The hunt is on for internet security specialists and leading the charge are some of the country’s top universities and companies.

The Open University is founding sponsor of the Cyber Security Challenge UK which has just been launched in London.

It is a Challenge put together to help the most talented individuals in the UK education system that might be attracted to a career in the internet security profession.

Behind the Cyber Security Challenge are universities (including Queen’s University Belfast and Royal Holloway), government departments, trade bodies and industry companies.

The idea is to attract and harvest as many budding internet security professionals as possible.

The Challenge is in the form of a number of competitions designed by the initiative’s backers. The competitions are online and face-to-face.

All this comes at a time of increased cyber crime and a recognition of the fact that the country lacks home grown talent to cope with the threats now and those likely in the future.

Over 30 prizes are available and include advancements in cyber security careers, or education. One of the top prizes on offer is a bursary worth £3,300 from Queen’s University Belfast to study a MSc course in Electronics and Security. Other prizes include placements on private sector training courses – including a two week stint at Detica Cyber Security Academy and time at the Sans Institute.

Further prizes include access to industry resources and expertise, and memberships of trade bodies, including the Institute of Information Security Professionals, the British Computer Society (BCS) and the Information Systems Security Association (ISSA).

Kevin Streater, Executive Director of IT&Telecoms, said:
“The Cyber Security Challenge UK deals with issues spanning both education and technology. We see it as an excellent opportunity to continue our long-standing partnerships with industry to address the national challenges facing our workforce. Education institutions can only offer cutting edge skills to their students when they understand what the current challenges are, and the skills required by industry to address them. The Open University is committed to helping organisations to find innovative ways to deal with these skills gaps.”

The government Minister for Security, The Rt Hon Baroness Neville-Jones, who officially launched the Challenge said:
“Cyberspace is woven into the fabric of our society; it is integral to our economy, our communities and our security. Defending all of our interests in cyberspace is a relatively small cadre of talented and highly skilled public sector and private sector cyber security professionals. This pool of professionals must grow and the Cyber Security Challenge UK offers an innovative and exciting way of attracting talented individuals to take up rewarding careers in this field.”

Guest Article by Neil Camp

A new study has again warned that porn site users are opening themselves up to attacks from cyber criminals.

Porn sites users are at risk because the sites they frequent not only often harbour malware, but also entrap users in various schemes and shady deals.

The report, which highlights the dangers that porn site users face, was prepared by the International Secure System Lab.

Dr Gilbert Wondracek, who led the study, said that the intense competition amongst the online porn industry made matters far worse: ”They have almost inadvertently created a whole ecosystem that’s easy to abuse for cyber crime on a large scale. There are studies looking at the profitability and economics of the industry but we are the first to come at it from a security and more technical point of view.”

The techs at the International Secure System Lab built their own porn sites and quickly discovered that many porn site users are very vulnerable to computer viruses and loopholes.

Dr Gilbert pointed out that the study had been basically carried out to test the commonly held assertion that porn site users are at risk. He added: “There are studies looking at the profitability and economics of the industry but we are the first to come at it from a security and more technical point of view.”

Dr Gilbert stressed that it was often hard for the average user to tell a porn site which is honest, compared to one that might be hiding malware threats.

Of the 35,000 porn site domains studied in the report, it was discovered that 90% were ‘free’ sites and that these acted as ‘funnels’ for sites that require payment to view their content.

The 35,000 domains published some 269,000 individual websites. The study looked at all these sites and discovered that a touch over 3% were booby-trapped with malware, including viruses, spyware and adware. What’s more, many other sites used tools such as JavaScript catchers which make it hard for porn site users to actually leave the site.

Other sites immediately transferred those people hoping to view a video, to say a number of affiliate sites, which creates a circle of click trading. Dr Gilbert said: “Visitors are being abused as click bots. It’s cut-throat competition. Everybody tries to get as much traffic as possible.”

Porn site users are being told to be aware of “safe browsing modes” when visiting such websites and to keep their anti-virus software up-to-date.

Guest Article by Neil Camp

Its been reported that a Trojan Horse attack has been mounted on Google’s Chrome browser.

The warning that the Trojan Horse attack is being perpetuated by cyber criminals intent on exploiting Google’s increasing popular Chrome browser was posted in a BitDefender blog.

The blog, called Malware City, regularly updates people on virus trends and BitDefender, like most of the computer security companies, see it as their role to alert computer users worldwide to threats and trends.

The Trojan Horse attack is based on the virus posing as a Google Chrome extension. It has been circulated by invidious hackers who now see Chrome as a very viable target. The method of the Trojan Horse attack is via an email which falsely claims that Google has launched a new Chrome extension which helps the user to better organise documents received in emails.

