Last week, I received this in an email from Google:
In order to continue to improve our products and deliver more sophisticated features and performance… we will be phasing out support for Microsoft Internet Explorer 6.0 as well as other older browsers that are not supported by their own manufacturers.
It’s about time, and not just for those reasons. (more…)
Earlier this month the American Bankers Association (ABA) has issued practical, simple advice which could dramatically enhance everyone’s online banking security. And, I predict, it won’t make any difference because people are unlikely to do it. (more…)
Friends and listeners to the Fresh Ubuntu Podcast will know that I frequently raise concerns about Google and the information that it acquires about all of us. My concerns normally are along the lines of “just imagine what Google can do with all of that information.” However, I’ve never brought up what could be an even bigger concern: “What if someone else were to get a hold of all of that information?” (more…)
Twitter recently published a list of 369 banned passwords which it will no longer accept on Twitter accounts. Regardless of whether or not you use Twitter, it is worth a minute or two to skim this list and see if you are using one of these passwords, on any system, or something similar, which could lead to an account compromise. (more…)
I just read I’m on Facebook–Now What???: How to Get Personal, Business, and Professional Value from Facebook
While Internet Explorer 6 on Windows XP will be supported until July 2010, the writing on the wall is fairly clear, and Microsoft is encouraging users to upgrade to IE 7 or IE 8. Additionally, we have been recommending alternative browsers for years. (more…)
After a long period of apparent stagnation, Mozilla Messaging, a wholly owned subsidiary of the Mozilla Foundation, has released the long-awaited Thunderbird 3 – its free, open-source email client. Thunderbird has been my favorite email client for several years now, as it does everything that Outlook Express or Windows Mail does (as far as I am concerned) and has a better track record for security, runs faster, and works on Windows, Mac OS X, and Linux. (more…)
Yesterday, Google announced its latest service: Google Public DNS. This service appears to be similar to the also-free OpenDNS. (more…)
I do not watch television, but a friend of mine pointed me to this week’s episode of CBS’ news documentary program 60 Minutes. This is a very good, low-tech illustration of the potential security threats which information security professionals are battling. This is the kind of stuff we are trying to prevent when we throw around terms like “malware,” “firewalls,” “intrusion prevention,” “audits,” and “security policy.”
While the show focuses on threats to the federal government and utilities, the same exact threats and methods of attack face every small business network on the Internet as well.
In a previous post, I wrote how small businesses are being scammed by European cyber-hackers. In a related story, Computerworld reports how Pacto Construction Co. in Portland, ME is suing Ocean Bank of Delaware because the company lost hundreds of thousands of dollars due to allegedly weak security on the part of Ocean’s online banking system.
The main alleged weakness is the lack of two-factor authentication by Ocean Bank. While I am not sure that this places all of the blame in Ocean’s hands, and I think that Patco should be at least partially responsible for their losses if it is found that their own systems were compromised, a victory by the plaintiff in this case could set an interesting precedent to financial institutions who have not implemented strong authentication mechanisms in their online services. Banks and credit unions – take note! However, a victory by the defendant will likely send a very different signal, more to the tune of “If you bank online, you take your chances.” Small businesses and individuals – take note!
This week’s Data Security Podcast also has an excellent interview with the attorney who filed the suit on behalf of Patco.