Security service provider, Symantec, now presents the security strategy and management of mobile services which includes three products. Entirely organized to assist the organization to secure and manage data stored in the software that increasingly crowded.

Third Symantec products include: Symantec Endpoint Protection Mobile Edition 6.0, Symantec Network Access Control 6.0 Mobile Edition, and Symantec Mobile Management 7.0.

Symantec's strategy is focused on the integration of security solutions and management of mobile services to help customers minimize downtime. While the next time the user actually increase productivity, improve response time and provide protection and management throughout the life cycle of mobile devices.

Sean Ryan (Reseacrh Analyst, Mobile Enterprise Software, IDC) said that currently the following mobile devices increase the number of users significantly. The amount is also accompanied by changing the target to a larger one. For illegal software, it may be dangerous, including the threat of worms, viruses, and spyware.

Security and management solutions are designed based Symantec Symantec Management Platform. This solution will undoubtedly memberika integrated management capabilities for enterprise-class desktops, laptops, servers, and mobile devices.
Continue Reading..

Introduction to Wireless LAN (WLAN)

Wireless LANs are often also called the Wireless Network or Wireless network. Wireless Local Area Network (WLAN) is a computer network that uses radio waves as transmission media. In this case means that the information / data is transferred from one computer to another using radio waves.

It all started from bermunculannya equipment based radio (walkie talkies, cordless phones, phone, etc. ..). From this came the idea to make computers as easy to carry something that can be used anywhere when needed. Things like this is what finally pushed the development for tecnology wireless computer networks.

HISTORY WLAN
1997. An independent agency called the IEEE to make specifications / standards of the first WLAN-coded 802.11. Appropriate equipment 802.11 standards work at a frequency of 2.4 GHz, and the data transfer speed (throughput) theoretical maximum of 2Mbps. But unfortunately, the equipment following the 802.11 specification is less acceptable in the market. Throughput of this magnitude are considered inadequate for multimedia applications and other heavy applications.
IEEE re-issued a new specification called 802.11b. Theoretical data transfer speed maximum that can be achieved is 11 Mbps. The speed of data transfer is comparable to traditional Ethernet (IEEE 802.3 10Mbps or 10Base-T). Tools that use the 802.11b standard works on the 2.4 Ghz frequency. But there are still flaws in wireless devices that work on this frequency is the possibility of interference with other devices that use radio waves at the same frequency.
At the almost same time, the IEEE 802.11a specification then made using different techniques. 5GHz frequencies used, supporting a theoretical data transfer speeds up to 54Mbps. However, the radio waves emitted by the 802.11a equipment is relatively difficult to penetrate barriers such as walls and so forth. Range of radio waves were relatively shorter than 802.11b. Technically, the 802.11b is not compatible with 802.11a. But it's been quite a lot of hardware manufacturers that make equipment that supports both these standards.
IEEE create a new specification that can combine the advantages 802.11b and 802.11a. This new specification coded 802.11g, works at a frequency of 2.4 GHz with a theoretical data transfer speeds up to 54Mbps. 802.11g equipment is compatible with 802.11b, so interchangeable.

Threats that may Happen
Every new technology is discovered, there is always a threat that arises. This is not inevitable. So also in the WLAN. Here are the threats that arise mungking.

Identity Theft
Use ADDRESS MAC (Media Access Control) to determine which machine is entitled to a connection from the wireless network had long since done. However, can not be denied, it is actually really does not provide meaningful protection in a computer network anywhere.
Intruders could commit identity theft with the Mac Address spoofing technique to double the SSID (Service Set Identifier) and the MAC Address of a network access PIN. Intruders can use the SSID and MAC from another computer to do things that harm tinadkan (such as bandwidth theft).
While yet a network has been equipped with data encryption or VPN (Virtual Private Network), the MAC address can still be traced and in-spoof. Information about the MAC address can be obtained from a program like Kismet. To commit identity theft, intruders will use spoofing program or change it via the Registry (Windows).

