors to join us in our Partner-associate program. Bitstop Inc is offering access to our vast IT resource library that includes Cisco, Microsoft and other IT vendor manuals (except those that are specifically covered by NDA with our Principals). Some of these items include our Keystore IT video courses andMicrosoft TECHNET DVDs. These materials can not be taken OUT of Bitstop Inc, but must be 'consumed' on site.

In return, we ask that the IT professors and trainors do two things for us:

1. Echo the learning materials to their students and give us first crack at hiring them.

2. Be available for consultancy jobs that we may have for them in the Asia Pacific Region. (Of course, with pay)

Interested parties are encouraged to email us at wilson[at]bitstop.ph

Call for security Papers

Bitstop Network Services, Inc — Thu, 26 Feb 2009 06:12:47 GMT

Greetings Fellow DEFCONPH Forum Members,

It is commonly acknowledged that security requirements cannot be addressed by technical means alone, and that a significant aspect of protection comes down to the attitudes, awareness, behavior and capabilities of the people involved. Indeed, people can potentially represent a key asset in achieving security, but at present, factors such as lack of awareness and understanding, combined with unreasonable demands from security technologies, can dramatically impede their ability to do so.

We are looking for specific expertise to be shared with our delegates, both technical and non-technical, in the following interests:

Topics of interests:

* Risk Assessment

* Policies and Compliance Awareness

* Attacks and Countermeasures

* Perimeter Defence

* Mobile and Wireless Security

* Government Security

* Forensic Investigation into Web Hacking

* Botnets

* Penetrating Testing

* Insider Threats

* Cyber Terrorism

* Information Security

* Storage management software

* Enterprise content management

* Data and storage security

* Disaster recovery

* High-availability systems

* Regulatory and compliance issues

* Data classification

* Data Migration

* Storage Virtualization

* Information Lifecycle Management (ILM)

* Email, IM, file and database archiving

* Backup and restore systems

* Business continuity and DR planning

Proposal Format - The proposal should be one page and consist of:

1. An abstract

2. A brief outline of major topics

3. A short biography of the presenter

Deadline of submission is extended to March 8, 2009 (Sunday). Email all inquiries to maxtor@defconph.org and CC semprix@defconph.org

For the record, we received an invitation to give a talk to a particular university in Manila. So we need to combine our expertise and share our knowledge to the public. We are looking for volunteers who wish to give a talk.

For other details of this "Call for Presentation" please visit

The success of this organization entirely depends on the collective efforts of each forum members (male and female, young and old).

DEFCONPH will stay here, now and forever!

Maxtor

Co-Founder
www.defconph.org.