BitDefender discovered that the link that this spurious email contained was back to a fake page posing as a genuine Google Chrome extension page. And this page contained a download which contained an executable file contained the malware, the Trojan Horse attack.

Once downloaded, the Trojan Horse actually blocks attempts by the user to access Google and Yahoo websites, sending them instead to other websites which are loaded with other malicious files and content.

BitDefender has identified this Trojan Horse attack. It’s called Trojan.Agent.20577 and it’s one most definitely to be avoided at all costs.

How to Protect Against Trojan Horse Attacks

Don’t get careless; even if you have the best antivirus software that is always up to date Trojans can still attack. To prevent getting attacked by a Trojan horse before you download a file and open it. Ensure you are confident you know the source and the content of the file. You can protect yourself from Trojans by only downloading files from websites you are certain are 100% genuine.

Trojan attacks can also come from friends, via email or instant messenger, as many Trojan attacks are designed to spread automatically. If the email looks suspicious with spammy content then do not click on the attachment. If in doubt you can always ask the recipient if the attachment is genuine. You can also use antivirus software to scan the file.
 

Guest Article by Neil Camp

One of the biggest computer security companies has just announced that it has fortified its virus research labs to help, it says, fight worldwide cybercrime in its many guises.

In comes in industry veteran Yuval Ben-Itzhak and a number of other researchers in order to help AVG stay ahead of the game. Ben-Itzhak is appointed senior vice president of engineering and will help detecting trends and the latest techniques used by the cybercrime community.

AVG Virus Research Labs have the benefit of over 110 computers across the globe which form a network of feedback and, in effect, early warning stations. It leverages all the information gained to try and stay one step ahead of the cybercrime fraternity. This ability to detect trends in real-time has given AVG a great tool and one which is licensed by other software security companies. AVG also works alongside law enforcement agencies and executives in such fields as the financial services sector, to help spot the latest cybercrime ruses, including bank frauds, phishing emails and identity theft schemes.

Ben-Itzhak will lend his considerable knowledge and experience to the AVG effort and he was previously chief technology officer for one of the world’s leading computer security companies. As well as holding a number of patent applications and US patents himself, he is considered a keynote speaker for the media and at conferences.

Roger Thompson, Chief Research Officer, AVG Technologies, said:

“The AVG Virus Research Lab is the cornerstone of our operations, working at the front lines to hunt down the bad guys and protect our customers from their malicious schemes. Consumers, small businesses and law enforcement all rely upon AVG for security trends insights and specific remedies to halt exploits.”

And for those interested in the latest cybercrime trends, they can access the AVG site for more information.

Guest Article by Neil Camp

Computer protection is now at the forefront of computer-users minds as the threat of viruses continues to get stronger. Long gone are the days of teenagers hacking into your email just for the fun of it, today’s hackers are vehemently linked to financial gain; making this a common and deadly threat.              

So what makes someone spread a computer virus and what would they have to gain from it? The kind of personality that creates computer viruses varies with everyone from young to old. There is little pattern to show that social standing, education standards or country of origin makes much of a difference because the major reasoning behind spreading a virus is to make money.  

The greed for money is universal and dishonest computer virus creators are no more than a common criminal except they are somewhat more dangerous as they have the knowledge and power to steal your identity and your money. Virus spreaders have a lot to gain but of course, all at someone else’s expense.  

The psyche of someone who spreads computer viruses is that of a thief. But because they never come face to face with their victims they feel as though they are doing little wrong and are often unaware of the damage they cause.

How to stop computer viruses? 

Antivirus PC software is one of the simple but effective ways you can combat the threat of computer viruses. It acts as a firewall to stop these financially motivated individuals or groups from accessing your computer. It also offers computer protection by warning you if it thinks you are about to download a possible virus from a website. 

Using antivirus PC software is fine for your computer but what about the mobile Internet? You should also use some sort of antivirus protection for your phone, PDA, and whatever other wireless devices you may be using to surf the web. Take a look at our antivirus comparison table to see the avaibable antivirus software that will protect your computer.

Those computer users keen on staying safe online now have the chance to read the thoughts of lady bloggers from F-Secure.

F-Secure, a major player in the computer security sector which is based in Helsinki, Finland, has launched Safe and Savvy, which it bills as a blog for anyone interested in staying safe online. It promotes the practise of smarter social networking and promotes protecting irreplaceable content.

