Happy Holidays from all of us at IT Computer Support of New York.
Some Holiday Cheer
- Richard Keene
IT Computer Support of New York
Design and Optimization Department
Archive for December, 2008
When Google released the beta version of Google Chrome earlier this year it was received with a mixed reception. The browser that had been announced as faster and more secure then either Firefox or Internet Explorer proved instead to be little more than a cosmetic alternative. Now however, Google is ramping up its Chrome promotion campaign by cutting default stature from Firefox.
Until recently Firefox had been the default browser selected as part of the Google Pack. For those unfamiliar with it, the Google pack is a set of productivity applications that Google packages for users. The package includes applications such as Spyware Doctor, Picasa, Adobe Reader, Google Earth, Norton Security Scan, and now Google Chrome. Advanced users won’t likely be bothered by the need to select one extra option. Casual users on the other hand are unlikely to go through the extra trouble, and will accept whatever is given to them by default. Additionally, Google has also removed all of the Firefox promotions that used to be included in Google Properties. Mozilla Firefox is depended on Google as their main source of income so if Google continues to aggressively oppose Firefox the company could find themselves in economic hardship.
A second part of the Google Chrome campaign is actually set to put Internet Explorer in more damage than Firefox. Google reportedly plans to sign a deal starting in 2009 which would have computer manufactures preinstall Google Chrome as the default browser on computers. It has long been acknowledged that casual users will remain with whatever default internet browser is installed on their computer. This is primary factor in why Internet Explorer remains the most used Internet Browser despite numerous superior alternatives. A distributer for the deal hasn’t been announced but if it ends up being a partnership with a computer giant such as Dell, this could upset the current browser war into Google’s favor.
- Richard Keene
IT Computer Support of New York
Design and Optimization Department
IT Computer Support of New York is proud to announce the launch of our iSCSI SAN Virtual Storage Solutions website. ITCSNY has partnered with Dell and EqualLogic to become a certified provider of iSAN ™ Virtual Storage Technology. All of us here at IT Computer Support of New York have been working hard to supply our clients with the opportunity to benefit from this technology so this launch marks the culmination of many weeks of work.
iSCSI SAN Virtual Storage Server Architecture is a money-saving asset for your current and future business expansion. With iSCSI SAN technology you can save 40-70% of your hardware, maintenance and upgrade expenses while reducing the total number of servers you need to keep onsite. iSAN ™ technology is compatible with current and future Server Architecture and makes disaster recovery fast and efficient.
iSCSI SAN technology is an evolution of Fiber SAN technology. While Fiber SAN technology had compelling reliability, performance and capabilities, the expense made it justifiable only to very large companies. iSCSI SAN technology has greater capabilities but is offered at a price that makes it a compelling, cost-effective solution to small and midsized companies.
iSCSI SAN architecture is a Disruptive Technology that is set to revolutionize the way network hardware is handled. Take advantage of ISAN™ hardware now, before it becomes the norm, and you will bring your company ahead of the technology curve and reap the benefits while the rest of your industry attempts to catch up.
If you have any questions about our iSAN™ solutions visit our new site on the web or contact us here.
- Richard Keene
IT Computer Support of New York
Design and Optimization Department
Microsoft announced Tuesday that a critical vulnerability has been found in Microsoft Internet Explorer 7. The flaw in the browser can allow cybercriminals to gain access to your computer and steal your passwords. Security experts are advising users to switch to an alternate internet browser until an emergency patch can be issued.
It is highly recommended that all Internet Explorer 7 users cease using the browser until Wednesday night.
(Update)
Microsoft has now released a Critical Security Update for Internet Explorer. View the full Security Bulletin here.
- Richard Keene
IT Computer Support of New York
Design and Optimization Department
Earlier this week Microsoft released a number of critical patches for vulnerabilities contained in Microsoft applications. Microsoft releases Tuesday updates regularly but with 28 vulnerabilities, 23 of which are listed as critical, this is the largest Patch Tuesday release in five years. The number of vulnerabilities, while alarming, should be taken as a warning more than a threat and proves the importance of keeping up to date on system patching.
