The SC Magazine review reports that “Websense Express shows that small businesses on a tight budget no longer have to rely on scaled-down Web-content filtering solutions… [and] Websense delivers an industrial-strength Web content and protocol filtering solution that’s a cinch to deploy and priced just right for SMEs.”

WebSense has a great lineup of web filtering products that do a lot.

WebSense Express

Industry Leading Web Filtering

Bandwidth Optimization (at network level)

Reporting Tools (web based)

Security Filtering – Phishing protection, spyware, malicious mobile code

30 Day limit on data

Single location, Single Server

WebSense Enterprise

Industry Leading Web Filtering

Bandwidth Optimization (at user level)

Websense Reporting Tools

Sophisticated and Flexible Admin Tools

WebSense Web Security Suite

Industry Leading Web Filtering

Bandwidth Optimization (at user level)

Websense Reporting Tools

Sophisticated and Flexible Admin Tools

Security Filtering – Phishing protection, spyware, malicious mobile code

Security Protocol Categories – bot traffic, email born worms, key loggers

IM attachment manager

Real Time Security Updates

SiteWatcher

BrandWatcher

ThreatWatcher

• 1. Monitors and transmits a copy of all Internet traffic going from and coming to the compromised system.
• 2. Monitors secure sessions (websites beginning with ‘https’), which may include shopping or banking sites.
• 3. Records and transmits “the pace and style with which you enter information online…”
• 4. Parses the header section of personal emails.
• 5. May combine any data intercepted with additional information like “select credit bureau information” and other sources like “consumer preference reporting companies or credit reporting agencies”.

Whats next Sears? Do you want to sell me a rolex on the cheap, enlarge that special part of my male anatomy, or give me an opportunity to by medicine overseas?

I believe Sears is a respectable company with strong ethics and morals, which simply may not understand the full implication of the actions they are taking. My Suggestion? STOP AND APOLOGIZE. This will only hurt you in the long run, as more and more people raise the awareness of what your tracking software is doing.

If you are reading this – please blog about it, leave a comment, do something to let your voice be heard.

SMB Antivirus

It used to be that antivirus software was all you needed to be relatively safe and all the bad guys wanted was to make a statement. Well, that is no longer the case, they want your money now or worse yet, your customers money. The good thing about this, is that when someone is predictable you can guard against them.

If all the bad guys just tried to deface websites or shut down systems or do other ‘vandal’ actions, then it would be hard to guard against them and even harder to justify spending money on it. Now, if their goal is to steal from you, steal your customers data, steal credit card or sensitive data or anything they can exploit for money, well it is pretty easy to know what you have that meets that need and justify spending money on it.

Cyber Vandal vs. Cyber Thief

Here are two scenarios:

1. A cyber vandal likes to take over websites and post his cyber name and a picture of some punk rock band or something like that and shut down your website for a day or so. Well, that would really stink, but the real damage is hard to calculate. We all know the media and tech communities like to post huge dollar amounts lost to hackers because systems were down, etc. Well, is that real…probably not.

2. A cyber theif likes to steal customer information so we can sell it on the black market to people that know how to make money with customer data or employee data or credit card data or just about anything. Do you think you can calculate a real damage there? Imagine notifying all your customers or employees their data was stolen! Imagine the money that will cost in actual damages and loss of reputation with them?

These days it is all about crime! So, what happened to me saying it was a good year for SMB IT Security, well like I said, once the threats become predictable it is easy to guard against them. Just ask yourself what data needs to be protected and what is the downside if it is not. In my opinion, once you know your risk, you can decide to take it or mitigate against it, but you have knowledge and that is power.

Michael Rowles

SMB IT Security & Antivirus

CopiaTECH

Gartner’s Magic Quadrant for Endpoint Protection Platforms is based on an assessment of a company’s ability to execute and completeness of vision.

• “The stand-alone antivirus market has been replaced with a broader suite of defensive technologies supported by an extensible management platform that can subsume horizontal products, such as data protection and device management capabilities.”
• A modular architecture that enables selective configuration based on security requirements and device location is also critical.”

Gartner gauges a company’s completeness of vision by considering its market understanding, sales and marketing strategy, offering or product strategy, business model, and innovation. Our position in the Magic Quadrant validates our market leadership in security risk management.

When it comes to endpoint security, McAfee has achieved many industry firsts:

• First to deliver a single agent and a single console for endpoint security
• First to manage a broad range of security products—endpoint, network, data, and web and messaging security—all from a single, centralized console
• First to combine security and compliance processes—management and reporting—from one console
• First to unify security and compliance management for physical and virtual environments
• First to deliver an industry standard security software development kit to enable full interoperability and management across McAfee and non-McAfee security products

Besides the cost of the software and updates, total cost of ownership (TCO) considers the reality of your security costs by factoring in the cost of security systems management, including maintenance, reporting analysis and training, which amount to more than half the TCO for security solutions. The largest cost is in manpower, which can make up between 50 to 70 percent of TCO.

