Last November law enforcement officials took down a ring of Estonian cyber criminals that operated malicious software called DNSChanger. DNSChanger works by quietly changing the DNS servers in your computer, and then redirecting you to fraudulent versions of the websites you trust. In total, the scam netted the criminals $14 million.

The authorities had no way to identify and notify those who were infected that they needed to disinfect and change their DNS, so they were forced to clean up and takeover the crime ring’s servers in order to prevent disruption in Internet service for millions of people. But, the law enforcement officials are planning to take these servers offline in July, and there are still an estimated 350,000 people who could get knocked offline.

That’s where we come in. In partnership with our friends at CloudFlare, we’ll be using our collective technologies to inform infected parties and help ensure they’ll be able to access the Web, even after the authorities take these servers offline. Through this process, we’ll ensure that hundreds of thousands of people around the world will have a safer, faster smarter and more reliable Internet than ever before

AtsDns in partnership with OpenDns now protecting you against Flashback

OpenDNS is now blocking Flashback malware, the malicious piece of software that has infected hundreds of thousands of Mac devices in just a few months. The Internet has been buzzing with stories on Flashback because until recently it was commonly believed that Mac machines were largely immune to malware attacks. But when early reports indicated that more than 600,000 machines had become infected, we quickly took action to ensure you had proactive and preventative protection.

Just like the automatic protection against phishing sites and wide-scale Internet threats that you expect from OpenDNS, protection against Flashback is a free service for all OpenDNS users. The update is automatic so you don’t need to take any additional action to start blocking Flashback. Most importantly, the leading-edge protection works in two ways:

You’re protected from accessing sites that host Flashback malware, ensuring you can’t download it in the first place.
Devices that are already infected are prevented from communicating private or sensitive information back to their online hosts and the malware is effectively rendered powerless.

http://www.atsdns.co.uk/

Google, Oracle going to trial as settlement talks collapse
By Rachel King | April 2, 2012, 1:22pm PDT

Summary: After trying to give an out-of-court settlement one last chance, it is definite that Google and Oracle will now go to trial.

It’s on: Google and Oracle are set to go to trial two weeks from today now that a last-ditch attempt at a settlement has failed.

Last week, Magistrate Judge Paul S. Grewal asked both parties to give settlement talks another chance, with a decision required by April 9. Even though they had another week, it must have been clear that a settlement just isn’t in the cards.

Google did propose an offer that included a cut of Android’s revenue stream through 2018, which was a stipulation for damages if (and only if) Oracle prevails on patent infringement.

Grewal — the same judge who presided over similarly failed settlement talks last fall — issued a memo on Monday explained that “the parties have reached an irreconcilable impasse in their settlement discussions with the undersigned,” and that “no further conferences shall be convened.”

Even more simply, Grewal wrote “in the end, some cases just need to be tried.”

He also wished them both “good luck” when Google and Oracle’s legal teams meet up at the U.S. District Court in San Francisco in front of Judge William H. Alsup on April 16.

This latest turn of events is just one of many in the patent infringement battle between Oracle and Google.

Oracle is suing Google over Java-related patents and technology that appear on the Android mobile operating system. Google’s lawyers have repeatedly responded by discussing Google’s relationship with Sun Microsystems, Java’s creator now owned by Oracle. Google argued that Sun was a big fan of Android from the start, seeing it as a tool to “spread news and word about Java.”

Since last July, there have been a number of delays to getting a trial underway with proposed failed start dates in October 2011 and March 2012.

Original Article: www.zdnet.com

Image via CrunchBase

NEWS
Businesses using versions of Windows from Windows XP Service Pack 3 onwards should patch a critical flaw in the software as a matter of priority, say security professionals.

Microsoft brought out a patch for the flaw on Tuesday, documented in the MS12-020 security bulletin. Hackers could use the vulnerability to take control of a computer system by sending malformed Remote Desktop Protocol (RDP) packets over the internet.

Customers who have not enabled automatic updating need to check for updates and install this update manually.

– Microsoft
Caused by the way RDP treats an improperly initialised or deleted object in memory, the bug affects Windows XP Service Pack 3, Windows XP Professional x64 Edition Service Pack 2, iterations of Windows Server 2003 and Server 2008, Windows Vista SP2, and Windows 7.

“The vulnerability itself is accessible through the network, does not require authentication and allows code execution on the targeted machine, a highly prized combination by attackers,” said Qualys chief technology officer Wolfgang Kandek in a blog post.

“Microsoft has rated its exploitability index as 1, meaning that they expect working exploits to be out in fewer than 30 days,” he added.

Microsoft patched seven vulnerabilities with six patches on Tuesday, according to its March security bulletin. Businesses should concentrate on patching the MS12-020 RDP vulnerability, said Kandek.

Read this

AVG: Hacktivism is slowing down business

Read more
“All of your focus should be on MS12-020,” said Kandek. “Within the week apply the patch on your Windows machines that are running the RDP service and are internet facing.”

RDP is popular among businesses for remotely controlling Windows machines, but is not active by default, said Kandek.

