Technology•
on July 16th, 2009•
Microsoft has made some changes to its enterprise software licensing agreements, which may affect the way you purchase and license your servers and their application software.
The modifications to their Enterprise Agreement (EA) stem from challenges faced by IT due to the state of the economy, as well as Microsoft’s response to industry interest sustained growth with cloud computing and virtualization, and to “strike a balance between providing traditional licensing solutions and expanding into new ways to purchase and use software like subscription and online purchasing”. (Quoted from recent Q&A with Joe Matz)
Customers can get this offer through the EA enrollment, and in signing up for Microsoft Enrollment for Application Platform, and choosing between two different licensing models. It is proposed that this can help lower costs, with up to 40 percent price savings.
Keenpath’s Insight:
Systems and models like cloud computing continue to innovate and challenge the typical mindset of application and server deployment. Many organizations are realizing large cost savings and reduced management requirements by leveraging virtualization and cloud computing in their environments, whether on a full scale, or pilot deployments.
Microsoft realizes the business model and justifications for leveraging cloud computing technology, whether internal or external federated clouds, has caused them to clearly evaluate their software licensing, and development. They recently released online services, Business Productivity Online Standard Suite, in competition with Google Apps suite.
Companies can continue to leverage their existing infrastructure, while evaluating, becoming comfortable with, and eventually transition to a cloud based business infrastructure where fit, using these and other services and products. With this, organizations such as the Cloud Security Alliance (CSA) are tasked with developing industry best practice and guidance to increased awareness and effectiveness of security with the cloud model.
Technology•
on July 14th, 2009•
Today, ISC SANS returned the Infocon status to green. They are hopeful that yesterday’s raising of the status to yellow increased awareness of the vulnerability.
Microsoft has released Windows Updates for multiple issues today, and one directly addresses the ActiveX vulnerability that caused the Infocon status to increase to yellow yesterday. Microsoft customers are recommended to deploy the new updates soon, in particular those rated with a Critical classification.
Read more about Microsoft’s latest updates along with executive summaries here, Microsoft Security Bulletin Summary for July 2009
Keenpath’s Recommended Action:
Those with Automatic Updates enabled will receive the latest updates and they will be automatically installed
For more control over how the updates are deployed, Microsoft Windows Server Update Services (WSUS) are recommended to approve and install the updates
Technology•
on July 13th, 2009•
ISC SANS (Internet Storm Center) diary handler Adrien de Beaupre posted an alert and information regarding the Microsoft advisory related to an Office Web Components ActiveX vulnerability. The ISC has increased Today’s Internet Threat Level to Yellow to raise awareness of this issue. Click the below jump link to view more details.
Vulnerability in Microsoft Office Web Components Control Could Allow Remote Code Execution
Technology•
on March 31st, 2009•
This is one well-designed piece of malware – Bruce Schneier, Schneier.com
Get started on understanding Conficker
The Conficker worm has infected millions of computers using the Microsoft Windows operating system since its debut in October 2008, and on April 1, 2009 will begin communicating using a new algorithm that has security organizations up in arms regarding what it will do next.
Consumers need to deploy basic but effective security measures
Recommendations for consumers:
- Run Windows Updates, installing the latest Critical and Security updates.
- Install and update reputable antivirus software
- Make sure the built in Windows OS firewall is enabled, or install third party firewall
A simple way to check all of the above is to go into Control Panel, then Security Center to check security end points.
Microsoft created a page for consumers on what you need to know, you can view it here. They also created a page for IT Professionals, which can be viewed here.
Technology professionals need to use advanced tools
DoxPara Research has released some tools, in collaboration with other security researchers, for technology professionals to scan their networks using simple, but effective scan tools. To download the tool from DoxPara, go here, as well to learn more information regarding some popular security tools, such as nmap’s release of the detection logic.
Add another layer of protection using OpenDNS
OpenDNS continues to live up to its mission to make your network safer, more secure, and reliable by providing Botnet Protection. Set up a free account here and help further secure your network.
Remediation software
In the event Conficker is found on your computer, utilize your antivirus software to do a full scan, but also check out this list of third party remediation (removal) software from the Internet Storm Center.
Time will tell
Time will certainly tell the effects of what this well designed malware will have on computers running Microsoft Windows. All in all, with good, basic security measures in mind and put in to practice, as well with the help of organizations combined efforts such as with the Conficker Working Group, the effects will hopefully be reduced and quarantined appropriately.
