Clear Belief Systems Blog » Security Update http://clearbelief.com/blog Technology Services You Can Believe In Wed, 31 Mar 2010 22:00:39 +0000 http://wordpress.org/?v=abc en hourly 1 Unpatched Adobe PDF bug results in large-scale attacks http://clearbelief.com/blog/2010/01/08/unpatched-adobe-pdf-bug-results-in-large-scale-attacks/ http://clearbelief.com/blog/2010/01/08/unpatched-adobe-pdf-bug-results-in-large-scale-attacks/#comments Thu, 07 Jan 2010 19:50:14 +0000 Don Fosen http://clearbelief.com/blog/?p=54 Adobe has acknowledged a bug in their Reader and Acrobat software that is being used to conduct large-scale attacks against users.  The bug was acknowledged on December 14th but Adobe decided not to fix it until January 12th at the earliest.  Please be very careful about opening PDF files from unknown sources until this is resolved.  I highly recommend that you disable Javascript in Reader, click  here for detailed instructions on how to do this.  If you running Adobe Reader 9 you should get the update automatically when it is released, if you are not running version 9 you should install it.  You can also consider alternative PDF Reader software, Foxit Reader has been well reviewed.  Download it here.

Additional Information:
New Adobe Reader and Acrobat Vulnerability
Large-scale attacks exploit unpatched PDF bug
Adobe probes new in-the-wild PDF bug

]]> http://clearbelief.com/blog/2010/01/08/unpatched-adobe-pdf-bug-results-in-large-scale-attacks/feed/ 0 Small Business Cyber-Threat http://clearbelief.com/blog/2009/11/05/small-business-cyber-threat/ http://clearbelief.com/blog/2009/11/05/small-business-cyber-threat/#comments Wed, 04 Nov 2009 22:25:51 +0000 Don Fosen http://clearbelief.com/blog/?p=26 Cyberthieves are breaking into computers used at small businesses that are used to interact with online bank accounts and intercepting login information. They then login into the bank account and create fraudulent ACH transfers or add fake employees to payroll. Unfortunately banks are all too often allowing these things to happen even when proper documentation has been provided. Several organizations have lost hundreds of thousands of dollars. The most frequent way the thieves gain access to the computer is through sending a fake email with links that when clicked allows the thief to install a key logger. A key logging program captures all of the input that a user enters and transmits it to the cyberthief.

As always, the best way to prevent this happening to you is to be very careful what email you open and links you click on. Make sure you have good anti-virus software installed and it is current and that you have installed the latest Windows Updates. Also, if it is possible, consider keeping a separate computer that is used for nothing but accessing critical information like online bank accounts.

Additional information:
FBI warns of $100M cyber-threat to small business
Keylogger Definition

]]> http://clearbelief.com/blog/2009/11/05/small-business-cyber-threat/feed/ 0