Tell a Friend About CR4
Engineering Toolbar
Search GlobalSpec
Login | Register
Home | Solutions for Industrial Computing | Security Threats Abound


Solutions for Industrial Computing

The Solutions for Industrial Computing Blog is the place for conversation and discussion about industrial computers, systems and controllers; communications and connectivity; software and control; and power strategies. Here, you'll find everything from application ideas, to news and industry trends, to hot topics and cutting edge innovations. This blog is inspired by the Solutions for Industrial Computing newsletter from GlobalSpec, which you can subscribe to here.
Previous in Blog: When and Why Should You Update Application Software?   Next in Blog: How Secure are Security Certificates?
Close

Comments Format:






Close

Subscribe to Discussion:

CR4 allows you to "subscribe" to a discussion
so that you can be notified of new comments to
the discussion via email.

Close

Rating Vote:







9 comments
Subscribe Rate this Comments: Nested

Security Threats Abound

Posted January 03, 2009 8:24 AM

With all the nasty stuff out there in the Internet's ever-pervading ether, everyone — individuals and companies alike — need to protect themselves from intrusions such as bots, malware, spyware, Trojans, zombies, and a lot more. How does your company or you personally thwart such attacks? What software, or combination thereof, is best? This correspondent does feel more secure when I get a message saying something like a malicious intrusion was successfully defeated. What do you think?

The preceding article is a "sneak peek" from Solutions for Industrial Computing, a newsletter from GlobalSpec. To stay up-to-date and informed on industry trends, products, and technologies, subscribe to Solutions for Industrial Computing today.

Interested in this topic? By joining CR4 you can "subscribe" to
this discussion and receive notification when new comments are added.

Comments rated to be Good Answers:

These comments received enough positive ratings to make them "good answers".
2
edignan
Guru
Engineering Fields - Software Engineering - New Member Popular Science - Weaponology - New Member

Join Date: Jun 2006
Location: San Diego
Posts: 2327
Good Answers: 48
#1

Re: Security Threats Abound

01/03/2009 10:42 AM

Things get religious when specific software is named, so I'll go with generic answers.

I am sure I'll get told where I go wrong.

Create two nets: one internal, one external. Do not cross the two. At all.

Crucial machines do not go on the external (i.e. CNC machines) if you have them. Always know that anything exposed to the Internet might as well be public.

Internet access for employees and email get outsourced to a separate firm with robust security, with regular backups and archiving.

Internal network is computer -> share drives or internal storage. No GototmyPC or similar functions allowed. Easiest just to not let employees install anything.

If you must have external access (traveling employees, file sharing with vendor, etc.) have your outside vendor create an FTP site with robust security, and ensure they are dynamic to need. To trade files, create the site, populate it, pass the site address and password to the vendor with a time limit. When the time limit expires, clear the files and delete the site. Same for traveling employees.

Shoot any employee with a thumb drive. Better, epoxy the thumb drives shut.

Kind of severe, but your only other option is hire an IT department internally, and pay for the expertise you need, security is a full time job - so I suggest outsourcing to someone who already does this.

Took years for large companies to catch on, when re-hired by one firm I found all my passwords INCLUDING MY VPN were still active.

Just one paranoid man's opinion - but the only infestation the Pentagon has had in years was from a thumb drive brought into the building. Your servers hold all of your intellectual property - what is it worth to protect it?

__________________
Insert pithy quothe here - Emmett
Good Answer (Score 2)
No more Good Answers.
elnav
Guru
Canada - Member - New Member Hobbies - Musician - New Member

Join Date: Dec 2006
Location: Western Canada
Posts: 1478
Good Answers: 36
#4
In reply to #1

Re: Security Threats Abound

01/04/2009 5:24 PM

A general question. Norton sells an Anti virus program and also an Internet Security program and then a Systems Security program. Reading the box doesn't tell me exactly what does which and why the distinction between anti virus and security. Seems to me it's all part and parcel of the same thing. What I do not see is a clear description of whether the program runs continual heuristic analysis of all current activity. I think some of the marketing BS - excuse me baffle gab; has created some confusion. Why bother with only a daily scan. The protection should be continuous and constant. A long time ago (over ten years ago) when I first got involved with fighting virus there was programs that continually scanned critical areas of the memory and the disk for suspicious activity. The instant anything attempted to write to these critical areas it flagged the activity. These days most anti virus programa only seem talk about doing once per day or once per week scans for virus. WHY? Is it no longer considered necessary to do continuous scans and heuristic analysis?