What’s more, it’s written by ladies who play crucial roles throughout the company. The Safe and Savvy Blog attempts to put a conversational spin on everyday matters which concern computer users. And the sort of subjects covered will be useful strategies on how to stay safe whilst on social network sites, online banking, and filing and storing digital records such as precious photographs.

Therese Cedercreutz, who is Director Direct Business and Marketing at F-Secure, says:
“Cyber security is often discussed in very technical terms. At F-Secure we have a number of savvy ladies who are well versed in how to keep your content, yourself and your loved ones safe in the online world and who can talk about it in an easy-to-understand, non-technical way. On Safe and Savvy we hope to give helpful tips and have discussions with our readers so they can steer clear of the pitfalls and enjoy their time on the web.”

The company first started writing blogs in 2004 and they claim it is now a well-known and respected source of news for cyber security and crime.

The bloggers, who are all ladies apart from one male admits F-Secure, work in all parts of the company and whereas some have technical jobs and expertise, others come from the business and other departments. But all, say F-Secure, have a passion for sharing their knowledge of online security, which is not only based on their professional lives, but also their personal experiences.

Guest Article by Neil Camp

From computers and laptops to a notebook or an iPhone; all of these and many more gadgets are around today to help us to access the internet wherever we may be. Antivirus protection is becoming a necessity.

We can be sitting at home, on the train to work or out on a Saturday night, but with the latest gizmos we can always access the net but this begs the important question: do you have the best antivirus to stop you from being phished?  

Antivirus PC software sometimes come installed on new computers and internet related equipment purchased but the phishers are changing their style everyday so you have to as well.

Phishing is the latest word for a type of computer hack where the hacker attempts to gain sensitive information like log-in details and passwords. It is totally illegal but finding the guys, girls or groups that carry out these types of scams is tricky so you need to make sure you are fully secure with up-to-date antivirus PC software.

How do I protect myself online?

If you are looking online for some of the top security PC software you will come across many companies that offer various protection packages.  

As well as using security PC software you may want to level some commonsense that will be invaluable when surfing the net. Many of us use social networking sites and phishers have been targeting the likes of Facebook and Twitter as a new way of gaining information.  

You can do a lot to protect yourself online and here a few ideas: 

• Limit your personal information you post on social networking sites.
• Do not accept friend requests from people you do not know.
• Never give personal information via these types of sites, even to friends.

 If you are concerned about internet security and are looking for antivirus PC software check out these special offers on antivirus software

Guest Article by Louise Goldstein

A top computer security firm is saying that one in ten people have already fallen victim to data theft.

IT security expert Avira, one of the world’s leading IT security solution companies for both the professional and personal markets, discovered from their web-based moral issue survey, that internet users seriously underestimate the ability of cyber-criminals to access their data.

Over 5,000 people were questioned online and whilst most said they were aware of the security problems posed in today’s high-tech world, they did admit that they weren’t completely prepared for the ingenuity of the modern day cyber criminal.

Avira is a German based company which operates in a number of countries. It is perhaps best known for its virus protection programme called Avira AntiVir Personal, although it also helps protect companies, educational organisations and government authorities from cyber crimes.

And although half of those taking part in the survey said they had not noticed any attack on their data, Avira confirmed its likely only those that use extensive security protection would in fact realise their integrity has been comprised.

Avira pointed out that such is the sophistication of the modern virus programmes, that their detection is increasingly difficult and near-impossible without antivirus pc software.

Perhaps very worryingly, nearly a quarter of the survey participants said they wouldn’t be that concerned if they were attacked, as they doubted if they had anything of interest for the hackers! But Avira were keen to point out this is a dangerous stance and delusionary, mainly because an individual computer can be taken over and used as a bot, part of a bot net which can be used to distribute illegal spam. So a user, unknowing his own computer is part of a bot-net, might find themselves at the wrong end of a visit from the authorities in some cases.

Of those that have already fallen prey to some form of data theft, many had discovered that their Facebook and EBay accounts had been hacked, plus their email accounts. Having your personal accounts hacked in this way can get you into trouble so it important security pc software is used.

Avira’s products also include Avira AntiVir Premium which is also useful for filtering-out phishing sites and Avira Premium Security Suite which offers comprehensive protection.

Guest Article by Neil Camp

The online leak of the Microsoft free tool which helps law enforcement agencies to retrieve forensic evidence in the first ‘rush’ of a crime scene is perhaps not as serious as first thought.

This site ran a story a while back which announced that Interpol’s Global Security Initiative (GSI), which focusses on international security challenges, has been given free use of Microsoft’s Computer Online Forensics Evidence Extractor (hence COFEE) to help the fight against cyber crime.

