OpenVAS – An Open Source Network Vulnerability Scanner

OpenVASI was surfing and checking on security issues, and ran across this. It looks very cool! It can scan from a virtual appliance and check your network for security vulnerabilities. Very neat! Here’s what they say about features:

Open Vulnerability Assessment System (OpenVAS)

“The Open Vulnerability Assessment System (OpenVAS) is a framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution.

The actual security scanner is accompanied with a daily updated feed of Network Vulnerability Tests (NVTs), over 30,000 in total (as of April 2013).

All OpenVAS products are Free Software. Most components are licensed under the GNU General Public License (GNU GPL).”

Google Affiliate Network Shutting Down!

An update on Google Affiliate Network (from the Google Blog)

Our goal with Google Affiliate Network has been to help advertisers and publishers improve their performance across the affiliate ecosystem. Cost-per-action (CPA) marketing has rapidly evolved in the last few years, and we’ve invested significantly in CPA tools like Product Listing Ads, remarketing and Conversion Optimizer. We’re constantly evaluating our products to ensure that we’re focused on the services that will have the biggest impact for our advertisers and publishers.

To that end, we’ve made the difficult decision to retire Google Affiliate Network and focus on other products that are driving great results for clients.

We’ll continue to support our customers as we wind down the product over the next few months. And there are other products that can help you achieve your goals. Affiliate publishers can continue to earn AdSense revenue through the AdSense network. And marketers can take advantage of other CPA-oriented Google tools like Product Listing Ads, remarketing and Conversion Optimizer to drive valuable online sales and conversions. These areas are growing rapidly and we’re continuing to invest heavily in them.

Thanks for your support of our affiliate product, and we look forward to helping you grow your business in the future.

Posted by: J.J. Hirschle, Head of Google Affiliate Network

Geek Software of the Week: WinCDEmu!

WinCDEmuThis one is something I REALLY needed recently, and it is not as “obtrusive” as some I have used. It is simple, stays “in the background” and is well done. It just plain works!

WinCDEmu – An Open Source CD/DVD/BD emulator

WinCDEmu is an open-source CD/DVD/BD emulator – a tool that allows you to mount optical disc mages by simply clicking on them in Windows Explorer. If you have downloaded an ISO image and want to use it without burning it to a blank disc, WinCDEmu is the easiest way to do it.

Features:
One-click mounting of ISO, CUE, NRG, MDS/MDF, CCD, IMG images.

Supports unlimited amount of virtual drives.

  • Runs on 32-bit and 64-bit Windows versions from XP to Windows 7.
  • Allows creating ISO images through a context menu in Explorer.
  • Small installer size – less than 1MB!
  • Does not require rebooting after installation.
  • A special portable version is available.
  • Translated to more than 20 languages.
  • Does not occupy drive letters when not used.
  • Supports data, DVD-video and BD-video images.
  • WinCDEmu is free for any kind of use – it is licensed under LGPL

WordPress Blogs Under a Major Attack!

Check your usernames and passwords and harden them if you have a WordPress blog. You have been warned!

WordPress under Heavy Attack

“Attackers are aiming at blogs running poorly-secured WordPress configurations in an attempt to create a powerful botnet that, according to independent security researcher Brian Krebs, already counts some 90,000 IPs.

The attack appears to use ‘brute force’ password–guessing, as revealed by security and networking companies in separate investigations and incident forensics.

It appears campaigners focus on websites running the popular WordPress content management system. They meticulously scan the Internet for WordPress and try to get into the admin panel via repeated login attempts, trying the 1,000 most common username and password combinations on a custom list, according to website security company Incapsula.

All vulnerable sites are planted a backdoor to allow attackers to access these sites from afar. In the meantime, the compromised sites are incorporated into the attack botnet to go after other websites running WordPress.

‘It’s hurting the service providers the most, not just with incoming traffic,’ Marc Gaffan of Incapsula told KrebsOnSecurity. ‘But as soon as those servers get hacked, they are now bombarding other servers with attack traffic. We’re talking about Web servers, not home PCs. PCs maybe connected to the Internet with a 10 megabit or 20 megabit line, but the best hosting providers have essentially unlimited Internet bandwidth. We think they’re building an army of zombies, big servers to bombard other targets for a bigger cause down the road.’

‘These larger machines can cause much more damage in DDoS attacks because the servers have large network connections and are capable of generating significant amounts of traffic,’ wrote CloudFlare CEO Matthew Prince in a blog post expressing concerns of a possible link between this outbreak and the 2012 Brobot botnet attacks against some American banks.

All readers with WordPress blogs need to enforce the security of their servers immediately: keep just the admin users that you trust. Change old passwords with secure log-in credentials for all admin accounts. Make sure the WordPress version you run is safe, and update the secret WordPress key.”

Microsoft Suggests Backing Out of a Security Patch from Patch Tuesday

Man! Microsoft is having problems evening getting their “fixes” right!