Man-in-the-Middle
Actually this is sebuatn for the intruder. Attack Man-in-the-Middle trick performed with a VPN connection between the official user's computer and access point by entering another computer in between as a provocation. This type of attack is similar to the type of attack on the cable network. The program used is the same, except wirelessnya device. By using a program, intruders can position yourself between the data communications traffic in wireless networks.
This attack is easy to do with the help of appropriate software, such as Wireless LANJack or AirJack. However, this type of attack is also relatively easily prevented with a reliable IDS is capable of monitoring 24 hours a day.

Denial of Service (DoS).
this is the most feared attack by the Admin. Denial of service is relatively difficult to prevent. These attacks can cause downtime on the network. Free tools such as Wireless LANJack and capable hunter_killer this attack. This attack could be directed at a normal user so that user can not connect with an access point. The aim is none other than that there is no user who can use network services Due to the chaos of traffic data (service denial).
An intruder could trick the Extensible Authentication Protocol (EAP) to perform DoS attacks against a server. This action coupled with the conduct of data flooding. Thus, no single user can connect to the network service.

Network Injection.
Aapbila an access point connected to the network that is not filtered properly, then the intruder has the potential to take action boardcast ï ¿½ such as spanning tree (802.1D), OSPF, RIP, and HSRP. In this condition, then all network devices will be busy and can no longer working properly. Routing attack is also included in this type of attack. The intruder can do this easily using such IRPAS program, which is used to perform injection routing update data on the network, change the gateway, or delete the existing routing table.

Secure Your Wireless Network!
The following solutions are not going to make your network 100% secure. Remember the words of the classic ... the world is not perfect, nothing is ever 100% secure! The following things will only minimize the potential for attacks that damage your network.
1. Change the Default Password Access Point. Many of the attacks that happened was because everything was left at the default settings, including passwords. Most attackers will usually berfikiran this one thing, which is hoping that the target has not changed the defaul password Access Point.
2. Change the default IP. In the past this is less possible to do. But this is much dewaas brands Access Point that has this facility.
¼ br> 3. Turn on encryption methods. Use WPA encryption with a Pre Shared Key (WPA-PSK). Give the password is also "safe", in the sense that is difficult to guess and do not have meaning. You also can use WPA encryption with Temporal Key Integrity Protocol.
4. Disable SSID Broadcast function. Thus, the SSID will not be in the process terdeksi War Driving. But .. The bad news (or good news??), currently there are already some applications that can scan menditeksi SSID terhidden. Yeah, however you can still protect the SSID name by changing the default SSID SSID name is difficult to predict.
5. Use MAC Address Filtering. This is useful for reducing penysupan activity.
6. Non Enable DHCP. Use Static IP with values rarely used.
7. Use additional security such as CaptivePortal or other applications that inject the firmware on the Access Point.
8. Use software such as Mc Afee Wireless Home Security to conduct Monitoring via Access Point Client.

