The IT Security Attaché

The current state of our economic and global interconnectivity infrastructure relies heavily and in some cases solely on the adoption, use and services of technology today and for tomorrow. More and more we’re seeing the integration and use of technology in the home, school, places of learning and other institutions that confirms that our decency on these things are far from going away or over. Yet, unchecked, we’re still in a money making and financial gains mode when it comes to providing the education, awareness, knowledge of the convergence of technology and the World Wide Web for us as a people.

The ridiculous notion of our infrastructure being secured by over government or independent entities that limit partnerships and associations to only high levels, is a sure sign of the failure of the systems of security for tomorrow. Until and unless we unite in this fight against these issues and the growing trends by which they are being introduced, we will always be vulnerable by our weakest, untrained and not knowledgeable links (citizens, business, educators, advisors, technologists), . We are vulnerable through the process of omission, omitting those we think are not a critical part of the infrastructure or the need to help in securing it. The high costs of securing our infrastructure does not include user education and general awareness as a proactive move. It is only when something happens and the issues/problems are of a great magnitude/impact that we see the levels of attention and focus being put to it, then comes the irritating comments of if we had known or if we had acted sooner.

What will it take for us to give the needed attention and focus to these issues before they become problems?
When and where will we see the integration and coordination of all levels of society getting involved in this initiative?
Who can speak on all levels for all levels?

These are different times, different types of warfare, different types of attacks with more sophistication, more widespread impact and yet, still, we’re limiting the resources needed to endorse, support and finance these educational and awareness needs. We are falling behind in the fight to keep up with the demand of technology products and solutions because the hardware vendors mission to bring us the latest and greatest products with more feature rich functions, speed, storage and settings. This is one fight that by its very simplicity, involves our youths/children and those of early learning without even going outside their boundaries. The threats are looking for us, looking for vulnerabilities in our systems, looking for our private and personal information, looking for anything it can on and about us and our businesses, where we work and how we live.

Will you leave yourself vulnerable because you didn’t take the time to learn more about them or practice safe computing?
How do we address this on a global scale where the minds and concerns of our youths are addressed in regards to technology, privacy and securing them?
Who educates the educators and provides them with the needed resources to speak to the technology advancements being seen and felt in our society today within the classrooms?

Our youths are educating the educators, the parents and the more senior members of our society. While the adults and seniors are busy living their day to day lives, the youths have all this extra time on their hands to play with that makes that the perfect educational resource for tomorrow. Educating them about the internet and how technology integrates and affects our daily lives today and tomorrow will help them to be better netizens. There are too many unknowns into what is the most sophisticated and interconnected network every built and running.

We are too controlling over our youths without the right focus on these things. It is not about taking away the access or resources of the internet, it is about educating them more on its values, proper use and how to manage their online presence and identity. Social Networks, Social Media, personal and professional messaging ethic, etiquette, general internet usage and the Threats Landscape are all critical topics that should be integrated into our school systems curriculum today to allow these kinds of thoughts from an early age and stage of development. More funding and resources should be put into programs, groups, organizations that focus on these critical resources training for tomorrow. Our lower school educational systems are lacking the integration of technology, privacy, internet usage and protection training that suits our youths today. Youths are exposed and have access to these internet resources at home without proper education and awareness as to how to use and manage them until something happens and a life is taken  or at stake and further investigation reveals that he/she had a secret life online that was very troubled and now this.

This is where our educational institutions should be filling in the gap and providing the additional focus and attention on these things. Engaging local subject matter experts, vendors, developers and other technology leaders to come in and give real world experience and open discussion is a critical need for our youths. Let us engage the youths in open dialog on and about technology, IT Security, privacy and other concerns they may have. Let us open up those channels of communications so they can be better served and ready for the superhighway ride ahead.

Let us not waste time in helping to foster the needed understanding, education and awareness needed for our youths as they have and are actively engaged in using them every day. What better way to put this knowledge craving to use than by helping them along the way.

IT Security is a people problem, not an industry one. We are all at risk.

Thank you and have a great day,
 
~Brett A. Scudder~

ENGAGED, ENabling Greater Awareness, Growth and Educational Development, an initiative that takes our education, awareness, training and development programs to a whole new level and aggregates them under one brand name. Through ENGAGED, we work with businesses, schools, libraries, government institutions, non-profits, churches and other institutions to deliver the needed resources for addressing the IT Security Threats Landscape of today for tomorrow.

The initiative provides special benefits, training, networking, collaboration, incentives and complimentary consulting and guidance from the professionals who are servicing, supporting, creating, developing technical and systematic products and solutions for those in need of furthering their knowledge and education of and about how the IT Security Threats Landscape affects them. These come in the form of events, hands-on workshops, online presentations, one-on-one meetings, special giveaways/promotions and our social network with it vast resources and feature rich architecture.

We are constantly engaging in new ways of making this needed training, education and awareness initiative more resourceful, effective and successful and is always here to help and listen to the needs of the people.

If you’re in need of these services or resources then engage us to fulfill them for you.

