When you go online‚ your IP address leaves a digital footprint as you travel the Internet. Its better if you have a dynamic IP address (changes often) because with static IP’s, Online retailers and search engines can literally monitor and log all your Web searches and activities whenever you go online. Most of them do this to display products or advertising that they think you might like. Your in danger with Internet Explorer (IE) 8 (java, javascript, cookies, what’s related etc)…but people just keep using the product. People don’t really want that kind of overwhelming invasion of privacy as they react, and seek ways to shut it down. Being protected (protecting your information) is just the smart thing to do.

When I surf the Net using Internet Explorer 8, a third party firewall and antivirus, I will generally receive 30 to 80 items of adware (cookies) within 30 minutes to an hour depending on the number of sites I visit based on the amount of research I am conducting. These are usually easily removed with my antispyware software but, it gives you a measure of what is happening to many users on the Wild, Wild Web. You still leave records and log files which an online snooper can use to gather information on your online activities.

There are many techniques to cleaning up your web browsing tracks, (none of which are very intuitive and fail-safe). One way you can do this is use Firefox.  Firefox touts the "Clear Recent History" menu item, effectively clearing out traces of your prior web surfing trail. The Fox also allows you to instruct it to perform this housekeeping operation when you close the browser. Firefox is the closest thing many Windows users can get (for the price…Free) to a browser, designed from the ground-up with privacy and security in mind. The private web surfer needs to get anonymous.

Why you need Anonymizer Universal

Anonymizer Universal keeps all your online activities private and anonymous. You no longer need to worry as you surf the web with privacy. Anonymizer’s main job is to keep your surfing habits private, giving you a peace of mind that only comes from knowing that your privacy features are automatically taken care of for you. Its powerful VPN technology‚ (combined with our hardened‚ secure network and proprietary IP rotating technology) keep all your Internet activities—Web browsing‚ email‚ chat‚ webcam—private and anonymous. No one will have any idea what Web sites you are visiting or what you are doing‚ except as you choose. It protects you from unauthorized roving eyes.

- It has Simple Installation

- Easy-to-use ON/OFF Interface

- Seamless Connection

- Universal compatibility across platforms-Mac®‚ iPhone®‚ and Windows®

- Secure mobile Internet access from your iPhone

- Concurrent logins that allow you to be protected on your iPhone and computer simultaneously- 
  whenever and wherever

How it works

Each day‚ an encrypted (VPN) tunnel is established (for all of your internet traffic) as you connect to Anonymizer’s secure servers (your computer's IP address gets replaced with a different‚ anonymous IP address when you access the internet). Your daily‚ anonymous IP address comes from a pool of tens of thousands of U.S. IP addresses that are ordinary and untraceable. All ports and protocols are secured (blocking outgoing mail port 25). This gives you Confidentiality and Security as your data and personal information travel the Web. This also provides an extra layer of protection for your Wi-Fi connections, no matter where you connect.

Protected however you connect

However you choose to access the Web–at home and on the go–all your Internet activities are private and anonymous. From your computer or iPhone®‚ Anonymizer Universal keeps your online universe protected. All Anonymizer Universal’s servers and authentication procedures are completely secure and can only be accessed by Anonymizer. No third parties have access to any information about users or their Web surfing activities. In addition‚ all user Home User IP addresses are located within the United States.

Your wireless connection—secure

Accessing the Internet through Wi–Fi connections at airports‚ shopping malls‚ coffee shops‚ or libraries makes it easy to work and stay in touch from anywhere‚ but hackers can be lurking in these hotspots making your experience insecure. Anonymizer Universal keeps your activities over wireless connections safe from monitoring by eavesdroppers and criminals.
 
Privacy. Power. Simplicity

Anonymizer Universal takes Anonymous Surfing to the next level giving you the ultimate in online protection from home or when using Wi-Fi‚ anytime and anywhere you connect. Ease-of-use‚ faster surfing‚ a powerful VPN tunnel‚ and Anonymizer’s proprietary technologies combine to keep your online activities-email‚ surfing‚ chat‚ all the things you do online-private and secure on your computer and iPhone. This product offers a 30 day free trial and (priced at $79) this tried and tested Rotator technology guarantees your anonymity every time you connect online.