Terms
1. Wi-Fi or WiFi (Wireless Fidelity)
Wi-Fi or is another name given to products that follow the 802.11 specification. Most computer users more familiar with the term Wi-Fi card / adapter, compared with 802.11 card / adapter. Wi-Fi is a trademark, and is more popular than the word ¿½ ï ¿½ 802.11ï IEEE.
2. Channel
Frequency band if a road. This channel is functioning as if As with the separator lines on the road. 802.11a equipment working at a frequency of 5.15 to 5.875 GHz, while the 802.11b and 802.11g equipment working at a frequency of 2.4 to 2.497 GHz. So, 802.11a uses a greater bandwidth than 802.11b or 802.11g. The more bandwidth, more channels are available.
3. MIMO
MIMO (Multiple Input Multiple Output) technology is the latest Wi-Fi. MIMO is based on Pre-802.11n specification. The word ï ¿½ Pre-ï ¿½ ï ¿½ said Prestandard versions of 802.11nï ¿½. MIMO offers increased throughput, superior reliability, and increase the number of clients connected reply. Some other advantages of MIMO are:
- Power through MIMO for better barrier.
- Wider reaching. MIMO Access Point can reach a variety of Wi-Fi equipment imaginable in every corner of the room.
- MIMO Access Point can identify radio waves emitted by Wi-Fi adapter 802.11a/b/g.
- MIMO support backward compatibility with 802.11 a / b / g. Wi-Fi equipment can produce MIMO data transfer speed of 108Mbps.
4. WEP
WEP (Wired Equivalent Privacy) is one of the security features / security that is build-in on Wi-Fi equipment. Radio waves emitted by Wi-Fi adapter can be accepted by all Wi-Fi equipment in the vicinity. This has become a serious threat because in this condition information information can easily be captured by the parties who are not supposed to. By skarena Wi-Fi was created by several types of encryption: 40 bits, 64 bits, 128 bits and 256 bits. However, the higher the security level, then decrease the data throughput is also larger.
5. SSID
SSID (Service Set Identifier) is the identification or name for the wireless network. Each Wi-Fi equipment must use a specific SSID. A Wi-Fi equipment is considered ebrada in a network when using the same SSID. Same as password, SSID is case-sensitive ie capital letters and small letters are distinguished.
6. SES
During these difficulties often experienced by most people is in terms of network security setup. Yet this is a very important thing in the network dunai. That's why created SES (SecureEasySetup). Now, just by pressing a button, automatically SES SSID and security code to the router and adapter and implement WPA security (Wireless Protected Access). To use the SES, the user need only press the button on the router's SES, then the client. Quite easily, Eden, the devices now have a traffic lane is safe.
Continue Reading..

There is no perfect software. It is always haunt the minds of software developers. One example is not perfect a security hole in software. A software usually has a security hole that can be infiltrated by cyber criminals. Cyber criminals typically use these holes for things such as spreading malicious malware, viruses, and phishing.

Microsoft recently released a patch to patch the security hole. They categorize these security vulnerabilities as critical.

"One of Microsoft's security vulnerabilities affecting almost all Microsoft products, the Windows 2000 to Windows 7, but in the critical category is only for Windows 2000," said Ben Greenbaum, senior research manager, Symantec Security Response. "From the XP SP2 and later products, Microsoft has strengthened the heap memory with the heap memory protection strategies; this makes the security vulnerabilities are less of a problem for systems newer."

Adobe, the company famous for its Photoshop products, began scheduled to release a security update. The users expect that Adobe patched the hole on the Acrobat Reader first detected on December 14, 2009.

"We see this security vulnerability actively exploited by attackers," said Greenbaum. "At the end of December this attack looks businesses rose sharply and then declined, but we still see attacks limited to such exploitation. It is possible that the type of exploitation is more reliable under development. "

Finally, Oracle is scheduled to release an advisory that addresses 24 security vulnerabilities as well as part of their regular security updates.

"This is a shining moon for Microsoft," Greenbaum added. "But since Adobe overcome several security holes, at least one of them critical, and Oracle also improve security vulnerabilities 24, many IT managers have to keep working hard."

Symantec strongly recommends users to patch their systems to address this security vulnerability. In addition, companies are encouraged to consider implementing a patch management solution automatically to help overcome these risks.
Continue Reading..

1. Increased attacks originating from the files on the network. Next year we will see some variation in many attacks. Malicious attacks that attack via a website or application that starts from the files shared on the network.

2. An increase in malware attacks through P2P networks. In the year 2009, we see the epidemic of malware attacks are "backed" by a malicious file that spread through the network. This attack method has been used by some viruses, such as TDSS and Virut. In the year 2010, Kaspersky security experts predict will occur in a significant increase in such attacks on P2P networks.

