Author: admini

Microsoft Reminds About Ending XP SP1 Support

Posted on by admini

Customers running Windows XP SP1 must migrate to Windows XP SP2 over the next three months, or they’ll lose incident support as of Oct. 10. Microsoft also said it won’t release any more security updates for SP1 after that date. Microsoft reminded solution providers and end users Wednesday that support for Windows XP Service Pack 1 (SP1) will end Oct. 10.

During its monthly security briefing, Microsoft executives told customers to prepare their migrations over the summer. Microsoft said it’s open to signing Custom Support Agreements to extend support and hot fixes for Windows XP SP1 for eligible enterprise customers that have plans to migrate to Windows XP SP2.

Microsoft also reiterated that extended support for Windows 98, Windows 98 SE and Windows Millennium Edition (ME) will end July 11. Microsoft’s Software Update Service 1.0 reaches the end of its lifecycle on Dec. 6.

http://www.informationweek.com/windows/showArticle.jhtml?articleID=189401599

Read more

Money lost to cybercrime down–again

Posted on by admini

“We’re seeing fewer of some of the attacks that have been such a plague for us in many years, and respondents are using less and less money.” Last year that percentage was 35 percent.

When it comes to cybercrime losses, consumers might be bearing the brunt of them, and they are not covered by the survey, Richardson suggested.

http://news.com.com/2100-7349_3-6083860.html?part=rss&tag=6083860&subj=news

Read more

Cerf: Wire Tapping VoIP Will Kill Innovation

Posted on by admini

Last August, the FCC ruled CALEA also applied to Internet phone services and gave VoIP providers 18 months to comply with the order.

The ITAA report, co-authored by Vint Cerf, chief Internet evangelist of Google and Whitfield Diffie, chief security officer for Sun Microsystems, among others, notes that in some cases, VoIP calls are essentially the same as a traditional call.

http://www.internetnews.com/security/article.php/3613486

Read more

Novell Lets Bandit Loose

Posted on by admini

On the auditing side, the Audit Record Framework service will deliver a compliance API as well as open auditing of records from Bandit.

Regardless of what Novell actually does or doesn’t do with Bandit, the project is an open source project with code licensed under the GPL(define) and the LGPL(define) Free Software licenses. As such anyone can take the code, use it and even add to it so long as they contribute their changes back to the community.

“What we want to do is to provide a consistent identity fabric for interactions across the network,” Dale Olds, distinguished engineer at Novell told internetnews.com.

http://www.internetnews.com/security/article.php/3612911

Read more

Disaster Recovery at the Macro Level

Posted on by admini

DRP and its partner Business Continuity Planning (BCP) are board level initiatives and should be treated as such. If you don’t have someone within your organization with the right expertise, go find someone who specializes. Put someone in your organization solely and fully in charge of the effort with board level authority.

If you never got to the point of testing your existing plan, the right consultant will help you develop a program that requires the least amount of investment initially. In disaster recovery planning, you have to do the right things in the right order and there are no shortcuts. This will require your patience, but not a huge chunk immediately out of your pocketbook. However, this is where testing mistakes can have huge negative impact on the business.

Pick a smaller application and test recovery outside of the production environment. After each recovery test exercise, an honest review of the successes and failures is not a step to be taken lightly. This is your opportunity to refine, refine, and refine.

Documenting procedures is not for the faint of heart.

http://www.bankinfosecurity.com/articles.php?art_id=150&PHPSESSID=180fe654b2a330ff0b5cdba0e36eec9f

Read more