Integrated security suites are the answer for reducing your TCO for security software. Because integrated security solutions can offer comprehensive protection against viruses, spyware, spam, and phishing along with desktop firewall technology, you get a single integrated solution for reducing your IT security headaches and save time and money in the process. McAfee’s Total Protection Suite (TOPS) is a perfect example of a robust IT security solution that can reduce your TCO for securing your systems.

A Bundle is Cheaper than the Sum of Its Parts

Historically, it’s true that the bundling of software components into a unified suite adds a great deal of functionality at a lower price point than the sum of the components themselves.

An obvious example is Microsoft’s Office product, which combines a number of useful component software tools into an integrated solution at considerable savings over what the software would cost if all components had to be purchased separately.

Savings can be realized even if all of the component pieces aren’t put in use. Suites carry an additional advantage that unused components can be placed into service as the organization’s need change. Because the component pieces are designed to be inherently compatible with each other and much of the functionality is already familiar to the user, time and money are saved in training and configuration.

An Integrated Suite Saves More than Licensing Fees

In the case of McAfee’s Total Protection Suite, the benefit of purchasing a suite of components is not just the savings on licensing fees, this integrated security solution provides a unified management console for reporting and analysis. Centralized management allows you to view the big picture of your overall security status, details on individual users, and management reports.

Gathering your security data into a single view that allows you to see all of your security solutions in one place can mean the difference between responding to security risks in a timely manner and not using the software to its full advantage due to information overload.

Installation is greatly simplified and you spend less time testing security components before you deploy them because you don’t need to test their compatibility with your existing security components. Furthermore, you don’t need to tune the products to function correctly with any of the other security products or components you are using or plan to use in the near future.

Two Sizes Fit All

McAfee’s Total Protection comes in two sizes, so it will fit your organization regardless of its size:

• Total Protection Small Business (SMB)
• Total Protection Enterprise

Both the SMB and Enterprise products are available in two versions – standard and advanced.

The Total Protection SMB version includes:

• Single, centralized management console
• Desktop and file server anti-virus
• Desktop anti-spyware
• Desktop firewall

The Advanced SMB version adds E-mail server anti-virus protection and E-mail anti-spam and anti-virus service.

Total Protection Enterprise includes everything that’s in Total Protection SMB plus:

• Desktop host intrusion protection
• E-mail server anti-spam protection

The Advanced version of Total Protection Enterprise adds Network Access Control.

Get a Grip on Security

Compliance. Evolving threats. Complex networks. All of these demands require an integrated, end-to-end security solution with continuous updates, uninterrupted protection and a single management access point, regardless of your organization’s size. McAfee’s Total Protection Solution can provide that, saving you time, money and headaches.

Contact CopiaTECH today and start getting a grip on your IT security – it’s the right thing to do!

Download one or more of our McAfee white papers for FREE.

read more | digg story

How are we going to battle Malware?

Chris Bolin writes on the McAfee Insights Blog about this massive malware malady and McAfee’s cornerstone solution to the problem…management. Who is Chris, well he is McAfee’s EVP & CTO reporting directly to the CEO, so he should know things. What is ePO, it is ePolicy Orchestrator their management tool. As mentioned above i have a long history with ePO and have seen it grown from a 1.0 resource hog that could barely manage their AV product to a great cornerstone to their security strategy. If ePO does not manage one of their products, correlate the reporting data and all from a single console, it will soon.

Think of it as a good remote control. How many people only use the numbers, volume, power and up/down channel buttons? GO ahead, put your hands up. I bet if you knew how to use them all you would get a lot more out of your audio-visual experience. With malware popping up like college kids at an ESPN Gameday broadcast you better use all the firepower you have and ePO makes that a lot easier and reports on it all.

TheStreet.com has a great article about ePO and McAfee vs. Endpoint and Symantec (Endpoint is Symantec’s cornerstone solution and just recently released).

What is a customer to do?

Customers I talk to are the ones that really matter and they have to walk a line of balance. They cannot use a bazooka to swat a fly nor can they think a finger in the dike will save the day. Oh, and they have a million other issues to worry about and most of them help a company generate revenue, not fight off would be hacks, malware, spam and other nasties. At the end of the day, what is important is to work with your IT Security adviser to se what your policies are, make sure you are ok with that level of security and then match solutions until you find one you like.

That’s all.

Michael Rowles

IT Security Adviser

read more | digg story

Spyware?

Well, yes, of course it is spyware…but the worse kind. It is the kind of spyware we install on our computers and set loose ourselves. This is like feeding a Gremlin after midnight or pouring water on it…our own darn fault. What happens typically is a program, in this case an up and coming social network, is installed and in tiny print in the EULA they say they will be doing something nasty that if asked up front you would not allow. In this case the social network begins spamming all your friends to join the network as Mashable reports.

I did it to myself?

Yes this is what is called social engineering. It is close relative to an “I love you” or “Sadam is Alive” email that tricks users into taking action. The sad part is that we agree to it when we click “I agree” in the EULA or end user license agreement.

What can I do to avoid this spyware?

The best thing anyone can do is…read the license agreement. This is boring and no fun and will take some time, but you will quickly get used to skimming these things and locating any loopholes like saying it will email all your contacts and invite them or it will monitor the site you surf or even worse…your key strokes. This is why in the corporate community it is so important to do two important things:

1. Educate your employees
2. Lockdown the desktops so nothing can be loaded

Be careful and be safe and remember what the famous economist Milton Freeman said, “There is no such thing as a free lunch”. If it is free there is always a catch.