Microsoft pulls Patch Tuesday security fix

“Tech giant Microsoft has recommended that an update released in the latest Patch Tuesday be removed, after users reported incidents of the ‘blue screen of death’ after installation.

Microsoft released two critical security updates and others rated as ‘important’ for Windows and Internet Explorer as part of its latest round of Patch Tuesday updates.

However, a number of Windows 7 users have reported issues with security update 2823324, which is part of security bulletin MS13-036.

MS13-036 was meant to fix three privately disclosed flaws and one publicly disclosed flaw in an NTFS kernel-mode driver related to the elevation of privileges when a user is logged in. However, once installed, security update 2823324 — part of the bulletin — may produce a ‘STOP: c000021a {Fatal System Error}’ problem for users. The error occurs early in the startup process, and no Memory.dmp file is created.

As a result, Microsoft has temporarily pulled the patch from its security bulletin while the issue is being investigated.”

Dr. Bill.TV #286 – Video – “The Bing Brings You Malware Edition”

TPN covered the National Association of Broadcasters expo LIVE! April’s Patch Tuesday important for YOU! Roku milestone of 5 million sold, our Roku channel reaches 5000 homes! Bing delivers five times as many Malware sites as Google, GSotW:Untangle Lite!

Links that pertain to this Netcast:

TechPodcasts Network

Blubrry Network

Untangle Lite – Open Source Network Protection!


Start the Video Netcast in the Blubrry Video Player above by
clicking on the “Play” Button in the center of the screen.

(Click on the buttons below to Stream the Netcast in your “format of choice”)
Streaming M4V Audio





Streaming MP3 Audio

Streaming Ogg Audio

Download M4V Download WebM Download MP3 Download Ogg
(Right-Click on any link above, and select “Save As…” to save the Netcast on your PC.)

Available on YouTube at: https://youtu.be/PJ3–DOVkjc

Available on Vimeo at: https://vimeo.com/64001520


Dr. Bill.TV #286 – Audio – “The Bing Brings You Malware Edition”

TPN covered the National Association of Broadcasters expo LIVE! April’s Patch Tuesday important for YOU! Roku milestone of 5 million sold, our Roku channel reaches 5000 homes! Bing delivers five times as many Malware sites as Google, GSotW:Untangle Lite!

Links that pertain to this Netcast:

TechPodcasts Network

Blubrry Network

Untangle Lite – Open Source Network Protection!


Start the Video Netcast in the Blubrry Video Player above by
clicking on the “Play” Button in the center of the screen.

(Click on the buttons below to Stream the Netcast in your “format of choice”)
Streaming M4V Audio





Streaming MP3 Audio

Streaming Ogg Audio

Download M4V Download WebM Download MP3 Download Ogg
(Right-Click on any link above, and select “Save As…” to save the Netcast on your PC.)

Available on YouTube at: https://youtu.be/PJ3–DOVkjc

Available on Vimeo at: https://vimeo.com/64001520


Geek Software of the Week: Untangle Lite!

Untangle LiteThis is a very cool, and powerful, network protection system. Check out the great features!

Untangle Lite – Open Source Network Protection!

The Lite Package bundles together all of Untangle’s open source software. We’ve tried to simplify and consolidate all of the functions that IT admins need to keep their networks healthy. The Lite Package:

  • Is Open Source (and Free) under the GPL v2
  • Runs on standard Intel/AMD hardware
  • Includes a common GUI with integrated logging and reporting
  • Apps are pre-configured for the needs of small business and guaranteed to work together seamlessly

Web Filter

  • Categories update automatically
  • Add your own URLs and file types to block, log, or pass
  • No proxy settings required
  • Local database ensures fast web browsing
  • Reporting and event logs help monitor web browsing behavior
  • Set time and user-based policies (e.g. allow shopping during lunch and outside business hours)
  • Pass, Block, and Logging options for all categories, such as porn, gambling and social networking sites like Facebook

Application Control Lite

  • Application Control Lite lets you select the protocol signatures to log or block
  • Custom rules can be added for any unsupported protocols
  • Time-based policies let you decide when and if these applications are permitted
  • Reporting lets you see which protocols are active on your network and who is using them

    Virus Blocker Lite

  • Protection on the most common email protocols: SMTP, IMAP, and POP
  • Unlike desktop solutions, Untangle sits at the network gateway so there is only one application to keep up-to-date, which Untangle does automatically
  • Protection for webmail and file transfer via HTTP and FTP protocols, an increasingly common route for infection
  • Reports and event logs show you what viruses are being blocked on the network

And, much more!

Such as: Spyware Blocker, Phish Blocker, Intrusion Prevention, Attack Blocker, Firewall, OpenVPN, Reports, Spam Blocker Lite, Captive Portal, Ad Blocker!

1 172 173 174 175 176 394