Log in

Archive for February, 2012

Canadian businesses vulnerable to data breaches: Security needs tightening

February 29th, 2012

The cloud-computing stack: Cloud computing is the answer to data security

It is a myth that only giant corporations become a victim of data breach as they deal in large amount of data. The reality is small and medium-sized businesses are not exception when it comes to getting hacked. Their data is equally insecure and unless they strengthen their security policies, they are looking for trouble with a capital T.

Today’s story throws light on the vulnerability of small and medium sized businesses. The focus today is on Canadian companies.

What the survey says?

According to the survey conducted by Primus Business Services 60 per cent of the small and medium business owners admitted that they invest less than 10 per cent of their budgets in data. It is true that they are aware of the risks they are taking but are unable to act on it.

Half of the company-owners said that they were concerned with cloud computing security, 40 per cent of them were of the opinion that they would feel more secure if cloud services had full unified threat management/firewall protection or if the cloud was a single-tenant environment. Around 48 per cent agreed that having proper company security polices will solve the data breach problems.

Cloud-computing is a relatively new phenomenon and hence companies are wary of switching to this technology. As of now only 14 per cent companies are taking advantage of this technology. Somehow it is still felt that cloud-computing is insecure as compared to having your own servers.

According to AJ Byers, Executive Vice President of Primus Business Services “Our public and private cloud computing platforms have been designed with enterprise grade security, failover, and disaster recovery technologies that are far more advanced than the standard firewall and server protection that most small and mid-market companies are investing in to protect both their own, and customer, data.”

What does cloud-computing exactly do?

A cloud firewall protects cloud servers and offers a fully unified threat management approach to securing the

customer’s environment.

Cloud computing key features:

Network security: A configurable firewall combined with an Intrusion Protection system, Denial of Service protection, traffic forwarding, VPN support and other

security tools.

Application security: includes email and web security – Protects users from receiving malicious spyware and spam emails.

What does cloud-computing exactly do?

A cloud firewall protects cloud servers and offers a fully unified threat management approach to securing thecustomer’s environment.

Cloud computing key features:

Network security: A configurable firewall combined with an Intrusion Protection system, Denial of Service protection, traffic forwarding, VPN support and othersecurity tools. Application security: includes email and web security – Protects users from receiving malicious spyware and spam emails.

The above makes it all the more clear why data security is important. Data encryption via cloud computing is the way to keep data breaches at bay. Companies like Alertsec take care of security needs for big as well as medium-sized and small companies.

Let us peek into the key features of Alertsec:

256-bit Full Disk Encryption

Web-based management

Comprehensive 24/7 support

Logging & Reporting

HIPAA, PCI and SOX compliant

Alertsec’s cloud-based, hard disk encryption service provides an easy and convenient way to protect all information stored on your organisation’s laptops and PCs.

No comments »

Posted in Computer security, Data Protection, Encryption, Identity and Information loss, Security Flaw, computer security software

Tags: alertsec business Check Point Cloud computing Cryptography data breach Data Protection Act 1998 data security disk encryption Information privacy security Social Security number Theft

ID thieves are back in action: 7.7 million Americans hit with credit and debit card fraud

February 27th, 2012

English: A smartcard graphic, without banklogo...

Credit card thefts on the rise suggests a recent survey

Stop reveling in your new purchase of a Smartphone, take it easy! Your data on your smartphone is not exactly safe! It could get stolen, especially the financial info like your credit and debit card information. Read on the new item below and get the facts straight. It is time you get that encryption software installed on your laptop!

What does the recent survey say?

According to the latest report from Javelin Strategy & Research 7.7 million Americans have been hit with credit and debit card fraud in 2011 alone.

What is the reason for this increase? The answer: Credit card thefts are back in vogue.

“There’s been a rebound. … ID thieves have bounced back,” said Javelin President James Van Dyke. This is about 2.2 million more than in the previous year.