3. Competition traffic by cyber criminals. Today's cyber criminals began to make efforts to legalize themselves. Also they started making money by creating a huge traffic using a botnet. In the future, Kaspersky sees the scheme "gray" in the botnet market called "partner program". The program allows the botnet owners to take advantage of the dangerous activities such as sending spam, pass up a DOS attack or distribute malware.

4. Fake antivirus programs. Not much different from Symantec, Kaspersky antivirus also considered false will increasingly mengganas in the year 2010. However, Kaspersky quite sure, with the market monitoring by IT security firm and government legal agencies, antiviral distribution will be increasingly difficult.

5. Wave attack on Google. Wave attack on Google is believed will continue to be a headline in 2010. The attack on Google's service will begin with the pattern: sending spam, and phishing attacks, pemanfaatkan cracks on the website and spread of malware.

6. Increased attacks on the iPhone and Android phones with a platform. 2010 predicted a difficult year for iPhone users and Android. The attack on the platform that emerged in the year 2009, indicating interest in the cyber criminals.
Continue Reading..

Some time ago, our friends at Symantec have concluded several threats that emerged in the year 2009. This time try to predict Symantec noteworthy threats in 2010. These threats, among others:

• Antivirus is not enough - Poliformik and some unique malware variants provide a serious threat in the year 2009. Traditional approach to antivirus, either by signature files and the ability heuristic / behavioral considered not sufficient to protect the computer from the latest threats. Symantec thinks that now is the point of where the latest malicious programs created with higher speeds.

• Social Engineering as a Main Vector Attack - cyber criminals to attack the user directly. The criminals are also more trying to deceive their victims to download malware or divulge sensitive information, with the impression that the user does not do a thing wrong. One of the triggers social engineering popularity is the fact that the operating system and Internet Brower which is in the computer user is not a gap that was attacked by cyber criminals., But the user itself. Social engineering has become one of the main attack vectors in use today, and Symantec estimates that the number of attacks experiment using social engineering techniques will likely continue to increase in 2010.

• Fake Security Software Manufacturers Increase His business - In 2009, a lot of false security software in circulation. In 2010, be prepared to see a more sinister threat. Prepare to see the perpetrators of fake security software makers trying to increase the level further. Hijack the victim's computer, change the computer becomes useless is one example of actions that they can do. However, not all their actions threaten the victim's computer. For example, Symantec has analyzed several antivirus vendors who sell counterfeit copies of third-party antivirus software with other brands. In this case, the user is technically did have antivirus software that they pay, but the fact is, the same software, they can download for free from somewhere else.

• Applications of Social Networking Party will be a Target of Fraud - Managing social networking websites continue to increase the security of their website. However, it turns out that criminals are not targeting the gaps on the website. The attacker is likely to attack the existing gaps in the application made by any third party to penetrate into the social network user accounts, just as we have seen when the attackers visited a browser plug-ins such as web browsers become more secure.

• Windows 7 will be a focus of the attacker - Recently, Microsoft has launched the first security patch for Windows 7. Each party developers to think to mend the gap, cyber criminals have been one step ahead of developers. Microsoft's operating system is also not the exception, and because Windows 7 has begun circulating, no doubt, an attacker would have to find ways to continue to exploit users of Windows 7.

• Botnet a Continuously Changing Fast (Fast Flux) Rising - Fast flux is a technique used by a botnet, such as the Storm botnet, to hide phishing and malicious websites under the already infected tissue which acts as a proxy.

• Service URL Penyingkat Best Friend Become Boots - Because users often do not know where they will be delivered by a URL that has been shortened, fraud can hide a dangerous link. One example is the URL penyingkat service bit.ly. Symantec has seen a trend toward the use of this tactic to distribute applications to deceive. In addition, in order to avoid anti-spam filters, spammers are expected to use the service URL to pemendek their crimes.