“[RDP] needs to be configured and started by the system’s owner, which then makes the vulnerability accessible,” said Kandek. “Consequently we expect that only a relatively small percentage of machines will have RDP up and running.”

Microsoft said in its bulletin that the MS12-020 patch was pushed out through automatic updates.

“Customers who have not enabled automatic updating need to check for updates and install this update manually,” said Microsoft.

Microsoft also patched a denial-of-service vulnerability in RDP on Tuesday.

Source: www.zdnet.co.uk

By Rick Whiting, CRN
March 28, 2012    1:56 PM ET
Small and midsize businesses will be among the most eager adopters of cloud computing services over the next three years, and many of them will rely on local service providers to get those cloud services.

That’s according to a survey of more than 3,000 SMBs in 13 countries commissioned by Microsoft (NSDQ:MSFT) and conducted by Edge Strategies in December.

“Cloud computing is a game-changer because it gives SMBs access to enterprise-class IT infrastructure,” said Gabriele Di Piazza, senior marketing director for Microsoft’s operator channels group, in an interview. That group manages Microsoft’s relationships with hosting companies, telecom operators and other IT service providers.

[Related: The 20 Coolest Cloud Platforms & Development Vendors]

The survey found that 30 percent of SMBs are already using paid cloud services while another 48 percent plan to subscribe within the next two to three years. Only 22 percent have no plans to use cloud services.

SMBs with more employees are more likely to be current cloud service users. Only 25 percent of businesses with between two and 10 employees are cloud adopters; that jumps to 53 percent of businesses with between 26 and 50 employees. Sixty percent of businesses with 101 to 250 workers are currently cloud adopters.

But the smallest SMBs offer the most growth potential. Fifty-one percent of businesses with between two and 10 employees are expected to adopt cloud services over the next three years, tripling the current 25 percent of cloud users to 76 percent.

The survey also highlights the potential opportunities cloud services offer for solution providers who can help customers with consulting and implementation services. Fifty-six percent of the queried SMBs prefer a single source for their IT — including cloud services — with a mix of applications and infrastructure services.

“[SMBs] want as many services as possible from a single source, preferably a local provider,” Di Piazza said. “There’s a level of trust provided by local solution providers.”

Fifty percent of the surveyed SMBs said it was “important” to rely on local service providers with local personnel to provide cloud services and 31 percent rated such local support as “critical.”

SMBs need local partners because 60 percent don’t have the necessary resources to implement cloud technologies and applications themselves, the survey found. Fifty-seven percent just don’t have the time. And 52 percent lack the resources to train people in cloud computing.

The survey also found that some cloud education is needed. Only 51 percent of queried SMBs understood that cloud computing referred to “rented” business-computing services provided through the Internet. Thirty-two percent thought cloud referred to personal Web services such as e-mail or music streaming.

As to expected benefits, 54 percent are counting on cloud computing to save them money while 47 percent anticipate becoming more productive. Other expected benefits include flexibility (40 percent), being more innovative (33 percent) and being more responsive (27 percent).

But concerns remain. About 44 percent think cloud services are unproven and too risky. And 51 percent say data privacy is an issue, although only 20 percent of SMBs believe that data is less secure in the cloud than in on-premise systems. “Security is decreasing as a concern,” Di Piazza said.

Cloud-based e-mail (currently used by 40 percent of survey respondents), voice communications (23 percent), instant messaging (23 percent), and online backup and database services (22 percent) are the most commonly adopted cloud services today. Last year SMBs subscribed to an average of 3.8 paid cloud services. Other popular cloud services include billing and accounting, CRM and e-commerce.

Source Material: www.crn.com

I have just installed Windows 8 on an old Samsung Q 35 laptop computer. Here are my thoughts and experiences so far

Installation:
This was probably one of the easiest installs I’ve ever had from the windows and Microsoft operating system it installed about as easy as Windows 7. The detecting hardware and network features were far simpler than Windows 7 and with the ability to link into your Microsoft account things get up and running quite quickly.

User interface:
As I have not used the Metro interface on a Windows phone I found it a little difficult to get used to but it didn’t take me long to understand how the interface worked, the Metro interface basically replaces the start menu on a normal Windows PC, if you know the program you are looking for you can simply start typing the name of the program just like you would in a Windows 7 start box and it’ll start appearing in the left-hand pain

Windows update was a little hard to find I had to go searching and found that it was in the PC settings box once you got their Windows update is very easy to use

As I discover more about Windows 8 I will post it here

Alpha Technical Solutions is proud to announce a brand new service which we are very proud of.

Why should I backup my data?

All of your data is important, whether it’s contact information, business documents, financial contracts, customer databases, or archival photographs and videos, corporations and individuals demand quality assurance from their disaster recovery programs in case of negative externalities, litigations, accidents, and other such unfortunate events.

Why use Online Backup?

Backup is a must, obviously. The question is: what are the advantages? As part of the growing computer industry sector, data stores are critical parts of the Information Economy, and as such companies are coming to rely more on applications to help drive their business. Our software supports every platform in the market to help supply this demand, from live incremental compatibility with SQL, to Enterprise Linux Boxes and Windows Servers, our Java-powered solution will scale in all business environments.