Analyst Avivah Litan says “Our data says the same thing (as the Javelin data). It is worth noting that increases in fraud rates are even more pronounced on the small business and corporate side, which Javelin didn’t survey.”

A broad definition of identity theft: any time a transaction occurs using a victim’s name or account information without authorization.

An example of ID theft

The survey further adds- There were some very high-profile thefts, such as the breaches on Sony Corp’s PlayStation network in April. A person whose personal information is stolen in a data breach is 9.5 times more likely to become a victim of identity fraud.

The situation is not as bleak as it looks. There is still hope. Consumers can protect themselves against identity fraud by taking the appropriate steps to safeguard their personal information.

Sure fire ways to protect from identity/credit card fraud:

– Monitor your accounts — Consumers can monitor accounts and catch fraudulent activity even faster with available electronic resources. Fraudulent activity can be monitored through electronic means like online banking, mobile banking and ATMs.

– Time to get rid of paper – Get your bank and credit card statements delivered online, there’s always a chance of your hard copy getting stolen.

– Set up a fraud alert.

– Avoid sharing personal information on social media sites.

The connection between social media and identity fraud

According to the survey there is a connection between active use of social networks and ID theft. More than 10 percent of LinkedIn users say they were a victim of identity theft (10.1 percent), while 7 percent of Google+ users and 6.3 percent of Twitter users admitted to being victims of ID theft –. Facebook users were at 5.7 percent just above the national average of 4.9 percent.

Social networking site users are more than often careless with their data: 45 percent disclose their birth date and year; 63 percent their high school; 18 percent their phone number; and 12 percent their pet’s name.

Data security with Alertsec

Alertsec is here to take care of our security issues especially for anyone working with PCs. Alertsec Xpress is the service that automatically protects ALL information you store on your PC. The fact that we now buy more laptops than desktops shows that the information we all store is increasingly more vulnerable to be exposed. It is a much higher risk to lose a laptop than a desktop computer.

Encryption is the only secure method for complete protection of data stored on your hard disk. Today laptops are overtaking desktop PCs as the major source of computing and media storage, laptops frequently store an organization’s most valuable information. Thus laptop encryption is becoming more and more important.

Alertsec Xpress offers full disk encryption and is therefore superior to other encryption methods when comparing security, performance, robustness and ease-of-use for both administrators and users.

No comments »

Posted in Data Protection, Identity and Information loss, data breach, data encryption, identity theft

Tags: Automated teller machine business Business and Economy Credit card Debit card Facebook Financial services Fraud Identity document identity theft identitytheft Javelin Javelin Strategy & Research LinkedIn Merchant Services PlayStation Network security Sony Theft United States

Tracking software helps catch laptop thief in Altadena, Los Angeles

February 25th, 2012

Tracking software helps recover stolen laptop

We cannot stress how important it is to get your laptop encrypted. Dozens of cases very month are related to laptop thefts.

What is scary is that 97% of stolen laptops are never recovered! Intellectual property theft is on the rise and we need stricter laws to keep laptop thieves at bay. It is just not the physical thing that you lose but you lose sensitive and valuable data. If you own a laptop, today’s post is for you. In case you ever loose your laptop but have encryption software loaded, you stand a good chance of getting your laptop back.

Today’s article not only helped the detectives to recover a stolen laptop but also other items that the thief stole like rifles and iPhones!

Read on

In January, Los Angeles County sheriff’s detectives marched into the home of Raymond Jackson, 57, and found stolen goods that included a laptop which was protected by a encryption software. The laptop was stolen from an Altadena residence in May 2011. The detectives were on to this case for last 9 months.

They kept monitoring the laptop’s use through the tracking software. What they actually did was that they captured the keystrokes and screen images in November 2011. That helped them to zero in on Raymond. Prior to that Raymond did use the laptop but the data was not much to go for for the detectives.