• Mac and Mobile malware will Rise-In 2009, we've seen the Mac, and smartphone makers target of malware, such as botnet Sexy Space is intended for mobile devices based on Symbian operating system and OSX.Iservice Trojan targeting Mac users. With the increasing popularity of Macs and smartphones in 2010, more attackers will spend their time to create malware that can exploit this device.

• Spammers Violate Rules - With economic conditions increasingly difficult, and more people take advantage of lax rules on CAN SPAM Act, we will see more and more organizations selling lists of email addresses and more marketers are not responsible for spamming the list.

• Adapting Spammers, Spam volume will fluctuate Keep - Since 2007, spam has increased by an average of 15 percent. Despite significant growth in this spam email may not be continuing in the long run, but it was obvious that spammers do not want to give up as long there are economic motives. The volume of spam will continue to fluctuate in the coming 2010 and spammers continue to adapt to increased security software, the intervention of a responsible ISP, and government agencies around the world.

• specialized Malware - Malware is highly specialized, discovered in 2009 and has a goal to exploit a particular ATM. This trend is expected to continue to grow in 2010, including the possibility of malware targeting electronic voting systems, which are used in the political arena and voting via public telephone lines, as is widely used in many competition reality shows on television.

• Increased technology will CAPTCHA - This will make the business more developed economies in the region that offers the people to collect accounts on legal sites, especially those that support user-generated content, for spamming purposes. Symantec estimates that these individuals would be paid less than 10 percent of the income spammers, with the search account to charge between 30 to 40 dollars per 1,000 accounts.

• Instant Messaging Spam - As the virtual world of criminals looking for ways to avoid CAPTCHA technology, attacks through instant messenger (IM) will increase its popularity. Threats through IM will consist of spam messages that contain unwanted malicious link, particularly attacks aimed at the active IM accounts. At the end of 2010, Symantec predicts that one of the 300 IM messages will contain the URL. In addition, in 2010, Symantec estimates that, overall, one of the 12 hyperlink will lead to a known domain name is used to contain malware. Thus, one of 12 hyperlinks that appear in the IM message will contain a domain that is considered suspicious or dangerous. In 2009, levels only 1 of 78 hyperlinks.

• Non-Home Spam Will Rise - With the penetration of broadband connections continues to grow worldwide, particularly in developing economies, spam in countries that use languages other than English will increase. In some parts of Europe, Symantec estimates that spam localization rate will exceed 50 percent of all spam.
Continue Reading..

Research and response team safety IBM X-Force recently announced the latest security trends for enterprise-class customers can prepare themselves in the year 2010. The team successfully concluded some interesting predictions about the security issues that will face companies, both about the model whatever the attack would strike, through what they are being attacked, and many more.

The X-Force researchers estimate the return of old-style attack in 2010. It is characterized by the majority of worm attacks on a large scale. Trojans will remain a major threat to the cyber community. Some of this year, attacks that occurred in the cyber world is shifting a lot. If the initial appearance that there are more threats to damage computers ditujukkan, the current threat more to steal sensitive data. Sensitive data are referred to here is the credit card data, account number, pin, and so on.

IBM will also predict an increase in attacks "denial-of-service" or known as a service attacks (attack services) is growing due to rampant organized cyber crime is based in the U.S. and in other countries.

Phishing attacks are still going to remain rampant in the year 2010. The team of IBM predicts that the threat of Phishing from cyber criminals will be more visible through the social networking website. Is estimated that criminal organizations will increase the frequency and sophistication of their attacks to a variety of social networking websites, especially to individuals who are considered "important" listed on Facebook or LinkedIn.

What about the security of cloud computing systems are predicted to increasingly become a trend in this year 2010? IBM predicts that the attacks on these systems will also begin to threaten. Cloud Computing Systems from virtualisation system will become easy targets of cyber criminals. Virtualization has long are present in the market, so that the criminals are increasingly sophisticated in making threats to this system.
Continue Reading..