Our first encounter with (encryption) secret writing (on record) is Egyptian Hieroglyphs. Eventually these produced secret  symbols that advanced into other languages. Time gave us ceaser ciphers , Vigenere squares, Jefferson ciphers, transpositions, substitutions, multi-literals, multilaterals, poly-graphics, poly-alphabetics, syllabics, codes etc. As the systems grew more complex, the attacks developed with them. No cipher or code is infallible. The Polish and the British proved if it is man-makeable it is man-breakable. Cryptography is a mathematical science and the making and breaking of codes and ciphers is an art within that science. All codes or ciphers are based on the mathematical baseline established within the cryptographic community.

As computers become more incorporated into our everyday lives--online shopping, bill payment, etc.--it's easy for your hard drive to become filled with online shopping receipts , electronic statements, miscellaneous login/password information, and other private documentation that you'll want to keep away from wandering eyes. Some ISP’s and websites routinely read the contents of your hard drive. What's the best way to keep your personal information private on your computer?  Encryption will supplement your firewall, antivirus and antispyware but it will not replace them. This technical know-how enables you to maintain your privacy while your enjoying the benefits of the digital revolution.

Create An Account

Even if you don't share your computer with other people, it's always a good idea to create an account that you need to manually log into. Windows does a pretty good job at keeping users' files private and out of reach from other users. No Windows security technique is rock solid, and certainly shouldn't be relied upon as one's only means of privacy and security, but (if your going to use Windows) it adds an extra layer of obstruction to further frustrate unauthorized access to your systems.

Windows' OS Built-In Encryption

Using Windows' EFS--Encryption File System--technology will obfuscate your files, making them truly confidential and "for your eyes only". EFS is available in most versions of Windows: 7, Vista, XP, and 2000. Fire up an instance of Windows Explorer and navigate to a file or folder you'd like to encrypt for privacy purposes. In the popup menu, select Properties, General Tab, Advanced, and select "Encrypt content to secure data" to begin the encryption process. You'll receive a confirmation dialog asking you if you want to encrypt the files and child subfolders inside the folder if you're encrypting an entire directory with files residing inside of it.

Once the encryption processes finishes, your files will be encrypted. The beauty of using Windows' built-in encryption is that you don't need to input a password or jump through hoops every time you want to access your encrypted files; all you need to do is login to your account, and you'll be able to treat your encrypted files as if they weren't even encrypted! Other users on the PC won't be able to access your protected data, as the only way to do this is to have access to your private account, so, as common sense dictates, keep your login/password confidential and arbitrary enough so that they cannot be easily guessed for nefarious reasons.

Microsoft has (lots of bells and whistles) not had a good reputation for security within the IT field. They have reached into the realm of firewalls, antivirus, encryption etc. I go to the experts for internet security (firewalls, antivirus and anti-spyware) and I would rather use an encryption method that doesn't depend on Microsoft's engineering (I’m a LINUX Man). I recommend anyone else to do the same.

EncryptStick

Give EncryptStick a try. EncryptStick is is great at creating encrypted "containers" to store all your precious data in; these encrypted containers can then be mounted via the EncryptStick service to gain access to the container's contents on the grounds that a correct password is input when prompted. EncryptStick is the easiest way to protect all the documents, photos, videos and passwords stored on your computer from everyone, including hackers or thieves. EncryptStick allows you to create unlimited invisible, encrypted vaults [folders containing sensitive files] on the flash drive itself, on any computer or removable device such as servers or portable hard-drives, as well as writeable media such as CDs, DVDs or SD memory cards.

The recently published Symantec Internet Security Threat report stated that a hacking technique called keystroke-logging--often used to steal information such as online bank account credentials--made up 76 percent of all online threats. The EncryptStick Password Manager tool addresses this important security concern by enabling the user to securely log into sensitive websites, providing advanced algorithmic protection while sensitive passwords are entered

EncryptStick isn't as convenient as Windows' built-in encryption routine, as with the built-in method, all one needs to do is be logged into their account to access their protected data; with a EncryptStick container, you must manually mount and enter in your password each time you want to access your encrypted data. The extra step involved isn't a big deal, and the added benefit of not having to rely on EFS makes EncryptStick even more appealing.