With the help of the search warrant the detectives managed to recover not only the laptop but items like a legally banned, unregistered assault rifle; a pair of loaded rifle magazines; a .32-caliber revolver with a scratched-off serial number; and six stolen iPhones. 2 of the iPhones have been confirmed as stolen.

Jackson was arrested at his home and later released after posting $50,000 bail. He is scheduled to appear again in court March 12.

Sheriff’s Detective David Gaisford comments

“The use of tracking software for one crime, led to the solving of multiple crimes,” said.

“My partner and I have recovered several laptops over the last year alone through laptop tracking. They often lead us to property stolen in other crimes.’”

Some do’s and don’ts for laptop users

Do’s
• Choose a password which is hard to decipher.
• Create a different password for every website that you use.
• Use anti-virus software on your laptop.
• During the coffee break, lock your keyboard or log off.
Don’ts
• Use an easy password like your birth date, car or phone number.
• Do not give your password to anyone however close to you.
• Open attachments or emails that look dicey or are from an unknown source.

Cyber-security with Alertsec

Alertsec Xpress is a very easy and convenient service which enables securing valuable information on laptops.

Alertsec Xpress is powered by Check Point, the market leader in the field of mobile data protection. The software was launched 16 years ago and is the most robust software on the market today.

Alertsec Xpress provides:

Fully managed service for your convenience.
Very cost effective service.
Market leading laptop protection service.
Quick and easy implementation.
Easy to use protection.
Transparent solution.
Global 24/7 helpdesk.

100% secure and reliable encryption.

No comments »

Posted in Identity and Information loss, identity theft, laptop encryption, laptop theft

Tags: AlertSec Xpress Altadena California Check Point Computer security Computer surveillance data security Detective disk encryption Encryption Hardware IPhone laptop LoJack Los Angeles County Sheriff's Department Notebooks and Laptops Possession of stolen goods Theft

Hacked!-YouPorn passwords get compromised and personal data gets exposed

February 24th, 2012

█▄█ youporn access for blocked arcor.de custom...

█YouPorn site hacked. User details compromised

You are treading into a dangerous world when you surf a porn site. You use anonymous names thinking no one will discover you and that your identity will remain discreet. Perhaps so far you have been successful keeping the secret. But not anymore if you have been a member of YouPorn! The site was recently hacked and passwords were compromised.

The news in detail

Apparently a third-party service’s security was hacked into at the YouPorn site. Personal information of adults who had logged into YouPorn’s chat site was compromised. Toms of email addresses and password combinations were making the rounds of the Internet world. Some of the email ids were bogus or inactive.

As of now the chat site has been disabled and will stay offline till a complete investigation report is submitted. The site is run by an outside company on separate servers and that there was no breach at YouPorn, the master site.

Statement by Kate Miller, Luxembourg-based Manwin Holding SARL’s spokeswoman

“YouPorn continues to ensure that all appropriate measures and tools are in place to maintain the security of its infrastructure, and to safeguard the privacy of its users,” she said in a statement. Miller further stated that it was not known who ran the chat service, called YP Chat. The site was offline Wednesday, but a cached version called it an “affiliate partner program site licensed by YouPorn”.

Embarrassing for spouses

“You can imagine how employers and marital partners may be less than impressed to find you are registered for a website like YouPorn. And their discovery of your porn penchant is only a search and a click away,” said Graham Cluley of Sophos.

Getting personal information stolen from a Pron site is double trouble for people as they want to keep their presence on such sites discreet.

The hacker posted 6,433 usernames and emails on Pastebin, a popular dumping ground for cyber attackers. Thankfully no credit card information was taken and some of the user data seemed to be duplicated

This data breach follows the just hit major porn site brazzers.com where 3, 50,000 logins were stolen.

About YouPorn

YouPorn is an adult video-sharing and is among the 100 most popular websites in the world.

