Security

24K

Solutions

24K

Contributors

Security is the protection of information systems from theft or damage to the hardware, the software, and to the information on them, as well as from disruption or misdirection of the services they provide. Computer systems now include a very wide variety of "smart" devices, including smartphones, televisions and tiny devices as part of the Internet of Things -– and networks include not only the Internet and private data networks, but also Bluetooth, Wi-Fi and other wireless networks.

Share tech news, updates, or what's on your mind.

Sign up to Post

 
LVL 41

Expert Comment

by:noci
lookat bugtraq   and look for "Defense in depth the microsoft way" a now 52 part series.
... of microsoft not following their own advise. (With a side step of 30 something installer failures).
0
The Firewall Audit Checklist
The Firewall Audit Checklist

Preparing for a firewall audit today is almost impossible.
AlgoSec, together with some of the largest global organizations and auditors, has created a checklist to follow when preparing for your firewall audit. Simplify risk mitigation while staying compliant all of the time!

2
vSphere 5.5 and vSAN 5.5 End of General Support Reminder
Dear Valued Customer,

We would like to remind you that the End of General Support (EOGS) for VMware vSphere® 5.5 and vSAN™ 5.5 is September 19, 2018.
•      To maintain your full level of Support and Subscription Services, VMware recommends upgrading to vSphere 6.5. Note that by upgrading to vSphere 6.5 you not only get all the latest capabilities of vSphere but also the latest vSAN release and capabilities.
•      vCloud Suite 5 and vSphere with Operations Management™ (vSOM) customers running vSphere 5.5 are also recommended to upgrade to vSphere 6.5.
For more information on the benefits of upgrading and how to upgrade, visit the VMware vSphere Upgrade Center. VMware has extended general support for vSphere 6.5 to a full five years from date of release, which will end on November 15, 2021.

If you require assistance upgrading to a newer version of vSphere, VMware's vSphere Upgrade Service is available. This service delivers a comprehensive guide to upgrading your virtual infrastructure including recommendations for planning and testing the upgrade, the actual upgrade itself, validation guidance, and rollback procedures. For more information, contact your VMware account team, VMware Partner, or visit VMware Professional Services.

If you are unable to upgrade from vSphere 5.5 before EOGS and are active on Support and Subscription Services, you may purchase Extended Support in one-year increments for up to two years …
1
 
LVL 125
buy new hardware!
1
 

Expert Comment

by:vibinsathyan
:) Thank you
0
I am sharing an Office 365 Calendar using a Security Group. When the calendar was initially shared, it sent invitation emails to the group members. How do I manage invitations when I add someone to the group? It doesn't appear to do it automatically.
0
 
LVL 35

Expert Comment

by:Rob Henson
djstewart - you have created a post here. You will get better results if you raise a question. Use the big blue button at the top of the screen or this link:
https://www.experts-exchange.com/askQuestion.jsp
0
 

Author Comment

by:djstewartnc
Thanks Rob. First time in since they changed the format .... still fumbling my way around.

Will do.

David
0
For those interested, AV-Comparatives Summary Report for 2017 has just been released.

https://www.av-comparatives.org/wp-content/uploads/2018/02/avc_sum_201712_en.pdf

Last Revision - 6th February 2018
1
2B42C08B-62FB-4CA6-AF79-1E33240CFD7.jpeg
Don't put it in the bin! How many of your employees are aware of the new data regulations? Ask them. http://bit.ly/2GBbhl2

Have a go!