__________________
Elnav
Andy Germany
Guru
Popular Science - Weaponology - New Member Safety - ESD - New Member Hobbies - Fishing - New Member

Join Date: Sep 2006
Location: Near Frankfurt am Main, Germany. 50.390866N, 8.884827E
Posts: 7942
Good Answers: 61
#2

Re: Security Threats Abound

01/04/2009 5:21 AM

I have a hardware firewall, a software firewall and good anti virus/rootkit software (Kaspersky), but just for fun I tried a new virus scanner on two of my laptops and found several viruses and malware!!

I am most impressed.....

The software is freeware and called Dr Web (I downloaded mine from a leading German magazine's web page, fully checked for any bugs etc).......if anyone needs a link let me know......its also in English and is NOT installed on your PC, it runs each time from the place where you have stored it (its called "Launch.exe").

Here is a link:- http://www.freedrweb.com/cureit/

I will help anyone if needed, but it really is easy to ru. It only found my viruses when I switched into a complete scan (only possible after it has checked out your memory first by the way!).

__________________
"A lie or untruth is halfway round the world before the truth has got its trousers on" Sir Winston Churchill
elnav
Guru
Canada - Member - New Member Hobbies - Musician - New Member

Join Date: Dec 2006
Location: Western Canada
Posts: 1478
Good Answers: 36
#3
In reply to #2

Re: Security Threats Abound

01/04/2009 5:14 PM

Andy Germany wrote: I tried a new virus scanner on two of my laptops and found several viruses and malware!! Here is a link:- http://www.freedrweb.com/cureit/ REPLY Andy, I see a couple of options on the website when you go to Download. One is an ISO CD image. Would this be better for use on a machine which no longer has a usable O/S? I haven't quite yet mastered how to burn a CD using UBUNTU. But this looks like the tool I need.

__________________
Elnav
Andy Germany
Guru
Popular Science - Weaponology - New Member Safety - ESD - New Member Hobbies - Fishing - New Member

Join Date: Sep 2006
Location: Near Frankfurt am Main, Germany. 50.390866N, 8.884827E
Posts: 7942
Good Answers: 61
#6
In reply to #3

Re: Security Threats Abound

01/06/2009 4:35 PM

You are talking to a Linux idiot - me!!

I will have to start learning it later this year, but my knowledge is minimal at this time.

The link was intended for Windows users.....sorry!

__________________
"A lie or untruth is halfway round the world before the truth has got its trousers on" Sir Winston Churchill
elnav
Guru
Canada - Member - New Member Hobbies - Musician - New Member

Join Date: Dec 2006
Location: Western Canada
Posts: 1478
Good Answers: 36
#7
In reply to #6

Re: Security Threats Abound

01/06/2009 5:12 PM

Thanks in part to your links I did some more prowling in the website. Found an ISO CD image that I downloaded. Turns out that my copy of UBUNTU already has the ability to burn a CD. You do not need to install a special program like NERO or whatever. In my case I simply right clicked and got a menu and then dragged the relevant file over to the CD icon. I tested it and it works.

Unfortunately the check arrived in the mail and now I have to spend time working for a living again.

As soon as I get a chance to test this new program on the damaged drives I will report back.

__________________
Elnav
elnav
Guru
Canada - Member - New Member Hobbies - Musician - New Member

Join Date: Dec 2006
Location: Western Canada
Posts: 1478
Good Answers: 36
#8
In reply to #6

Re: Security Threats Abound

01/06/2009 5:24 PM

Andy wrote:

You are talking to a Linux idiot - me!!

I will have to start learning it later this year, but my knowledge is minimal at this time.

REPLY

I'm only half a step ahead of you. But I am more and more impressed with UBUNTU every day I use it. My digital camera came with a CD that I had to install in Windows befoer I could download th epictures I took.