Plan cyber-security with Alertsec

Alertsec has created a web based encryption service that radically simplifies deployment and management of PC encryption by using industry leading Check Point Full Disk Encryption (former Pointsec) software. There are no short cuts to Data security in any organization. This news stresses the need for data protection applications. In an incident which highlights the need of Data encryption software and recovery software, the threat could have simply been reduced to an insurance matter by a mere investment of $13/month. The information would have been secure with no loss what so ever. That is certainly a small price to pay compared to what can happen if you lose confidential or sensitive data. Alertsec Xpress offers a very good and easy-to-use laptop security service that includes more than the traditional software licensing model.

No comments »

Posted in Computer security, Data Protection, computer security software, data breach, data encryption

Tags: Alexa Internet Brazzers Email address Graham Cluley Internet pornography Kate Miller Luxembourg Online chat Password Pastebin Plain text security Sophos YouPorn

Goldman Sachs programmer Sergey Aleynikov’s data theft conviction overturned

February 21st, 2012

Goldman Sachs programmer Sergey Aleynikov’s data theft conviction overturned

Today’s new story is a classic case of data theft wherein an employee on his last working day stole code and transferred it to his new employer! Does it not sound like the last story we covered about SunPower Vs SolarCity? What is it with employees who think they can get away by stealing data from their employer’s office? Are they trying to get even in some way?

Well, let us see what made the judges overturn Sergey Aleynikov’s data theft conviction!

It all started in June 2009

On his last day at work, Aleynikov stole trade secrets from his employer, Goldman Sachs. Apparently he sent hundreds of thousands of lines of source code for Goldman’s high frequency trading system to a server in Germany, in order to build a HFT system for his new employer, Teza Technologies. Aleynikov also sent copies of these files to his home computer. He was found guilty of data theft and was sentenced to eight years in prison. He was lucky enough to be released last week after a panel of judges at the U.S. Court of Appeals reversed his conviction. Why was the conviction overturned is a question yet to be answered by the court.

The case is U.S. v. Aleynikov, 2nd U.S. Circuit Court of Appeals, No. 11-1126. The lower court case was U.S. v. Aleynikov, U.S. District Court, Southern District of New York, No. 10-00096.

Kevin Marino, Aleynikov’s lawyer’s argument

According to Kevin Marino the only code taken by his client was open source was orginally written by him. Marino further added that Aleynikov only intended to use the code as a ‘cheat sheet’. “There is no trade secret,” Marino said in court. “He took it to make his new job easier; he never intended to harm Goldman.”

Sergey Aleynikov’s comes out of prison

“Justice occasionally works,” was what the Russian-born programmer, Sergey Aleynikov, had to say.

According to him he “just jumped all over the place” at 6 a.m when he read an email from his lawyer informing him that the 2nd U.S. Circuit Court of Appeals in Manhattan had reversed his conviction. The words were, he said, “‘we won!’”

“This is such big news to me that I don’t have time to think about what will happen tomorrow,” said Aleynikov, dressed in a gray sweat suit and white sneakers. “Today, it’s a victory.”

What this news means for the intellectual property world?

The court’s reversal of Aleynikov’s conviction is a major setback for organizations who are fighting to curb intellectual property crime that includes computer code.

“The government wanted to send a very strong message about online economic espionage,” said Joel Reidenberg, a professor at Fordham University School of Law and director of the Fordham Center on Law and Information Policy.

“This is a fast-growing crime, not just from theft of trade secrets but also the hacking into computer systems of American companies,” he said. “It poses increasingly significant risks to the U.S. economy.”

Protect yourself with Alertsec

Organisations are now made aware about their data security and are implementing data encryption techniques. Alertsec uses encryption software to protect data from breaches and theft.

Alertsec Xpress is backed up by Check Point Full Disk Encryption and is used by over 4 million users worldwide, with single deployments exceeding 150,000 laptops and PCs. This is the most deployed software of its kind and is seen as today’s market leader.