JusticeDept.com

What Businesses Need to Know About Google Privacy

January 31 2012 by admin in Uncategorized |Comments Off

The amount and type of data that Google collects is dangerous.

Not only do they use information from your IP address, but they also combine this data with web browser cookies, Adobe Flash storage and Java script programs.

Businesses that use Google Docs, Google Maps, gmail, etc., need to be responsible and not allow any consumer information on any Google platform.

A few examples of what this means:
Do not use gmail for business.
Do not have a link to Google Maps on your website.
Do not use Google Docs.
Do not use YouTube for commercial purposes.

FaceBook Application Scams

January 24 2012 by admin in Uncategorized |Comments Off

Users of FaceBook should be very careful how they share their information. Many applications are scams, or worse. As scams, the bogus applications attempt to gain your personal information. This phishing expedition may be used to SPAM you, or perhaps, for identity theft. Worse than scams are applications that install rogue software onto you computer or Internet device.

Included in these scam applications is the “#1 Song on my Birthday* scam and the *How Many Hours I’ve Spent on FaceBook* trojan.

#SOPA #PIPA Internet Publishing Laws

January 18 2012 by admin in Uncategorized |1 Comment

For More Information Visit Membrane.com

Google and Wikipedia have blacked-out their homepages in protest to legislation currently on Capital Hill. The new laws would severely limit your right to freedom of speech.

Website Fark.com has put up a humorous response:
“While a bunch of other sites are going “dark” to protest SOPA/PIPA, we’re over the moon about the whole thing. Why? Honestly, we’ve been bringing you the latest news happening across the internet for 12 years, and we’re tired. And SOPA/PIPA is the perfect excuse to quit.

While SOPA might be “almost dead,” it’s not quite all the way there, and under various drafts of both SOPA/PIPA, Fark could have its DNS assignment (the thing that turns an IP address, like 10.0.0.1, into words like Fark.com) revoked without notice simply for linking to content that could come under foreign copyright claims. This means, even if it is actual news in and of itself, if we link to it, we can be shut down. And thank God, cause we’re about ready to crack under the strain of being on top of the news all the time. ”

SOPAblackout.org provides basic insight into the protest:

What is SOPA?
The Stop Online Piracy Act (SOPA, H.R. 3261) is on the surface a bill that attempts to curb online piracy. Sadly, the proposed way it goes about doing this would devastate the online economy and the overall freedom of the web. It would particularly affect sites with heavy user generated content. Sites like Youtube, Reddit, Twitter, and others may cease to exist in their current form if this bill is passed.

What is PIPA?
The Protect IP Act (PIPA, S. 968) is SOPA’s twin in the Senate. Under current DMCA law, if a user uploads a copyrighted movie to sites like Youtube, the site isn’t held accountable so long as they provide a way to report user infringement. The user who uploaded the movie is held accountable for their actions, not the site. PIPA would change that – it would place the blame on the site itself, and would also provide a way for copyright holders to seize the site’s domain in extreme circumstances.

The Electronic Frontier Foundation laid out four excellent points as to why the bills are not only dangerous, but are also not effective for what they are trying to accomplish:

The blacklist bills are expensive. The Congressional Budget Office has estimated that PIPA alone would cost the taxpayers at least $47 million over 5 years, and could cost the private sector many times more. Those costs would be carried mostly by the tech industry, hampering growth and innovation.

The blacklist bills silence legitimate speech. Rightsholders, ISPs, or the government could shut down sites with accusations of infringement, and without real due process.

The blacklist bills are bad for the architecture of the Internet. But don’t take our word for it: see the open letters that dozens of the Internet’s concerned creators have submitted to Congress about the impact the bills would have on the security of the web.
The blacklist bills won’t stop online piracy. The tools these bills would grant rightsholders are like chainsaws in an operating room: they do a lot of damage, and they aren’t very effective in the first place. The filtering methods might dissuade casual users, but they would be trivial for dedicated and technically savvy users to circumvent.

PS I’m hoping it will pass, just to watch government agencies try to comply

Zappos Security Breach Impacts 24 Million Customers

January 17 2012 by admin in Uncategorized |Comments Off

The company *Zappos* committed what is believed to be a crime when they victimized 24 million customers by allowing their personal information to be stolen.

The company is not of much help in supplying information. If you search their website for *security breach* you get the results:

““security breach” We found 154 items!”

Unfortunately, none of the 154 items are about the alleged crimes. Instead, they offer to collect more of your private information.

If you have purchased anything from the website, you should hold Zappos responsible.

NOTE: Zappos is owned by Amazon.com

ACH transaction report

December 7 2011 by admin in Uncategorized |Comments Off

WARNING!
A malicious email is circulation that contains a Trojan disguised as a Microsoft Word Document. The email has the subject line: ACH transaction report. The body of the email looks as follows:

From: “LinkedIn” To: your email address
Subject: ACH transaction report
List-Unsubscribe:
Reply-To: “LinkedIn”

NACHA

The ACH transaction (ID: 701529878422), recently initiated from your checking account (by you or any other person), was canceled by the other financial institution.