Thank you and have a great day,

~Brett A. Scudder~

The Conficker Worm – my review

There have been many articles, reviews, information and posting about the Conf*ker as many people have started calling it. Depending on who you talk with you can replace the * with anything that suits your feelings towards it. The most interesting thing about this threat isn’t the fact that it’s neither a new one nor a new attack form, it’s the same old attackers doing the nefarious things they do but with a bit more sophistication. For me as an IT guy looking at all this, i’m getting the wow factor from some of the new developments and traits of the threat. So my take today will not be to overwhelm you with all the techno jargon and high level breakdown of the threat but just to speak on it in the most basic form so that even those who are non technical can grasp the severity of it.

So here goes.

If you get infected with the Conficker worm you’re screwed. Bottom line.

If this is a system that is on a business network it must be removed, quarantined, disinfected by any means necessary. Take no chances with this threat.

Get my drift?

Is this basic enough to understand?

Ok, let’s take it from another angle.

This worm is a blended (virus, worm, rootkit, botnet, adware, malware and the what else factor) threat in a blended threat with blended characteristics. It’s like catching a cold and getting a headache, ear ache, stomach ache, backache and chest pains all in one. It starts with a simple cold but quickly spreads to other critical areas of the body causing serious effects and harm. This threat is in a class by itself as it deploys various additional agents around the system that causes complete successful removal to be unclear.

If you have been infected with the worm you’re only real option is to completely wipe the system. Unplug, power down, power drain, complete power loss to all storage capacities of the system. This is a very serious threat.

As for those who have been asking about which anti-virus solution is best to protect against this, there isn’t one. Anti-Virus alone is not going to protect you from this threat and the blended effects. It will take a number of things to make this happen and here’s my list.

1.      System must be fully patched from all angles, the operating system, the applications, services, devices and drivers. When patching the Microsoft Windows operating system many people have auto update enabled but in different settings. Some have alert me of new updates but never apply the new updates. Some have it set to download and wait for my approval and they never approve the installation of the updates. Some have it set to download and install all updates. This is a good option to have. When patching the OS one must be prudent so as not to only apply critical patches but all software, severe and high updates as well. So I recommend if you’re doing the built in auto update please use the download and apply all. If doing it manually do a custom update which will reveal all the patches and updates needed.

2.      Anti-Virus alone will not protect you from this worm and most of the new threats in the IT Security Threats Landscape today and tomorrow. The need for an anti-malware solution is critical to combine the protective layers of web/content filtering, IDS/IPS, anomaly/heuristics based detection, network and proactive threat protections. This is a backup to the patching already performed on the system. A fully patched system can still be compromised if a targeted malicious code is allowed to reach it.

3.      Common sense if the name of the game and the winner of all security practices. Adding to the patching of the system and having the needed security solution comes the best practice of all, the user’s common sense in using the system effectively. As the person using the system one needs to pay very close attention to details in their messaging, web browsing and IM practices. Opening emails from known and unknown sources requires due diligence in thinking about the nature of the message, the contents and what is its relevance to you. A message from a known source may not have been sent by them but could have been the result of an infection on their system(s). This is the same for email and IMs. There are many IM worms that will hijack your IM client and send out messages to everyone in your contact list pointing them to a website for them to get a drive-by-download. Many people think very little of web based attacks while they are the fastest growing today because of the ease of infection and the delivery of the payload.

4.      User education and awareness. This is a very critical issue as many seem to think that these issues are a corporate or industry problem. When a threat like Conficker goes into the wild it is not targeting specific systems in specific industries only, it is doing a general attack across all systems within its path. IT Security is a people problem and we are all in its path whether we like it or not and no matter what OS vendor platform you’re on/running.

5.      Enable your built in firewall or get a third party one to put up some form of perimeter defenses.

6.      There are security suite solutions that bundles multiple security technologies and features in one suite. That may be a more viable option for you because of the integration and management options.

The fact of the matter is, we have these issues at the level they should have been years ago, in the media and across all industries as a people problem, not an industry one. I take the same approach to Conficker as I do to rogue Anti-Virus 2008/9 threat, if detected, wipe, clean, rebuild, reimage.

This isn’t something to play around with what is or if it is cleaned. The only way to be sure is to wipe it all out.

Thank you and have a great day,

~Brett A. Scudder~

The IT Security Attaché

TITSSN has always been a network of, for and about the community and we have always tried to find ways of working within it to make it the most valuable and successful experience ever for our members. In working with our communities in and outside of IT, we have found similar issues that reflected upon the need for creating a more resourceful and aggregated system that would put people, processes and things together, making it a more seamless integration for all. Our education and awareness training and development initiatives built on these findings so that we would address the issues on a more personal level as a team. The extensive experience and qualifications of the network members in their areas of business provides invaluable impact on what we see, hear, say and how we react to them.