By keeping all your important data encrypted and away from prying eyes, you'll create peace of mind and protect yourself from data thieves. As our lives become increasingly digitized, with personal and financial information being stored on our computers and online, we create great opportunities for identity theft. EncryptStick provides the ultimate protection against accidental data loss, as well as the latest hacking techniques so users can rest assured their critical information remains safe. EncryptStick acts as a personal key to any computer, without leaving a footprint on any PC. Without the flash drive and your personal password, no one will be able to access your encrypted files. Even if your flash-drive is stolen or lost, or your computer is stolen, the data remains safe.

The software and your password are never installed on a computer. Instead, they run directly from your smart drive, which adds another level of protection. Even if someone were to gain physical access to your computer, without both the required EncryptStick flash drive inserted, and the correct personal password, your encrypted files are rendered unintelligible.

Once the EncryptStick-enabled flash drive is plugged into the computer's USB port, the software will run automatically and prompt you for your password. After entering the password, you will be able to open existing vaults, create new vaults and easily encrypt or decrypt any file by right-clicking and selecting from a drop down menu, or simply dragging and dropping the files into the vault folders. These vaults are totally hidden unless you wish them to appear as a regular folder. You can store any type of file in your vaults and they can only be accessed if your flash drive is inserted into the USB slot and you type in your password. The simple drag and drop function allows you to easily add files to your vaults. These files can also be transferred to your Flash drive for safe transfer to another computer. Private vaults are great for families who share a computer and wish to keep certain files private from children, friends and even spouses. EncryptStick also enables "encryption on the fly" with the ability to edit documents within vaults while the files are encrypted.

In the event of a lost flash drive, the EncryptStick application renders the files unintelligible and provides an immediate Key Recovery function from the Encrypt-Stick.com website. In the case of your PC or laptop crashing, your files would be unintelligible to the PC Repair Shop. With these duplicated files on your flash drive, you can now carry on work at a second computer.

With EncryptStick, you can leave your laptop at work and simply plug your EncryptStick-enabled flash drive into your home computer to gain access to all your encrypted files and passwords. The software was developed in such a manner that there is no trace of the files left behind on third party computers. Automatic timeouts can be user-defined to lock the EncryptStick vaults and prompt for a password in the instance that you walk away from your computer with the flash drive inserted.

This 512 bit Polymorphic USB system is available for about $40 dollars (that is a Good Deal)!

Background

In Late January of 2009 A Kaspersky Lab Technical support site was hacked exposing private
customer information for 11 days. The Moscow based security company closed the breach after
it was informed of the attack by Romanian Hackers on Feb 7. This was huge for a company
dealing with security. This was huge for the IT industry.
 
The hackers gained access to a support customer database that held e-mail addresses and
software activation codes by launching a SQL injection attack.

The e-mail addresses of 2500 customers and about 25000 activation codes were at risk.

The hack was made possible by a combination of vulnerable code crafted by a third party
vendor and poor code review by Kaspersky.

Many attacks on commercial entities, focus on obtaining financial data, and the attackers
typically use common methods for breaching networks, such as SQL-injection attacks through
a company’s web site or through unsecured wireless networks.

Cyber criminals traditionally cut corners. They don’t spend a lot of time tweaking
things and making sure that every aspect of an attack is obfuscated.

Professional Developers

Malware is a business with developers who make six figure incomes. Script kiddies are a
small nuisance compared to the professional developer. Our endpoint security is a no
obstacle for these IT Pro's.

One of the biggest hacks in history (and a sign of things to come) was carried out from
around Dec 15 to Jan 4 2010 (when command-and-control servers that were being used to
communicate with the malware and siphon off data until they were shut down). To add insult
to injury, the servers were located in Illinois, Texas and Taiwan. The attackers were
targeting source-code repositories of many of their victims (Google, Adobe, etc.) and
succeeded in reaching their target in many cases.

Check Point Software Technologies Ltd issued the first indication we saw of this attack
in the wild (gaining widespread adoption by hackers beyond the initial China-based
attacks) on January 21, 2010 8:41 AM.

The Attack

The hackers had stolen intellectual property and sought access to the Gmail accounts of
human rights activists. The attackers used nearly a dozen pieces of malware and several
levels of encryption to burrow deeply into the bowels of company networks and obscure their
activity.

