Just a quick warning before the weekend.  There's a new Facebook trojan that's out to compromise your computer and your identity if you let it.  You can expect an email with an attachment from Facebook telling you that your password has been changed.  Click/open the attachment and you're hooked by the phisher!  There's no interaction with the website at all. At that point you've welcomed a trojan (malware) and you're in danger of identity theft, and anything else the hacker may want to do with that trojan in your computer.

This webcast will provide a broad look at some of the major issues and challenges we face regarding cyber security threats. Current and emerging trends will be discussed, including identity theft, online scams, spam, social engineering, application vulnerabilities, botnets, cyber crime and more. The presentation will include practical, timely advice on what we can do--in both the public and private sectors-to mitigate the risks and enhance our protection against these threats.

Many of us want to help those in Haiti with gifts to help ease the human suffering.  Beware of scams in the form of email and on social networks (i.e., Facebook, Twitter, etc.) offering to take your money and forward it for you.  Beware of spoofed 'From' designations (maybe it's not really from a friend), and again, beware of attachments (malware is rampant).    

 Here's a great new video from the NCSA geared to 17-25 year olds.  It's fast moving, entertaining, and quick education for our students and anyone else interested.  The second video has been around for a while, and still good! 

Another chance for Jason Fosen's Windows 7 Security presentation.  The first was well received by staff who joined us on October 29 to view the webcast together in Davidson Hall. 
For any who missed it or want to hear it again, browse to the following URL:

Special Webcast: What is New For Security In Windows 7 and Server 2008-R2

IPS is experimenting with a new service. I'm producing a weekly report of threats and vulnerabilities which may be of particular interest to individuals responsible for IT producs and services at Rutgers.

Ubuntu 9.10 is out and I re-installed my desktop with it. It is a pretty big improvement and should be wonderful for netbook and laptop use. Unfortunately I had to work through some X issues like so many others are reporting.

National Cyber Security Awareness Month is over but our responsibility remains.  Technology can’t do everything.  All it takes is a visit to a hacked website, email click, or phishing exploit to pick-up malware.  Identity theft is just around the corner, but there are even bigger risks. Botnets have become a significant part of the Internet.  These groups consisting sometimes of millions of computers, remotely control their victims machines through malware for various purposes, including denial of service attacks, spam fraud, theft of application serial numbers, login IDs, and financial information such as credit card numbers. Can we handle it? Of course we can and awareness is a big part of it. Become aware of your surroundings, be careful on the Internet…don’t click that link in email, or provide your personal information unsecured; and if it looks "too good to be true”,  it probably is.  Security is our shared responsibility, so if you’re using a computer or any other mobile electronic device, Stop. Think. Secure IT!  

Many times attackers use social engineering tactics to trick victims into installing malware.  Malware is short for malicious software and includes Trojans, worms, viruses, etc. It can do any number of things to disable your computer and make life and computing frustrating.  To begin with, don’t be fooled by fake antivirus tools in pop-up windows, emails with embedded links and/or rusecuretelling you to provide confidential information (passwords, bank account numbers, etc) .  Stay away from links on social networking sites.  They’re a hotbed for the distribution of malware, often by sharing links by way of compromised accounts.  Spammers also send email looking like software upgrade advisories to trick you into installing malicious programs.  Stop. Think. Secure IT!