It is for this reason that we are enacting a new initiative to aggregate all these issues, programs and initiatives under one umbrella that I believe will fix these problems, ENGAGED. ENGAGED, ENabling Greater Awareness, Growth and Educational Development, is an initiative that will take our education, awareness, training and development initiatives to a whole new level. Through ENGAGED we’re working with businesses, schools, libraries, churches and other institutions to deliver the needed resources for addressing the IT Security Threats Landscape of today for tomorrow.

As a network of technical professionals, consultants, specialists, VARs and business executives, the ENGAGED initiative will add the much needed collaboration between the organization members. One such enhancement will be a bi-weekly Live Meetings via Microsoft’s Live Meeting service to help with the adoption, training and development of its members on new and existing products and solutions in the security space. This will add the needed value of increased training on specialized products and services provided by the network. Our integration of working with the vendors directly will allow the additional benefit of having their high level technical people in the session to help with the understanding of the products and any problems and support we may need. TITSSN believes that it is through the proper training, understanding and knowledge of these products that we will be successful in supporting, deploying and managing them, and so we’re adding more value through the use of live meetings.

On Monday April 20^th, TITSSN will enhance the ENGAGED initiative by starting an IT Security Training and Development course for the youths in our local schools through their local office in Arverne NY. This course will be geared towards working with the youths of today who are growing up to be our professionals of tomorrow to give them a better look and feel of the space and what to expect from it. We are working with the local schools in the community to select a number of students who will participate in this course and get the needed exposure to today’s IT Security Threats Landscape ~ITSTL~ and how they can be valuable resources in making it better for tomorrow. This training course will not be the end all, be all for them as we plan on helping them throughout their professional development as mentors in the space. The initiative does not want them learning and forgetting and so future involvement on different levels will follow after the course is completed. Certifications will be awarded to each student that completes the course and passes a final hands-on test.

The training and development course will introduce them to the world of IT Security and all the factors that are in and around it. They will have hands-on access to the latest and greatest security hardware and software products ranging from Biometrics, IDS/IPS, UTM “Unified Threat Management” devices, anti-virus, anti-malware, firewalls and general IT products that are available today across the various operating system environments. This is an extension of our Secure Minds Initiative where we are trying to get the integration of IT Security into the school’s curriculum to enhance the preparedness of this needed area of specialty for the future. We need the realization of IT Security as a people problem to be one that resonates across all borders and cultures. We are on the brink of a global network catastrophe if this realization is not understood.

Through ENGAGED, we have negotiated special vendor pricing and offers to help get the needed security products and solutions out to the general public. As this have been a major issue for many, we are always working on ways in which to bring the networks power to use in negotiating special programs, offerings and incentives from the vendors for our initiatives. A part of our Secure Minds Initiative is to provide security products and solutions to the schools and this will help to make that more readily available through special programs we are hosting there. We are reaching out to our local government resources to funds this initiative through grants and other financial resources in an effort to minimize the costs and offer the products freely when and where we can.

To the business community, ENGAGED provides the needed sales, support and training and development to better prepare you, your company and employees to deal with the issues of the IT Security Threats Landscape. Leveraging our network and resources will be beneficial for you as we provide in-house training and development workshops to further build on this. As your local technology/security professionals, you can reach out to the network to find a resource in your area that can and will work with you. We have customized solutions that will work for you and your company no matter the size or location, if we’re needed, we’ll make it there.

With so many resources now being forced online even from the government levels, using the internet and its resource is now a mandatory issues as local offices and resources are being cut as this new online presence becomes more useful. That being said, the use of the internet and its resources has increased significantly over the past year as social networking and other social media have played a key role in this new age of collaboration and networking. The future belongs to networkers and if you’re not a part of the new trend one tends to feel left out when asked if they are on a popular network like Facebook, Twitter or LinkedIn.

The present economic crisis adds a dire need for this engagement as more people are using the internet resources for job hunting and finding new homes to live. This is just the start of a change that will never go back to what it used to be, the internet is here to stay and is more than what it used to be 2 years ago.

TITSSN activates the ENGAGED initiative on April 1^st 2009 with a series of kick off events for the month. On April 9^th at TITSSN’s monthly meeting at the Microsoft Briefing Center in NYC, president/chairman/security attaché Mr. Brett A. Scudder will officially present the initiative to the organization and outlining a few additional aspects of it and how it will be executed. He will also cover the members ENGAGED aspects as well. Registration is open and available here http://www.clicktoattend.com/?id=137146.

On Monday April 13^th from 3-5pm, TITSSN will host a local reception at our office at 331 Beach 70^th St, Arverne, NY, 11692 to highlight some of the technologies that will be a part of the initiative. This is a RSVP/registration event. Interested persons are asked to register here http://www.clicktoattend.com/?id=137140.

The first ENGAGED members Live Meeting session will be on Wednesday April 22^nd from 7-9pm and the info will be sent to active members.

As food and refreshments will be provided at our local meetings and events and we need to ensure that we have enough to cover our guests so registration for these events is a must.

Thank you very much and have a great day.

TITSSN ~The IT Security Suite Network~

We are Security – your Security – our Security – IT Security. Our Security is Safe and Secure.