10 October

Threatened Government Assests

I’m a little bemused at times that reports of major virus infections don’t raise concerns higher up the Government food chain.  I draw your attention to two recent news reports (‘Sinister’ Integral Energy virus outbreak a threat to power grid – Sydney Morning Herald Oct 1 2009, RailCorp wrestles with Conficker – ZdNet Australia Oct 6 2009) Yeah, I know that the media is hungry for news and happy to beef up any story to make it more news worthy, but seriously folks, is anyone else sharing my concern?

I’m sure, or at least would like think, that the control systems that operate the ‘power grid’, and our wonderful rail network are somewhat protected from these little nasties but neither of these stories instill major confidence. I read an article in April this year on Bruce Schneier’s Blog called ‘U.S. Power Grid Hacked, Everyone Panic! which spoke about how ‘Cyberspies penetrated the U.S. electrical grid’ and left behind malware that could be used to disrupt the power system. Sound familiar? In the same month, a NetworkWorld article discussed how Ira Winkler, a security consultant, was hired by a US Utility to check their security.  Ira and a merry team of experts took just a day to set up attack tools they needed then launched their attack, which paired social engineering with corrupting browsers on the power company’s desktops. By the end of a full day of the attack, they had taken over several machines, giving the team the ability to hack into the control network overseeing power production and distribution.

Wow, and this one was a planned attack.  Regardless of the infection, if the same kinds of malware or virii can be used to exploit similar vulnerabilties as in the US cases we’re in all sorts of trouble.  The conditions that allow Conficker to spread mean that any semi-skilled hacker or malware author can do the same and much worse with complete and total impunity.

Conficker for example, was one of the first worms to exploit a serious security vulnerability in Windows (MS08-067). But Conficker doesn’t stop there, it also is able to guess ‘weak’passwords and exploit autorun, a common utility Companies that make digital photo frames, MP3 players, GPS systems, and other assorted USB devices have really embraced.

This should be a complete non-story, and actually it is not the ‘real’ story. The real story is that companies are still not doing the basics. Keep your systems patched, keep your applications patched, and require and use strong passwords. Some of this is just common sense.

If you are still worried about Conficker or other infections, follow these steps:

  1. Go to http://update.microsoft.com/microsoftupdate to verify your settings and check for updates.
  2. If you can’t access http://update.microsoft.com/microsoftupdate, go to http://safety.live.com and scan your system.

If you have questions or want advice please don’t hesitate to contact me.


Technorati Tags: , , , , , , ,

Tags: , , , , , , ,
Posted in Uncategorized | No Comments »

9 September

Welcome to My Blog

First I guess I should introduce myself. I live and work in Australia and have a background in business and technology consulting in the big end of town. What I’ve noticed by both running my own small business and also interacting with other small business owners, there is a distinct lack of understanding how to use technology to accelerate business function and ultimately accelerate profits. What is a common misunderstanding is that technology is expensive, you need big budgets to derive the most benefit. 

This used to be the case, and I’m sure there are a lot of small business focussed IT companies that are reaping massive profit from maintaining this view. Well I’m here to help you, the small business owner to dump these guys, use technolgy to your advantage and give you more time to actually run your business. Majority of the products I will cover in my blog are free, or require minimal outlay. 

Also, I’m here to answer your questions. Feel free to ask me anything to do with running a small business, technology related questions, web and internet related questions and network and security related questions. I’ll post these up and the answers so that other can benefit from both the questions and the answers. 

I’m here to buck the old adage that in order to make money you have to spend money.  

Cheers and Enjoy!

regards, 

Dave


Posted in business it solutions, small business advice | No Comments »

9 September

QuickBooks 2009 Solutions Guide for Business Owners and Accountants

QuickBooks 2009 Solutions Guide for Business Owners and Accountants is the definitive, must-have reference for every business owner, entrepreneur, accountant, and bookkeeper who relies on QuickBooks 2009. It’s not a beginner’s guide, but rather a high-productivity resource for solving the problems that intermediate-to-advanced QuickBooks users encounter most often.QuickBooks 2009 Solutions Guide for Business Owners and Accountants

QuickBooks 2009 Solutions Guide for Business Owners and Accountants is a Must-Have book for Accounting Professionals or QuickBooks Users

Posted in Uncategorized | No Comments »