Michael Rowles

Anti-Spyware Advocate

read more | digg story

Anti Virus, Anti Spam, Anti Spyware, Oh My!

An evil internet gang called the “Zhelatin gang, named after the Trojan they drop on your system, is hell bent to create the largest botnet, or network of robot programs the Gang control remotely on PC’s, ever. Us meaties better use all we have to defend against the bots because this is shaping up to be WW III Meaties vs. Bots!

What can a user do?

Well the top thing people can do at home or in their corporate environment is adhere to a security plan that is either personal or their corporate plan. Personally and professionally make certain you are running current and updated daily anti virus, anti spyware, anti spam, personal firewalls and a lot of common sense. Almost all of these emails are grandiose in nature and use “Social Engineer”. SE is when they pique your curiosity with a subject line like “Big Storms in Europe”, “Sadam Husein is really alive” or photos of your favorite stars doing things they should not be.

The users is encouraged to click the link and it takes you to a site, that without proper protection, loads a bot onto your system unknowingly. Businesses are encourage to have a strong security system in place, strong corporate security policy, strong and regular back-ups and strong employee education. A little bit of prevention goes a long way here.

But I have Anti Virus, Anti Spyware and Anti Spam…

Still be very careful. Do not ever open emails that you cannot verify come from someone you know or a source like a subscription service you have signed up for. These emails are usually rudimentary and it is a shame that users fall for them, but they do. Be ever vigilant because your personal identity and your employer rely upon it!

Michael Rowles

Internet Elliot Ness

With “drive-by”¯ downloads some spyware programs are installed onto the computer instantly. The site might have an immediate pop-up, cleverly including an “Agree”¯ button where you might normally close the box, and bam! The programs have free reign to do their business on your computer. This might also occur through instant messaging, something employees commonly engage in on the job.

Since spyware and adware often come bundled with other programs, especially file-sharing programs, you must take careful notice of what your employees are allowed to download onto their computers. Make sure any programs of questionable authenticity are avoided. Many free, harmless programs tend to come with these threatening programs attached.

Another thing to remember is by running your system as an administrator; you put it at a greater risk for getting hit with unwanted programs. If you run it as a regular user most of the time, this can prevent “drive-by”¯ installations that can only occur in administrator mode.

Some of the biggest mistakes you can make, leaving your business susceptible to spyware and adware include:

• Not keeping your internet browser and operating system updated with the latest security patches.
• Not using a proper hardware or software firewall.
• Not installing both anti-virus and anti-spyware programs.
• Not carefully reading all prompts when installing a program.
• Opening suspicious emails.
• Visiting pornography, gambling or other high-risk Web sites.
• Installing frivolous software, such as unnecessary toolbars, screensavers, images, etc.

Remember, no one intentionally installs spyware or adware programs (or at least they don’t intentionally install something they think is a hazard). The designers of these sly and deceitful mechanisms trick you into doing something you wouldn’t have done knowingly. As an employer, your best methods of defense are knowledge and prevention. Inform your employees of the threats these programs pose to your network, how they penetrate the system, and what they as employees can consciously do to monitor their behavior on the internet. You can always check with professionals like CopiaTECH for help with your strategy.

So who exactly are these uninvited intruders into your computer network and what are they doing there?

• Spyware: This is any type of software designed to slither into your system and convey your personal information to a third party without you realizing or allowing it. Think of it as a virtual peeping tom. Spyware software might log your keystrokes, monitor your email and instant messaging traffic, or keep track of your passwords, login IDs and credit card information. This gathered information is sent to a person or organization. They might use the information to access your computer system from wherever they may be, make charges on your credit card, or attempt to steal your identity as well.
• Adware: This is a type of software that serves to tailor-make advertising to the computer user in hopes of making money. Adware collects information about what type of Web sites you visit, what you like and what you don’t. This marketing information is then sent to a company who has commissioned the adware to do its dirty work. The company then sends you advertising messages, like pop-ups or special toolbars, based on the information they’ve gathered about you. Though adware may not be as dangerous to your business as spyware, it still is a violation of your privacy and an unauthorized and unwanted intrusion into your system.

How do these programs make their way onto your system?

1. Bundling: When you knowingly download a program, adware may be bundled in with it. Some programs will let you know what is bundled in with them when you download them, and some will not. Of course you would have to read the license agreement to know, and nobody does that! Chances are if there are a lot of excess, free files included with the program, adware may be part of the bunch. Maybe it is just a game, toolbar, emoticon or other “fun”¯ internet program, that you invited onto your computer.
2. Drive-by Installation: McAfee uses this term to describe when spyware or adware is downloaded onto your computer simply by visiting a dubious Web site. The program automatically installs when you visit the site without even asking you to accept.
3. Spread by a virus: Some viruses have been known to install spyware and adware as part of their package of ruin.

However these programs make their way onto your computer, once they get there, the trouble begins. If you do find a suspicious program, alert an IT professional immediately.