Online Security is getting every day more and more important. It’s so common these days to implement secure password policies, which is at least 8 characters, with minimum 1 special character like @$# …. More and more cooperation's taking care of Passwords as nearly every day a new “hack incidents “ happens…
We all expect at least banks take care of secure password policies, beside SSL logins or Virtual keyboards. As I said “we expect” but its sad too see some of the banks are not meeting the minimum security requirements or at least our expectaions or even the ISO 27001 or PCI standards in terms of passwords.
This post is a proof on how weak passwords polices are used in some of the Australian Online banking web sites. Yes , they do have SSL but knowing that these days SSL hacking is not “rocket science” , some of the PKI were compromised few times…
I have done a simple Pen testing via...
[More]
Watch the session from Microsoft Tech Ed North America 2012 about the latest Windows Intune
Cloud Computing is changing the way we manage PCs in the enterprise. In this session we take a deep dive exploration into the cloud based Windows management solution. We explore all the security features, how to manage updates, how to create policies, and how to upload and deploy software, all this from a single web management console.
Download the session:
Power Point : click here
High Quality WMV: Click here
MP4: click here
watch the session:
http://channel9.msdn.com/Events/TechEd/NorthAmerica/2012/WCL329
One more big week has passed. A sold out event with over 11,000 customers, partners, speakers, and staff who made the 20th year of TechEd so successful & joyful, the week was like a carnival designed for IT. Microsoft made a some important product announcements and demonstrated a lot of Windows Server 2012's new virtualization features. Which one was about our session with Elias , about Windows Intune v3.0 , Microsoft highlighted what is coming soon, especially from Windows Server 2012. Virtualization is the name of the game, and Microsoft showed off migration of virtual machines between on-premises servers and the cloud ( Azure ), showcased the scalability of Hyper-V 3 (up to 64 virtual CPUs, 1TB RAM per virtual machine, and a test virtual machine managing more than 900,000 I/O operations per second, bottlenecked only by hardware), and demonstrated management of its virtual switch using software from Cisco. These capabilities are going to be production-ready soon. For Microsof...
[More]
Introducing Windows Server 2012 is 256 pages and includes 5 chapters loaded with insider information from the Windows Server Team.
Table of Contents
Chapter 1 The business need for Windows Server 2012
The rationale behind cloud computing Making the transition
Technical requirements for successful cloud computing
Four ways Windows Server 2012 delivers value for cloud computing Foundation for building your private cloud
Chapter 2 Foundation for building your private cloud
A complete virtualization platform
Increase scalability and performance Business continuity for virtualized workloads
Chapter 3 Highly available, easy-to-manage multi-server platform
Continuous availability
Cost efficiency
Management efficiency
Chapter 4 Deploy web applications on premises and in the cloud
Scalable and elastic web platform
Support for open standards
Chapter 5 Enabling the modern work style
Access virtually...
[More]
If you’re a LinkedIn user, do yourself a favour and change your password right now !!! LinkedIn Wednesday confirmed that at least some passwords compromised in a major security breach correspond to LinkedIn accounts. Norweigan IT website Dagens IT first reported the breach, noting that “Two days ago a package on the 6.5 million encrypted passwords posted on a Russian hacker site. http://thehackernews.com/2012/06/linkedin-confirms-millions-of-account.html Double check if your password is leaked or not ? http://leakedin.org/ I hope you will get a response like below PS: Please try only your “old password” the one that you have changed and not using anywhere anymore Official LinkedIn announcement : http://blog.linkedin.com/2012/06/06/linkedin-member-passwords-compromised/
Very interesting article to read specially if you are in IT Source: arstechnica.com A couple of days ago, I received an e-mail from Iran. It was sent by an analyst from the Iranian Computer Emergency Response Team, and it was informing me about a piece of malware their team had found infecting a variety of Iranian computers. This turned out to be Flame: the malware that has now been front-page news worldwide. When we went digging through our archive for related samples of malware, we were surprised to find that we already had samples of Flame, dating back to 2010 and 2011, that we were unaware we possessed. They had come through automated reporting mechanisms, but had never been flagged by the system as something we should examine closely. Researchers at other antivirus firms have found evidence that they received samples of the malware even earlier than this, indicating that the malware was older than 2010. What this means is that all of us had missed detecting this malwa...
[More]
Check out this link, to watch my Video about the new MCSE certifications
http://www.microsoft.com/en-us/server-cloud/new.aspx
Watch the video at the below link
http://www.microsoft.com/en-us/server-cloud/new.aspx
FYI!!! From MS Security Response Blog:
We recently became aware of a complex piece of targeted malware known as “Flame” and immediately began examining the issue. As many reports assert, Flame has been used in highly sophisticated and targeted attacks and, as a result, the vast majority of customers are not at risk. Additionally, most antivirus products will detect and remove this malware. That said, our investigation has discovered some techniques used by this malware that could also be leveraged by less sophisticated attackers to launch more widespread attacks. Therefore, to help protect both targeted customers and those that may be at risk in the future, we are sharing our discoveries and taking steps to mitigate the risk to customers.
We have discovered through our analysis that some components of the malware have been signed by certificates that allow software to appear as if it was produced by Microsoft. We identified that an older cryptography algorithm could be expl...
[More]
If you and your current PC spend more time grumbling at each other than getting things done, it’s time for a change. But you don’t have to wait to buy a new PC in order to get Windows 8.
The fact is, today’s Windows 7 PCs come out of the box with everything you need now and later – including the chance to download Windows 8 Pro for just $14.99* when it becomes available.
For more info:
https://windowsupgradeoffer.com/en/