Canceled transfer

Transaction ID: 701529878422
Rejection Reason See details in the report below
Transaction Report report_701529878422.doc (Microsoft Word Document)

13450 Sunrise Valley Drive, Suite 100 Herndon, VA 20171 (703) 561-1100

Rootkits And Botnets

October 6 2011 by admin in Uncategorized |Comments Off

A rootkit is a piece of software that can be installed and hidden on your computer without your knowledge. It may be included in a larger software package or installed by an attacker who has been able to take advantage of a vulnerability on your computer or has convinced you to download it (see Avoiding Social Engineering and Phishing Attacks for more information). Rootkits are not necessarily malicious, but they may hide malicious activities. Attackers may be able to access information, monitor your actions, modify programs, or perform other functions on your computer without being detected.

Botnet is a term derived from the idea of bot networks. In its most basic form, a bot is simply an automated computer program, or robot. In the context of botnets, bots refer to computers that are able to be controlled by one, or many, outside sources. An attacker usually gains control by infecting the computers with a virus or other malicious code that gives the attacker access. Your computer may be part of a botnet even though it appears to be operating normally. Botnets are often used to conduct a range of activities, from distributing spam and viruses to conducting denial-of-service attacks (see Understanding Denial-of-Service Attacks for more information).

Why are they considered threats?

The main problem with both rootkits and botnets is that they are hidden. Although botnets are not hidden the same way rootkits are, they may be undetected unless you are specifically looking for certain activity. If a rootkit has been installed, you may not be aware that your computer has been compromised, and traditional anti-virus software may not be able to detect the malicious programs. Attackers are also creating more sophisticated programs that update themselves so that they are even harder to detect.

Attackers can use rootkits and botnets to access and modify personal information, attack other computers, and commit other crimes, all while remaining undetected. By using multiple computers, attackers increase the range and impact of their crimes. Because each computer in a botnet can be programmed to execute the same command, an attacker can have each of them scanning multiple computers for vulnerabilities, monitoring online activity, or collecting the information entered in online forms.

What can you do to protect yourself?

If you practice good security habits, you may reduce the risk that your computer will be compromised:

Use and maintain anti-virus software – Anti-virus software recognizes and protects your computer against most known viruses, so you may be able to detect and remove the virus before it can do any damage (see Understanding Anti-Virus Software for more information). Because attackers are continually writing new viruses, it is important to keep your definitions up to date. Some anti-virus vendors also offer anti-rootkit software.

Install a firewall – Firewalls may be able to prevent some types of infection by blocking malicious traffic before it can enter your computer and limiting the traffic you send (see Understanding Firewalls for more information). Some operating systems actually include a firewall, but you need to make sure it is enabled.

Use good passwords – Select passwords that will be difficult for attackers to guess, and use different passwords for different programs and devices (see Choosing and Protecting Passwords for more information). Do not choose options that allow your computer to remember your passwords.

Keep software up to date – Install software patches so that attackers can’t take advantage of known problems or vulnerabilities (see Understanding Patches for more information). Many operating systems offer automatic updates. If this option is available, you should enable it.

Follow good security practices – Take appropriate precautions when using email and web browsers to reduce the risk that your actions will trigger an infection (see other US-CERT security tips for more information).

Unfortunately, if there is a rootkit on your computer or an attacker is using your computer in a botnet, you may not know it. Even if you do discover that you are a victim, it is difficult for the average user to effectively recover. The attacker may have modified files on your computer, so simply removing the malicious files may not solve the problem, and you may not be able to safely trust a prior version of a file. If you believe that you are a victim, consider contacting a trained system administrator.

As an alternative, some vendors are developing products and tools that may remove a rootkit from your computer. If the software cannot locate and remove the infection, you may need to reinstall your operating system, usually with a system restore disk that is often supplied with a new computer. Note that reinstalling or restoring the operating system typically erases all of your files and any additional software that you have installed on your computer. Also, the infection may be located at such a deep level that it cannot be removed by simply reinstalling or restoring the operating system.

Author: Mindi McDowell

Traffic Ticket Scam

October 6 2011 by admin in Uncategorized |Comments Off

The following is a current computer attack posing as a traffic ticket from the New York State Police:

From: “Burnett Bowman”
To:
Subject: UNIFORM TRAFFIC TICKET (ID:98389816)

New York State — Department of Motor Vehicles

UNIFORM TRAFFIC TICKET (ID:67490909),
———-
POLICE AGENCY
NEW YORK STATE POLICE
Local Police Code 2163
THE PERSON DESCRIBED ABOVE IS CHARGED AS FOLLOWS

Time: 7:25 AM
Date of Offense: 07/02/2011
IN VIOLATION OF NYS V AND T LAW

———-
7616 Description of Violation
SPEED OVER 55 ZONE

TO PLEAD, PRINT OUT THE ENCLOSED TICKET AND SEND IT TO TOWN COURT, CHATAM HALL., PO BOX 117
Content-Type: ;
name=”Uniform traffic ticket.zip”

Content-Disposition: attachment;
filename=”Uniform traffic ticket.zip”

Attachment Converted: “c:\attach\Uniform traffic ticket.zip”