What control do I have over my backups?

You have all the control. Every customer account is protected with the highest-grade encryption, meaning several layers of operational and technical security are taken to ensure absolute data integrity. All systems are under 24/7/365 surveillance and monitoring, secured from natural disasters, and are subject to 3rd party audits.

So check out how easy and cost effective a complete off-site backup solution can be. http://www.atsbackup.co.uk/

Last week, we reported on ANDROIDOS_NICKISPY.A and ANDROIDOS_NICKISPY.B, Android malware that recorded phone calls made from infected devices then sent stolen information to a remote site.

This week, we saw another Android malware with the same code structure as ANDROIDOS_NICKISPY.A. Like the latter, this does not display an icon and executes similar routines, save for some modifications.

Detected by Trend Micro products as ANDROIDOS_NICKISPY.C, it uses the following services:

• MainService
• AlarmService
• SocketService
• GpsService
• CallRecordService
• CallLogService
• UploadService
• SmsService
• ContactService
• SmsControllerService
• CommandExecutorService
• RegisterService
• CallsListenerService
• KeyguardLockService
• ScreenService
• ManualLocalService
• SyncContactService
• LocationService
• EnvRecordService

This malware comes in the guise of Google+, Google’s most recent foray into the social networking scene, in an attempt to hide from affected users. All the above-mentioned services use the Google+ icon. The app itself is installed using the name, Google++.

ANDROIDOS_NICKISPY.C is capable of collecting data such as text messages, call logs, and GPS location from infected devices, which it then uploads to a certain URL through port 2018.

It is also capable of receiving commands via text messages. To do so, however, it requires the sender to use the predefined “controller” number from the malware’s configuration file to send a message as well as to enter a password to execute the command.

Listening In

Like other ANDROIDOS_NICKISPY variants, ANDROIDOS_NICKISPY.C also has the capability to record phone calls made from infected devices. What makes this particular variant different is that it has the capability to automatically answer incoming calls.

The code suggests that the following criteria must be met before the malware can answer a phone call:

1. The call must come from the number on the “controller” tag from its configuration file.
2. The phone screen must be turned off.

Before answering the call, it puts the phone on silent mode to prevent the affected user from hearing it. It also hides the dial pad and sets the current screen to display the home page. During testing, after the malware answered the phone, the screen went blank.

From the looks of it, the developer of this app went for the more real-time kind of eavesdropping as well, apart from the one ANDROIDOS_NICKISPY.A used, which involved recording calls.

The “auto-answering” function of this malicious Android app works only on Android 2.2 and below since the MODIFY_PHONE_STATE permission was disabled in Android 2.3.

Source:

http://blog.trendmicro.com/android-malware-targets-china-mobile-subscribers/

Here’s a posting form the Kashiko blog that talks a positive benefit of America receiving new technology benefits before the UK. The idea is that rolling out services or hardware in the US first means that in the UK we only receive the goods when they have been tested. In effect American Business is using American citizens as guinea pigs for the rest of us.

The link is:  http://www.kashiko.co.uk/2011/07/22/does-an-america-centric-web-benefit-us/

This blog is mostly good news. Announcements of work done for clients or updates regarding new or improved cloud and web services.

However something less than pleasant has come to my attention that I ned to share with you.

It concerns Dropbox, the darling file sharing service of the tech community.

On July 2nd an update to its terms was released, and there is probable cause for concern.

Here’s the offending quote from the ‘Your Stuff & Your Privacy’ section -

By using our Services you may give us access to your information, files, and folders (together, “your stuff”). You retain ownership to your stuff. You are also solely responsible for your conduct, the content of your files and folders, and your communications with others while using the Services.

We sometimes need your permission to do what you ask us to do with your stuff (for example, hosting, making public, or sharing your files). By submitting your stuff to the Services, you grant us (and those we work with to provide the Services) worldwide, non-exclusive, royalty-free, sublicenseable rights to use, copy, distribute, prepare derivative works (such as translations or format conversions) of, perform, or publicly display that stuff to the extent reasonably necessary for the Service. This license is solely to enable us to technically administer, display, and operate the Services. You must ensure you have the rights you need to grant us that permission.

How we use your stuff is also governed by the Dropbox Privacy Policy, which you acknowledge. You acknowledge that Dropbox has no obligation to monitor any information on the Services, even though we may do so. We are not responsible for the accuracy, completeness, appropriateness, or legality of files, user posts, or any other information you may be able to access using the Services. We may disclose information about your account or your stuff to law enforcement officials as outlined in our Privacy Policy.

Although this clearly states that your stuff belongs to you, it also grants a licence for Dropbox or unspecified people that dropbox works with to pretty much do as they need with your stuff.

I don’t believe that this going be appropriate for all users of Dropbox.

My advice is this – take a look at the terms and think about the possible ramifications of the licence stated being applied to your data. If you don’t feel comfortable with that licence then Dropbox you may not be the service for you.

I think this takes me to another point. Although not pleasent it is always important to read and consider the terms of service and privacy statements of all cloud services. The service becomes part of your business and you must make sure it is going to be beneficial to your business