Jooske's Blog on security

Dear visitors,
There is an abusive case of identity fraud / theft in the Netherlands.
A very abusive smear forum thinks to have me identified as a person with maybe the same name as somebody else and added all kinds of sensational gossip to the subject.
It is not me and i don't think all which was written belongs to the person either. If it all was true one should be aged at least two hundred years on Internet to be able to do all that and all at the same time and place. Impossible.
Probably a very frustrated webmaster and his blond angels.
So be warned. I take full distance of all that childish and abusive gossip which has nothing to do with me.
Of course criminal court is informed in the meantime. As identity fraud and stalking are supposed criminal activities even in the Netherlands. The webmaster has been identified plus his abusive team.
Very sorry for this unwanted confrontation. It's proof of staying away from the kind of forums.

Other people came with proof of being infected by visiting that forum, with trojans like win32/agent.BHO.trojan, which is used as a downloader and can be manipulated to compromise your system, alert.exe, which has the kind of options depending on it's programming, various keyloggers.
Further the webmaster collects all IP addresses for further abuse. If they come visiting from competitive fora he bans them immediately on IP and installs a trojan.
The kind of fora to keep far from ever in your life.

But i am not the person abused and smeared in that forum.

Labels: internet fraude

Dear visitors,
Due to many circumstances i didn't really update this blog.
Many changes occurred. For instance after a long pause DCS came up with new security software. No more trojan scanners which was the end of TDS, Trojan Defence Suite loved by many world wide. Which was for the world known trojan and virus definitions coder reason to change jobs.
Cryptosuite went with the developer Jason Annice to his new company Ghost Security where he created various fine programs as well.
Honestly said i lost myself somewhat in the new circumstances.

So for recent information about all these products and companies please visit the developers sites and the Wilders Security Forum.

People who asked (thanks for asking!) don't worry about me, I'm fine and busy not sure about my own next steps yet.
I do feel the nice warm and honest atmosphere ever in that forum and the stuff we were dealing with, the education and joy.
So if you're serious about computer security please keep frequenting those sites mentioned! :)
Thanks and till next contact!

Labels: Security software

Have your software and websites translated.
Reliable and fast. It does drive more customers to your products and information.
You can have spoken tours eventually in combination with msagents.
We do voiceovers and written translations of software, websites, manuals, interpretation for phone and radio, etc.
English to Dutch, spoken and written, Spanish to Dutch spoken only.
For other language pairs i can put you in contact with very reliable and experienced translators all only translating to their own native languages.
See my profile http://www.proz.com/pro/115630

As many of you would know there is a critical vulnerability that allows attackers to gain control over a remote system simply by enticing the victim into viewing a specially-crafter JPEG file.

A free scanner has now been released to help with the detection and disinfection/repair of JPEG files infected with MS04-028 exploit code.

The scanner is available in both console and GUI user interfaces, and at less than 30kbs in size it's a quick download and easy to use. More information and the direct download link can be found here: http://www.diamondcs.com.au/jpegscan/

Please help us spread the word, and please share with your friends and colleagues to help reduce their chance of infection.

Enjoy the program.

Looking for encryption software? If you have any important documents you should DEFINITELY be considering it. It is very easy for others, such as family members, governments, police and hackers to see information stored on your computer.

What you need is a program which makes that data un-readable to anyone but yourself, this way you can keep those files on your computer like you would any file and be certain that no one else can view it. Even the military and your government.

CryptoSuite is a powerful encryption program that not only protects and encrypts data on your PC, but also allows you to have secure conversations and remove important information from your hard drive forever using secure file deletion.

CryptoSuite was in development for 15 months prior to it's first release and will continue to be updated into the future for free!

I definitely love the encrypted chat option in it, which you can host on your own PC in stead of some far away anonymous chatserver, you know what is happening, who you invite to login to your conversation on your system. Invite a whole group, friends, colleagues, family reunion, quick business meeting online from many locations. Think of secure conversations for business use.

Fire up Port Explorer and you can see the person logging in, check the datapackets in the socket spy, look in the Port Listen in TDS on that port and see the datapackets going by fully encrypted as they go over internet.
And of course Port Explorer enables you to end conversation with one person from a group while closing the host leaves not any trace your conversation ever existed on that whole big internet.

CryptoSuite

Today Diamond Computer Systems released a new program, Process Guard, which will guard your system's processes for unauthorised terminations like for instance by trojans.

New program available!
Diamond Computer Systems ProcessGuard

What is DiamondCS Process Guard?
DiamondCS Process Guard is an advanced security system that protects both system and security processes (as well as user-defined processes) from attacks by other processes, services, drivers, and other forms of executing code on your system. The first program of its kind, Process Guard is made possible by a kernel-mode driver that securely controls process-to-process access in a relatively simple but technically efficient, safe, and secure manner. Although Process Guard is a very powerful program due to its low-level nature, its intuitive graphical interface actually makes it very easy to use for both novice and advanced users alike.

Please understand that this is the very first release of this program, and due to its low-level nature, we're anticipating some minor issues to be discovered. If you do experience any issues, simply email admin@diamondcs.com.au
Also visit our support and information forum.
At this stage the only known issue worth mentioning is that, in some cases after you restart your computer, you may get an error message from Process Guard saying that it couldn't attach to the driver. This is a minor issue and can be ignored - it will be fixed in the next update, and after seeing the message box, you can simply run Process Guard manually and it will start up just fine.

We hope you enjoy the release of this new program - please help us spread the word!
Get to the site ProcessGuard and to the /processguard download pages for the free evaluation download and purchase!

In the meantime we're at ProcessGuard version 2.000 released 25 march 2004.

Recently in September 2004 version 3.000 was released, which deals with the XP SP2 issues and some more features and enhancements are included.

No single moment without this new layer in securing your system!

A wonderful and very comprehensive review about port-to-process mappers, in which DiamondCS Port Explorer and OpenPorts (the commandline version) scored really high.

Roger A. Grimes (author of the famous book "Malicious Mobile Code: Virus Protection for Windows") has just released a new article for Security Administrator magazine. Possibly the first article of its kind to approach this subject matter, it looks into port-to-process mapping/port enumeration, and compares 11 programs (including Port Explorer, OpenPorts, TCPView, FPort and more).

Roger's conclusion: "The strongest contender in this comparative review is DiamondCS, with its GUI utility Port Explorer and its command-line tool OpenPorts. Sysinternals' TCPView is a good backup choice, if you can avoid the stability problems I experienced on NT. Foundstone's Fport is a good alternative to OpenPorts in the command-line port-enumerator field. But if you perform network security or administration for a living, you should have a copy of Port Explorer."

Full article
http://www.secadministrator.com/Articles/Index.cfm?ArticleID=40313&pg=1