COFEE help scene of the crime officers gather computer evidence in-situ and quickly. This type of evidence is regarded as volatile and not as efficiently collected as traditional forensic evidence. Microsoft hoped that by giving Interpol, and others, COFEE, it would go a long way to help combating the spread of cyber crime.

But reports from various sites online say that Microsoft does not regard the leak as a major leak. It is said to be investigating the circumstances behind it, but pointed out that COFEE is fundamentally an application which contains a collection of digital forensic tools which are common throughout the world. In other words, it is not ‘secret’ code which will unlock forensic tricks and techniques for the criminal community.

What’s more, those in the know said that the leaked version of COFEE was incomplete, with maybe less than 50% of the programme out there. Which leads watchers of the saga to the conclusion that COFEE is about procedure and technique in the heat of the incident, rather than a magical code which allows the police to get the upper hand.

Indeed, some experts have stated their disappointment that COFEE was not better than they had expected. Some went as far as to suggest that other similar programmes on the market would do a better job.

Some cynics have also stated that maybe Microsoft is deliberately downplaying the incident to avoid any embarrassment over its leaking which is not a great advertisement for the company, or the product. Also, others have challenged Microsoft’s relaxed attitude, given that maybe some criminals could learn from the leak and adapt their browsing and internet use accordingly.

Guest Article by Neil Camp 

It may still seem to be the plot from a major blockbuster, but the threat of cyber warfare is now reality warns McAfee in its fifth annual Virtual Criminology Report.

The report has revealed that five countries – the United States, Russia, France, Israel and China – are now armed with cyber weapons. The report also highlights the fact that politically motivated cyber attacks have increased.

Dave DeWalt, McAfee president and CEO, said:
“McAfee began to warn of the global cyber arms race more than two years ago, but now we’re seeing increasing evidence that it’s become real. Now several nations around the world are actively engaged in cyber war-like preparations and attacks. Today, the weapons are not nuclear, but virtual, and everyone must adapt to these threats.”

The McAfee Criminology Report includes insights from over 24 of the world’s leading experts in international relations. This includes Dr Jamie Saunders, counsellor at the British Embassy in Washington D.C. and security experts with experience at the U.S. National Security Agency and the Australian Attorney-General’s Department. Paul Kurtz, former White House advisor, wrote the report on McAfee’s behalf.

For the first time, the McAfee report provides a model to define cyber war. Furthermore, it identifies the countries involved in developing cyber offenses and cyber defences and dissects examples of politically-motivated cyber attacks.

The McAfee report also reveals how the private sector will get caught in the crossfire and worries that due to strict Government disclosure rules,
cyber initiatives and information are often classified, hindering cybercrime defence in the public and private sector.

In a nutshell, the McAfee report identifies a number of key issues and challenges.

William Crowell, a former Deputy Director of the U.S. National Security Agency, says in the Virtual Criminology Report.
“Over the next 20 to 30 years, cyber attacks will increasingly become a component of war. What I can’t foresee is whether networks will be so pervasive and unprotected that cyber war operations will stand alone.”

This year’s report identifies the following issues and challenges.

First and foremost is the fact that cyber warfare is now a reality. McAfee reckons that over the last 12 months, the increase in politically motivated cyber attacks has raised alarm. Targets have included the White House, Department of Homeland Security, U.S. Secret Service and Department of Defence in the U.S. What’s more, a number of countries are actively developing cyber warfare capabilities and are actively involved in the cyber arms race, targeting government networks and critical infrastructures.

Perhaps most worrying, is that cyber weapons are targeting critical infrastructure. In other words, attackers are not only building their cyber defences, but cyber offenses, which means targeting infrastructure such as power grids, transportation, telecommunication, finance and water supplies. The attraction here is that damage can be caused quickly and with little effort.

McAfee makes the point that cyber warfare is undefined. It entangles so many different actors in so many different ways, that the rules of engagement are not clearly defined. Furthermore, there is much debate on how much responsibility should be placed on organizations to protect and educate the public on preventing cyber attacks. It comes down to the fact that without a proper definition in place, it is nearly impossible to determine when a political response, or threat of military action, is warranted.

And the private sector is the most vulnerable sector. McAfee points out that in many developed countries, critical infrastructure is privately owned, making it a huge target for cyber warfare. The argument is that the private sector relies heavily on the government for protection. Should a cyber war start, governments, corporations and private citizens may get caught in the crossfire. And without insight into a government’s cyber defence strategy, the private sector is not able to be proactive and take the proper precautions.

In all, being targeted by a determined cyber attack on a large scale can reek huge damage.

Guest Article by Neil Camp