The IT Security Attaché

Good day to you,

Our ENGAGED promotion for October kicks off on the 15^th with many goodies and value for our members. You must be an active member of the network to benefit from the program and so start getting involved and building up your points. Points are critical to getting some of the special gifts and giveaways.

We’re working on the network and adding the giveaways into the gifts section so you can see what will be available until they are ready.

We’re very excited about this so please join us http://titssn.org/signup.php

Thank you and have a great day,

~Brett A. Scudder~

Greetings,

I am working on my monthly online webcast for April about the Web 2.0 infrastructure in preparation for the upcoming v.3.0. The drastic growth of the Web 2.0 infrastructure caught many people off guard as they jumped into it not knowing what was involved and the issues associated with it. It also created many new threat vectors many of which are still not under control today as the increase of threats/attacks specifically targeting this infrastructure is growing as rapidly as the number of people using it.

The recent Conficker issues have delayed my presentation for this month as I had to be helping out in various organizations to deal with it and so I will be doing it on the 27^th.

This presentation will address the present state of the Web 2.0 infrastructure, features, privacy (yes or no), pros, cons and the security concerns associated with it. It will also provide guidance on how to stay private and secure while maximizing the full potentials of the features and capabilities of it. More importantly, I will address the upcoming Web 3.0 realm and why resistance is futile and how can and will you be secured within its realm. Lots of good stuff so please mark this on your calendars and the meeting info will be posted soon.

My May session will be on the Breach Notification Laws and I will have a legal expert joining as a co-host to address this in more legal terms. More details will be provided soon.

This is just one of the ways in which TITSSN and the IT Security Attaché are trying to enhance the education and awareness of these technology/security issues to the general public. All are invited to join.

Thank you very much and have a great day. We apprecilove your business and support and look forward to serving you more.

~Brett A. Scudder~

The IT Security Attaché | http://theitsecurityattache.com  | Blogs http://theitsecurityattache.com/blogs

President/CEO/Chairman/Founder/Security Architect

~TITSSN ~The IT Security Suite Network~ | http://titssn.net | TITSSN’s Blogs http://titssn.net/blogs

Good day to you,

I’m off to our monthly group meeting at Microsoft with guest vendor Fortinet. I will also be officially launching the ENGAGED and SecurMentor initiatives tonight. Very exciting. More details to come.

http://titssn.net/nyitsa-ug-april-9th-09-meeting.htm

I will be at Microsoft from 6-9pm and will check on things when I get back.

~Brett A. Scudder~

The IT Security Attaché

Hey guys,

So we (Brett, Security Attaché and TITSSN) are off to I-CON for a full weekend of activities, panel discussions, workshops and presentations and we are very excited about it. We will try to keep the blogs/tweets updated. One of the highlights for us is to meet Sam from Lord of the Rings as he’s one of our favorite characters and it is one of our most loved movies. Sean “Samwaise Gamgee” Astin is a special guest at the event this year. I can’t believe it was so long ago, LOTR sits in my head as if I just watched it. Wow, time does go by huh.

Sam from Lord of the Rings

There will be a showing of all three LOTR movies at the convention so you know we’re going to be all over that.

God I love the LOTR movies.

 So anyway, we will have limited access to email and voice but will respond if/when we can. If any readers of the blogs are at the event please reach out and say hi. We’d love to meet you too.

I just got an alert of a thunderstorm for the area so my travel time is now increased. Got to get going to get there in time for the Cyber-Crime panel discussion at the Marriot at 8:30pm.

Thank you and have a great day,

~The IT Security Attaché~

Over the past week I have had so many requests to talk about this worm and why it is so bad and what it really means that I almost convinced myself that it was a brand new threat. Most people are so caught up on it as if it is a new threat but it really isn’t. It’s just a new level of sophistication that warrants the time and attention from the security professionals and vendors to stop whatever possibilities it may bring come April 1^st and beyond and for the general public to be aware that these are real life issues here. As I say every day, IT Security is a people problem, not an industry one because the impact and effects are felt in every area of our society and daily lives.

When CBS’s 60 minutes ran the story on Sunday March 29^th at 7pm, it’s as if the world woke up to the realization that this is serious. The very same words and things I have been telling people didn’t resonate until they heard and saw it on 60 minutes. Wow, and you wonder why the state of our security is so weak and poor, people don’t know who to listen to nor trust in these matters. So now I am talking to the same people who I talked o a year ago about the importance of properly protecting themselves from these risks and why it is needed today.

One person call me and was saying, “hey Brett, did you watch 60 minutes and see that new worm they are talking about. Man that’s serious isn’t it?”