Someone suggested that Linux could do that without needing a program. Sure enough, as soon as I plugged in the USB cable between camera and Linux computer th pictures downloaded automatically and were placed in the correct folder. Then I discovered UBUNTU also included a Photoshop like program for editing the pix.

Linux may not be totally immune to all malware but so far it does seem to have an edge over windoze.

Oh year, we are now watching TV programs on the Linux machine. We live so remotely that even cable TV is not an option. But I can watch the regular network TV shows. Also browse news casts play music etc. All without needing special add-on modules or whatever. It came bundled with the UBUNTU CD.

The only thing it doesn't seem to do is give me the blue screen of death.

__________________
Elnav
Andy Germany
Guru
Popular Science - Weaponology - New Member Safety - ESD - New Member Hobbies - Fishing - New Member

Join Date: Sep 2006
Location: Near Frankfurt am Main, Germany. 50.390866N, 8.884827E
Posts: 7942
Good Answers: 61
#9
In reply to #8

Re: Security Threats Abound

01/07/2009 12:01 PM

Yes, we sometimes miss those things that annoy us, blue screen of death, ex wives, cancer of the lungs.......

__________________
"A lie or untruth is halfway round the world before the truth has got its trousers on" Sir Winston Churchill
caramba
Guru
Engineering Fields - Instrumentation Engineering - New Member Hobbies - Fishing - New Member

Join Date: Jan 2008
Location: Kazakhstan
Posts: 751
Good Answers: 8
#5
In reply to #2

Re: Security Threats Abound

01/05/2009 2:03 PM

Ditto, cureit the only antivirus which could find a lot of malware after Kaspersky, AVG and the like. I've copied it on CD and check out PC time to time.
9 comments
Interested in this topic? By joining CR4 you can "subscribe" to
this discussion and receive notification when new comments are added.

Comments rated to be Good Answers:

These comments received enough positive ratings to make them "good answers".
Copy to Clipboard

Users who posted comments:

Andy Germany (3), caramba (1), edignan (1), elnav (4)

Previous in Blog: When and Why Should You Update Application Software?   Next in Blog: How Secure are Security Certificates?
You might be interested in: Desktop Personal Computers, Notebook and Laptop Computers, Computers, All Types


"Persistence prevails, like a stream that is temporarily blocked by boulders and then collects force enough to overflow onward." -- Vernon Howard

All times are displayed in US/Eastern (EST) (Register to change time zone)

©2005-2009 GlobalSpec. All rights reserved.
GlobalSpec, the GlobalSpec logo, SpecSearch, The Engineering Search Engine
and The Engineering Web are registered trademarks of GlobalSpec, Inc.
CR4 and Conference Room 4 are registered trademarks of GlobalSpec, Inc.
No portion of this site may be copied, retransmitted, reposted, duplicated or
otherwise used without the express written permission of GlobalSpec Inc.
350 Jordan Rd, Troy, NY, 12180

Got Something to Say?


Search this Blog
Solutions for Industrial Computing:

Search all of CR4

Recent Blog Entries
  • Is Cloud Computing in your Future?
  • Handhelds or Smartphones on the Job
  • Cloud Computing: Boon or a Bust?
  • Say Goodbye to Batteries?
  • Is privacy an issue when it comes to the latest computerized electronics?
  • Should Police ID Internet and Wi-Fi Users?
  • How Secure are Security Certificates?
  • Security Threats Abound
  • When and Why Should You Update Application Software?
  • Do Leave Home Without It!
  • Show all Blog Entries

    • Blog Tags
    al mond overclocking watercooled

    CR4 Sections
    Automotive
    BioMech & BioMed
    Chemical & Material Science
    Civil Engineering
    Communications & Electronics
    Education
    Electrical Engineering
    Engineering Careers
    General
    Instrumentation
    Manufacturing
    Mechanical Engineering
    New Technologies & Research
    Software & Programming
    Sustainable Engineering

    Site Indices
    Forum Index
    Blog Index
    User Group Index
    RSS Feeds
    CR4 Store

    CR4 FAQ
    Site Glossary

    Who's Online (140 right now)
    Show Members