Security Protection – Harry Waldron MVP Rotating Header Image

January 20th, 2013:

Privacy – DoNotTrackMe features easier-to-use interface in new version

Abine’s DoNotTrackMe provides free and easy-to-use capabilities to improve user privacy and PC performance.

http://facecrooks.com/Internet-Safety-Privacy/Introducing-DoNotTrackMe-DNTMe-for-online-privacy-made-easy.html

QUOTE: DNTMe stops more than 50 additional trackers, so it protects you from more than 200 companies and 630 tracking technologies. We also removed the option to set advertiser opt-out cookies, a self-regulatory attempt at an opt-out method. They’re confusing to consumers because they involve downloading more cookies to get less tracking, something that’s difficult or impossible to verify and that our users rejected. A new look. We kept the features our users liked–such as a simple, easy-to-see browser icon that shows how many trackers are trying to mine your information on the site you’re visiting, an all-time count of trackers blocked, and blocking social button tracking—and gave a little facelift to everything else. A new chart visually displays how many trackers you’ve blocked since you started using DNTMe, and you can share your number from within DNTMe (don’t worry: these share buttons aren’t the kind that track you!). The layout is cleaner and easier to read, but if you’re a creature of habit, you can return to the old look in your settings.

Abine’s DoNotTrackMe Product Page & Latest Download

https://www.abine.com/dntdetail.php

Microsoft Security out-of-band release – Internet Explorer 6, 7, and 8

A special out-of-band update that ISC rates as “PATCH NOW” has been released. Encourage all users to stay on latest version of Internet Explorer for best levels of security protection

https://isc.sans.edu/diary/January+2013+Microsoft+Out+of+Cycle+Patch/14941

http://technet.microsoft.com/en-us/security/bulletin/ms13-jan

http://support.microsoft.com/kb/2799329

QUOTE: Today, we are providing Advance Notification to customers that at approximately 10 a.m. PST on Monday, January 14, 2013, we will release an out-of-band security update to fully address the issue described in Security Advisory 2794220. While we have still seen only a limited number of customers affected by the issue, the potential exists that more customers could be affected in the future. The bulletin has a severity rating of Critical, and it addresses CVE-2012-4792. Internet Explorer 9-10 are not affected by this issue and as always, we encourage customers to upgrade to the latest browser version.

Red October – Advanced Cyber-Espionage malware

This article documents the growing trend of highly advanced and targeted Cyber-Espionage malware

http://redtape.nbcnews.com/_news/2013/01/14/16507760-red-october-is-latest-super-cyberspy-virus-firm-says

QUOTE: A Russian computer security firm says it has uncovered a new, far-ranging cyberspying campaign that targets government secrets. The firm, Kaspersky Labs, has tantalizing named the malicious software behind the attack “Red October,” a nod to the famous Tom Clancy novel. Red October has been attempting to steal critical, secret documents since at least 2007, Kaspersky said in a report posted to its website Monday. It’s designed to defeat a common encryption scheme that’s used by NATO and government agencies, Kaspersky says. It’s also capable of stealing data from mobile phones, and has a “resurrection” module that allows the program to reinstall itself even if detected and removed.

Red October infections aren’t widespread, the firm says — only “several hundred” have been found so far. But the virus isn’t designed for high infection rates, but rather to spy on specific, high-value targets, it said. The highest infection rates were in Russia, Kazakhstan and Azerbaijan, Kaspersky said, suggesting Eastern Europe and former Soviet republics were the main targets of the virus writers. There were a handful of infections in Belgium, the U.S., and Switzerland, however, hinting that the virus writers might not be driven by geopolitics