The largest of the Microsoft Security Bulletin updates in this batch is MS08-072. MS08-072 resolves eight privately reported vulnerabilities in Microsoft Office Word and Microsoft Office Outlook. Reported by Microsoft, the vulnerability “could allow remote code execution if a user opens a specially crafted Word or Rich Text Format (RTF) file. An attacker who successfully exploited these vulnerabilities could take complete control of an affected system. An attacker could then install programs; view, change, or delete data”. Microsoft states that the applications most at risk are Microsoft Office 2000 (SP3) and 2007 Microsoft Office (SP1).
Among the vulnerabilities MS08-073 also proves to be vital to general business operation. MS08-073 addresses four flaws in Internet Explorer that places a user in danger simply by browsing a hijacked webpage. The vulnerabilities could allow remote code execution if a user views a specially crafted Web page using Internet Explorer. This vulnerability specifically targets IE7 but IE6 is also at risk.
Because of the large number critical updates is it crucial that your business address the issues and applies the patches as soon as possible. For a complete Patch Tuesday Security Bulletin summary, view the official listing here.
- Richard Keene
IT Computer Support of New York
Design and Optimization Department
Using major holidays as a means to infect consumer computers is nothing new but in recent years the practice has become more elaborate and invasive. With greater access to content creating applications such as Flash and Photoshop the malware created by cybercriminals often rivals legitimate content in visual quality. The first batch of this year’s holiday malware has already been unleashed, and with it, nine possible exploits for your systems.
This latest batch of malware targets major vulnerabilities in IE6, Firefox Embed, Adobe Reader 8.1.2, Microsoft Excel, and some versions of Adobe Flash Player. Ironically most of the vulnerabilities listed above have already been patched by their respective manufacturers. Despite this, early reports of infection rates indicate that the majority of computers users still are not updating their systems. The worst of the vulnerabilities is contained within Internet Explorer 6. With IE7 having been released two years ago and IE8 set for release next year there is really no reason to be using such an outdated web browser.
Beyond updating or patching your computer software the best defense is common sense. Most Cybercriminals use endearing or provocative material to encourage browser interactions. The best way to avoid complications is to not click on content contained on website of unknown ownership. The majority of malware applications are spread through email without the senders ever knowing there is a problem. Avoid becoming part of chain emails, don’t open attachments, and avoid following links in emails from people you do not know. Employers should especially discourage these practices from an office setting as viruses are often equipped to spread over Local Area Networks. A single system compromise could damage a whole office network. In short, make sure all of your computer assets are patched and browse intelligently this holiday season to ensure that you have a better New Year than the Cybercriminals.
- Richard Keene
IT Computer Support of New York
Design and Optimization Department
Back before the onset of Windows 95 Boot Viruses were all the rave for malware distributing hackers. Back then Microsoft saw the problem managed to solve the issue of the auto installing viruses. Now more then ten years later the same problem has again risen and it’s more dangerous than ever.
Portable USB storage devices are now as common as floppy diskettes were ten years. USB devices offer fast reusable storage capability that surpassed CD’s in size a couple years ago; but this infinitely useful resource is now being put to use for malicious purposes. Because the price of USB devices decreased significantly in the last year they are now easily distributed and because of this they are easy targets. Hackers and companies looking to install invasive spyware have now taken to including their launcher programs on the devices. The greatest risk of this comes from the way Windows interacts with USB devices.
By default Windows XP and newer operating systems have Autorun functionality on by default. Autorun was meant to be a conveyance feature, allowing any USB device to automatically start upon insertion. This feature is now working against users, however, as simply inserting a USB hard drive has the potential to infect your computer. Windows XP SP1 has the greatest vulnerability to this form of attack. Service Pack 2 took small steps to prevent this, and at least asks before the application auto executes, but there are still risks. Navigating to the drive in question will still result in Windows auto running device executable files by default.
While any computer system can be infected in this manner business computers are in the most danger. Business computers are often lacking in critical system updates, experience high amounts of data traffic, and are operated by users who understand little about the operation of their systems. While banning the use of USB storage devices from your office setting would be a drastic and heavy handed step it is not unreasonable to take other measures. The Autorun service can be turned off from the Windows settings manager which would prevent the greatest risk to systems. As an added precaution most Antivirus software can be set to scan USB devices when they are inserted. Until Microsoft takes steps to release an official fix these are two of the best precautions you can take.
- Richard Keene
IT Computer Support of New York
Design and Optimization Department