So now i’m sitting on the other end of the line going, huh, are you serious, this is the same thing I have been talking about for years and trying to get you to understand, this is just a named threat but a threat none the less with a more sophisticated architecture and attack vector. It’s amazing.

I had more people asking which anti-virus software can stop this threat than what is this threat really about. This is one of the issues I have with a scenario like this because people need to take the time to learn and understand more about the threat and how it proliferates so they can better help to prevent the infection or spread even if they have security installed and running on their systems. We need more educated people to help maintain a strong wall of protection against the spread of these threats/risk via the internet today and tomorrow. Learn, get the facts, understand the need and activate the common sense.

Guess what, you’ve been activated. You’re now more alert, more intrigued, more prone to fighting these issues because it is in your backyard and you MUST DEAL WITH IT. How you decide to handle yourself is another issue.

I hosted an IT Security Webcast on March 22^nd and 5 people who declined to attend the session via the event invite on Facebook ended up with some form of infection two days later.

When asked how they got it, I was told,

I’m not sure or I don’t know.

The reason for declining my invite was that they have anti-virus on their system to protect them so they are ok and good to go.

What can I say?

Many will fall under these kinds of issues because they think they are good to go and not needing to learn or know more about how to protect themselves online. While they rest assured that they are protected by their AV client they still practice bad browsing, file sharing, file cracking, key generation and illegal software downloads everyday which gives systems access to these hackers via backdoors.

The next time you decide to download a keygen, password generator, cracked file, music from unknown people/sites or browse a website from an IM someone may have sent you, think twice about what you’re doing to your system, yourself and those you share and converse with. Support the developers and buy the apps. Get the real code.

The next time you decide to click ok on that pop up window without reading what it says while browsing, think again and take a minute to read it.

The next time you decide to open that chain mail and click on the link, hey, hey, hey, watch out now. You may know and trust the sender but do you know if he/she really sent it?

When in doubt, reach out.

And so we wait for April 1^st to see what Conf*ker will do to those systems already under its control.

What are you doing about it?

The IT Security Attaché

TITSSN’s March online security webcast – Security is not an option, it’s a must. Five overlooked ways of securing your systems effectively.

Sunday March 22^nd at 7pm

TITSSN continues its monthly online security webcasts/presentation/forum and invites everyone to join us.

As technology continues to grow and the increase in new products and solutions become inundating, we’re seeing more avenues of risk associated with this growth across the board. On Sunday March 22^nd at 7pm we will be taking a look at five critical ways in which we sometimes overlook securing our systems and end up becoming compromised.

Whether this is a home or business system, security is not an option as you never know if or when this system may be used to cross the line. This webcast will give a detailed look at these five issues that have pervasively increased the risks of the threats landscape with little or no interaction from the end user(s). The threats are the same across the board so all are affected.

This will be a live meeting session that offers the needed interactivity (voice and video) for getting the message across effectively.

All are invited as we continue delivering our education and awareness initiatives on/about IT Security and it being a people problem, not an industry one.

—————————————————

When: Sunday, Mar 22, 2009 7:00 PM (EDT)

Duration: 1:00

TITSSN continues its monthly online security webcasts/presentation/forum and invites everyone to join us.

Brett Scudder has invited you to attend an online meeting using Microsoft Office Live Meeting.

https://www.livemeeting.com/cc/usergroups/join?id=7S86HQ&role=attend&pw=8%3Ehg%28ZR%2Fz

Meeting time: Mar 22, 2009 7:00 PM (EDT) 

Add to my Outlook Calendar:

https://www.livemeeting.com/cc/usergroups/meetingICS?id=7S86HQ&role=attend&pw=8%3Ehg%28ZR%2Fz&i=i.ics

——————————————————

Thank you very much and have a great day. We apprecilove your business and support and look forward to serving you more.

~Brett A. Scudder~

The IT Security Attaché | http://theitsecurityattache.com  | Blogs http://theitsecurityattache.com/blogs

President/CEO/Chairman/Founder/Security Architect

~TITSSN ~The IT Security Suite Network~ | http://titssn.net | TITSSN’s Blogs http://titssn.net/blogs

Brett.Scudder@titssn.net (877) 539-8614 / (718) 928-6516

We are Security – your Security – our Security – IT Security. Our Security is Safe and Secure.

A Managed Security Services/Value Added Resellers Provider (MSS/VAR-P)

My LinkedIn profile – http://www.linkedin.com/in/titssn | TITSSN’s IT Security Forum Board http://titssn.net/forum

Follow me on Twitter http://twitter.com/TITSSN