Read the article, then tell me what and how many potential breaches you can spot?
0
After this morning's debacle with Malwarebytes, I got to thinking about another package that I recently discovered — Emsisoft. They seem to be pitching the product as both anti-malware and anti-virus. Anyone have personal experience with it to share? Thanks much, Joe
0
 
LVL 101

Expert Comment

by:John Hurst
Malwarebytes is neither the first vendor nor the last to make mistakes like this. You said in another post that they have issued a fix. So I suggest you not make a hasty exit. The next one along will make the same mistake in due course.
0
 
LVL 58
Thanks for the comment, John, but I do not plan to stop using Malwarebytes...sorry if my post implied that. The incident simply triggered my thinking about A-M/A-V products and caused me to remember that I received a free, one-year subscription to Emsisoft when I upgraded my SyncBackPro from V7 to V8. But I never heard of Emsisoft and am hoping to get some feedback from fellow EE members about it. Regards, Joe
0
Malwarebytes is gobbling up all physical memory! Started about an hour ago here. It also turned off real-time protection. Must be a bad MBAM update. Anyone else seeing this? Only choice right now is to uninstall it, as far as I can tell.  Regards, Joe
0
 
LVL 14

Expert Comment

by:Andrew Leniart
Thanks for your update Joe.  I just re-enabled the Malwarebytes service and started it. Did an update and can confirm the issue has indeed been resolved. It's why I don't go to all the trouble of uninstalling.

Just about any software vendor will royally screw up like this at least once, so instead of uninstalling, I just disable and get on with my day. It also perfectly illustrates why I never rely on a single security package to keep me safe :)
0
 
LVL 58
You're welcome, Andrew, I'm glad it's resolved for you, too.

I also don't rely on a single security package, although you have to be very careful when running more than one...in some cases, they can conflict with each other and cause a lot of grief. That's why you hear the popular caveat of not running more than one anti-virus product on the same machine. Cheers, Joe
0
0
0
Evaluating UTMs? Here's what you need to know!
LVL 1
Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

Microsoft released a video about Ransomware.  Surprisingly good.

Take a look at it here...

https://resources.office.com/ww-thankyou-ransomware-what-you-need-to-know-video.html

Curious about your thoughts on the advice being given?
1
 
LVL 30

Expert Comment

by:Thomas Zucker-Scharff
Prevention is the takeaway. Always has been to me.  I think this is a little on the late side,  better late than never. We've had better responses here on EE than this one, imho.
0
 
LVL 14

Author Comment

by:Andrew Leniart
I think this is a little on the late side,  better late than never.

Good point, although I'm often surprised how many business owners I still come across who say something along the lines of "Ransomware, yeah I've heard about that. What's it all about?" Better late than never is a good sentiment, but if it gets the information over to some people who still have their heads buried in the sand, then I think its great.

We've had better responses here on EE than this one

You've won that argument :)  Although this is very much aimed at non-tech savvy people and I see that as one of its strengths.  

Thanks for sharing your thoughts.
0
Here’s our take on explaining GDPR compliance in a infographic
https://www.beinfoready.co.uk/compliance-explained/

Sign-up to the course.
£50 for the years subscription of our be.GDPR training modules

0
New GrouHow to break encryption in WhatsApp?

The answer is Group Chat.

More is Less: On the End-to-End Security of Group Chats in
Signal, WhatsApp, and Threema

https://eprint.iacr.org/2017/713.pdf
0
Does anyone else find it surprising and intriguing how protective and secretive Snapchat is, even when it comes to their own employees?

"The company has become so privacy-obsessed it blocks access to its own app at parties and events. At Snapchat’s NYC holiday party at the Beekman Hotel and its massive, $4 million New Year’s Eve blowout in Los Angeles, employees and guests had the cameras on their phones taped over."
1
 
LVL 1

Author Comment

by:Erin Wooddell
Very good point about avoiding bad press. I was surprised because these days it seems to be the norm that app/social media companies highly encourage employees to use the product so they not only become internal experts but promote use of the product as brand evangelists.

Another fascinating part of that article mentioned how workers can't even speak to others about what they're working on.
0
 
LVL 18

Expert Comment

by:Kyle Santos
Yeah that seems a bit drastic for that much secrecy.  But I know Apple just fired one of their engineers over something that was shared on social media.  https://www.theverge.com/2017/10/28/16565110/apple-engineer-iphone-x-youtube-video  Apple was making an example with that move for sure.

So, I mean, I get it, but it still does seem drastic to do with internal employees.

WHAT ARE THEY MAKING? ROCKETS?

