onsdag 18 september 2013

Ett rop på hjälp?

Min tidigare arbetsgivare ser ut att behöva hjälp!

(Klicka på bilden för att göra den större)

Jag är vänlig nog att ge den hjälpen: http://nyheter.wecloud.se/2013/09/zscaler-skyddar-mot-0-day-vulnerability.html



Jag har de bästa kollegor man kan tänka sig. Även när de lägger tid på sådant som inte har ett dugg med jobbet att göra så är de fantastiska. Jag delar nedan med mig av ett mail som min Kollega Jon skrev till en kille som kontaktade WeCloud rörande  spam och virus - inte för hans verksamhets räkning - det handlade helt och hållet om hans egna, privata, oro över sin IT-säkerhet. Jag håller tummarna för att min kollega inte har något emot att jag delar med mig av detta (i så fall plockar jag bort det här inlägget illa kvickt!).

"Hi xxxx,

When it comes to these types of compromised websites we cooperate with Cloudmark which leads to us together handling several billion emails every day. So when a spamwave is initiated we update with the links seen in the emails as fast as we can (of course this is not our only anti-spam technology).

Wecloud in this case provide xxxxx with a internet based sort of proxy for emails meaning that any emails sent in to xxxxx domains will actually come to our servers, and any emails that we deem as legit will be passed on to xxxxx's servers. This cloudbased infrastructure handles billions of emails every day for organisations around the globe and constantly learns from that traffic. And we've also got established cooperations with, amongst others, Cloudmark and Commtouch which allows us to utilize their technologies and databases as well in our email scanning.

Looking at your private PC I can give you some free advice (free in the sense that we do not sell solutions directed towards the private market and therefore there's really nothing in it for me).

Regarding MACs they are targetted by Malware no matter what Apple claims and what MAC users think. It is an old myth that MACs are immune to malware.
I would recommend you to read up on f.ex. Mac Defender if you're interested. Especially Mac Defender is interesting to read about since leaked documents from Apple's support shows that they knew about the existense of Mac Defender but didn't allow their support team to admit Mac Defender existed and didn'ät allow their support team to help clients get rid of their infections.

It also so nowadays that a lot of the programs you run in a Mac environment are actually PC applications and are in many cases susceptible for the same types of attacks as PC Malware. That being said malware for Mac is rather rare compared to malware for PC/Windows.

Looking on the Microsoft (Windows) side of things the situation is rather chaotic. During 2012 over 200.000 new malwares where reales each day (the majority of those were published on legit websites in order to infect unkowing visitors. That equals over 73 billion malicious codes published. Alot of those are designed to either steal something from you (credit cards, online banking or online accounts like facebook) or they will attempt to utilize your machine in malicous behaviour for example sending out spam or participating i DDOS attacks. 

If your machine becomes infected and part of a Botnet it will then be rented out to different attackers with different agendas (for example, in Sweden the Police's webservers broke down due to DDOS attacks coming from infected machines as a reaction to the proscecution of the founders of Piratebay). 

With that many samples being published it is likely that a malware you encounter is unknown by your Antivirus which means that it will get access to your machine and also probably infect your AV program so that it will not be detected in the future. You'll probably not notice anything except perhaps that your computer is slowed down when being utilized (click-jacking would for example slow down your browsing).

Legacy AV (for example AVAST) are not able to protect users and computers from the Malware situation that we have today. In order to combat the current situation regarding malware and online threats one needs to use more modern versions. The solution WeCloud distribute in Scandinavia that I chose due to it being far superior to any other Antivirus available on the market is Webroot SecureAnywhere.

We can, as I said, not sell this to private persons, but it is available from as a direct purchase for priavte persons via their webpage (webroot.com) and I can not strongly enough encourage anyone concerned about being infected by malware to have a look at it. It is in my eyes the only solution against malware that is worth the money.

And that's not even mentioning smartphones (Androids) where most people have no protection at all so there's a real paradise for the hackers (over 1000% increase in Malware for Andoids last year).

Best Regards
Jon Lahtinen
CTO - WeCloud AB"

fredag 13 september 2013

En moln-lösning under klarblå himmel

Flera av de konkurrerande antivirus-lösningarna jag ofta möter kallar sina produkter för moln-lösningar eller "cloud-antivirus". Granskar man dessa lösningar i sömmarna kan man ganska snabbt konstatera att det är samma gamla vanliga anti-virusklient - men kontrollpanelen har flyttats till en extern webbserver.

En av våra större konkurrenter skriver följande om sin produkt:

"Everything the product needs to protect your device is on the device, no Internet connection required."

Hur kan man egentligen kalla det för "cloud-antivirus" om allt som behövs för att skydda enheten finns lokalt och är oberoende av Internet!?

Detsamma gäller för de allra flesta konkurrenter - det enda som egentligen har flyttats till molnet i deras "moln-antivirus" är manageringen av lösningen. Antivirus-klienten är fortfarande beroende av begränsad lokal intelligens, den är lika stor och resurskrävande - och kräver dessutom ständiga uppdateringar som är utdaterade samma sekund som de landar på hårddisken.

Testa världens enda "äkta" cloud-antivirus; mindre än 1 Mb och laddar ALDRIG ner några signaturfiler till hårddisken!