The encryption was highly successful in obfuscating the attack and avoiding common detection
methods. We haven’t seen encryption at this level. It was highly sophisticated.

The attack was well-timed to occur during the holiday season when company operation centers
and response teams would be thinly staffed.

The sophistication of the attack was remarkable and was something that researchers have seen
before in attacks on the defense industry, but never in the commercial sector. Dubbed Operation
Aurora this zero-day vulnerability in Microsoft IE installs Trojans on networks of large
corporations to steal information.

Microsoft has noted that new variants of the Aurora exploit can circumvent IE's Data Execution
Protection, a feature that prevents auto-run of active content and applications in the browser.
Once the malicious payload executes, it provides hackers with unauthorized access. The
vulnerability was found in the wild in late January 2010.

The malware components (with encrypted code) are designed to bypass Intrusion Protection
Systems (IPS) and Intrusion Detection Systems (IDS). The attack vectors used in the incidents
seen are (targeted) e-mails containing legitimate looking attachments or links to Web sites
sent to high-level employees. When the attachment is opened, an exploit for the vulnerability
springs into action and the computer becomes infected.

Once the user visited the malicious site (view the list of malware sites at
http://www.malwaredomains.com/files/domains.txt ), their Internet Explorer browser was
exploited to download an array of malware to their computer automatically and transparently.
The programs unloaded seamlessly and silently onto the system, flowing one after the other.

The initial piece of code was shell code encrypted three times and that activated the exploit,
Then it executed downloads from an external machine that dropped the first piece of binary on
the host. That download was also encrypted. The encrypted binary packed itself into a couple
of executables that were also encrypted.

One of the malicious programs opened a remote backdoor to the computer, establishing an
encrypted covert channel that masqueraded as an SSL connection to avoid detection. This allowed
the attackers ongoing access to the computer and to use it as a “beachhead” into other parts of
the network, to search for login credentials, intellectual property and whatever else they
were seeking.

Counterhack

The Google Boys (counterhacked the hackers) broke into a computer in Taiwan, gathered evidence
that the attacks originated from mainland China (possibly orchestrated by their
government) and reengineered the hack.

They found evidence that the hackers had attacked at least 34 other companies and that the
incursions actually came from China, not Taiwan. The evidence, (including the attack
sophistication) strongly suggested an operation run by Chinese government agencies which has
caused Google to contemplate withdrawing from the Chinese market and governments (including
Germany and France) to recommend 'against' using the Microsoft browser.

Recommendation

The browser Firefox is unaffected by the attacks. Many open-source security practitioners are
advising users to switch to this browser.

As a public service HBGary (http://www.hbgary.com) has prepared a free utility that will scan
for and, optionally, remove the Aurora malware from a Windows Domain. Enterprises can easily
scan for infections and remove them.

The Aurora malware represents a significant threat to Enterprise security. Get a Google
Android™ Smartphone...it does not run windows mobile...
 
If users insist on running Windows IE, recommend tightening the security settings in the IE
security zones, activating DEP and running IE in “Protected Mode” on Vista and Windows 7.

Microsoft issued an out-of-band patch for Internet Explorer (versions 6 through 8) to plug
the hole that's allowed hackers to attack several large corporations, including Google,
Symantec and Juniper Networks Thursday, January 21, 2010 at 10 PM/PST. 
 
Fortune 100 and Federal Govt organizations rely on software solutions from companies such as
HBGary but, what of the small business or home user? Defend Yourself with ZoneAlarm® Extreme
Security.

It uses browser virtualization technology which shields you from such surprise attacks and it
automatically catches and neutralizes stealth Web browser exploits.
 
ZoneAlarm browser virtualization technology shields you from Aurora and other zero-day attacks.
by identifying any downloads that the user doesn't know about or invite. It redirects unwanted
malware to a "sandbox" where it remains trapped and cannot harm the operating system. Although
products with anti-virus can stop currently known attack vectors that exploit the latest
Microsoft IE vulnerability, it still leaves the user exposed to new strains. Check Point
delivers anti-virus protection and then goes further with browser security technology that
completely stops the threat at the source, blocking not yet known strains and attack vectors.

Sale Price, $29.95

Save over 60%
Regularly $79.95
3pc/1yr

Note: Upgrading to ZoneAlarm Extreme Security will replace your current subscription