Pppffffftttt
1
0
Hello, EE!

      Just a quick update for my Apple brethren; Apple has just pushed out the security update/patch for Spectre (yes, one of those vulnerabilities that everyone's talking about at the water cooler). The security update is for the iPhone, iPad, and Mac (your Apple Watch is safe according to Apple), so please update them as soon as possible. Lastly, I recommend setting aside 20-30 mins to download & install the updates but of course, times vary because systems are different. That's it for now and take care, everyone.
2
 
LVL 1

Expert Comment

by:Erin Wooddell
Thank you, Justin, for this update!
1
 
LVL 15

Author Comment

by:Justin Pierce, CEH, CNDA
Hi Erin,

You're very welcome. Unfortunately, even with this patching, the Spectre problem won't go away since it deals with hardware vulnerabilities. :( However, it's not all bad news since companies will have a heightened awareness for any attacks that deal with Spectre (extremely fast patching will become a thing), which is a good note for end-users.
0
The 14th Annual Expert Award Winners
LVL 7
The 14th Annual Expert Award Winners

The results are in! Meet the top members of our 2017 Expert Awards. Congratulations to all who qualified!

Learn how to mitigate the new intel bugs Meltdown & Spectre,

Join this free #webinar titled "How to mitigate #Meltdown and #Spectre bugs" on Jan 10, 11:00 am EDT to get hands on experience, clarify your doubts , fix the exploit and get back to your routines.

https://www.manageengine.com/products/desktop-central/meltdown-and-spectre-webinar.html?ee

melt-webinar-social-banner.jpg
0
Hi, I’m sure many of you are probably sick of answering this question, so apologies in advance.

I’ve been following (not trading) BitCoin for the last year. A few friends etc have invested in it, etc.

I have a few questions:

01 - I know this is hard to call, but I’m sure I’m too late to the BitCoin game, BUT are all crypto currencies the same in this regard or are some only worth very small now but could potentially explode like BitCoin?

02 - How do different things influence different crypto currencies, or are they all influenced by the same thing?
0
 
LVL 66

Expert Comment

by:btan
Suggest you consider asking these questions instead of putting these as post. Thanks.
0
 
LVL 14

Expert Comment

by:Andrew Leniart
@btan

Nice article for 101
https://blockgeeks.com/guides/what-is-cryptocurrency/


Great article! Thanks for posting that.
0

Meltdown and Spectre: Battling the bugs in Intel, AMD, and ARM processors


Intel bugs exploiting your sensitive data, AMD and ARM also becomes victims to this exploit.

Read more: https://blogs.manageengine.com/desktop-mobile/2018/01/05/meltdown-and-spectre-battling-the-bugs-in-intel-amd-and-arm-processors.html

You can mitigate this threats to certain extent by patching your windows systems now, after checking the compatible AV's, if updated with incompatible AV's the system may crash, causing blue screen error. Update now and secure your sensitive data.

Attend this webinar to mitigate the bugs right away.
0
 
LVL 101

Expert Comment

by:John Hurst
Just keep patches up to date and use due care when surfing the web and downloading email.
1
Awesome xkcd re: Meltdown and Spectre: https://xkcd.com/1938/ 
5
 
LVL 1

Expert Comment

by:Giridhara Raam M
Mitigate @intel bugs,

Join this free #webinar titled "How to mitigate #Meltdown and #Spectre bugs" on Jan 10, 11:00 am EDT to get hands on experience.

https://www.manageengine.com/products/desktop-central/meltdown-and-spectre-webinar.html?EE

melt-webinar-social-banner.jpg
0
 
LVL 50

Expert Comment

by:dbrunton
0
0
1

Security

24K

Solutions

24K

Contributors

Security is the protection of information systems from theft or damage to the hardware, the software, and to the information on them, as well as from disruption or misdirection of the services they provide. Computer systems now include a very wide variety of "smart" devices, including smartphones, televisions and tiny devices as part of the Internet of Things -– and networks include not only the Internet and private data networks, but also Bluetooth, Wi-Fi and other wireless networks.