Fireball – The Inferno Within

June 8, 2017

There are very few countries which emanate threats globally, with China being one of them. Fireball is a legitimate software since it is digitally signed by the very organization which has developed it, however it also bundles up malicious binaries and browser extensions.

Traditionally, ad-wares were never considered to be malicious, since their sole intention was to redirect traffic and bombard the user with advertisements, and furthermore, these ad-wares were always bundled with other legitimate software, so that unsuspecting users ended up installing them too. Besides, there exists Pay-Per-Install (PPI) revenue sharing model between the developers and the bundled software providers. Due to the fact that they piggyback on a popularity of legitimate software, this association is profitable for all the stakeholders.

Fireball, not just installs an ad-ware, but also manipulates the victims default browser search engine to fake ones, which in turn redirect the search query to Yahoo.com or Google.com. However, these fake search engines do a lot more than simple redirect, they track the users and they can spy on their victims too by dropping and executing malwares.

The concern around Fireball is that the adware it installs after downloaded to a device, is capable of installing malwares using backdoor. This in turn could be used by cyber criminals to exploit and use to push malicious codes or exploits to create large scale attacks or disruptions. Though adware installation by various software download applications are seen as an accepted practice by the end-users, however the Fireball issue could be different than what meets the eye, which is a huge concern with its largest install base of more than 250 million devices worldwide.

eScan’s Advisory suggests the below precautions to be implemented for such attacks in the ever growing complex cyber threat landscape:

  • eScan recommends using an adware scanner to scan if there is anything wrong with the browser
  • Once you found the adware in the system, go to Programs and Features list in the Control panel of Windows OS to uninstall the program
  • MacOS users should user finder to locate and uninstall the application. After that empty the trash to delete the compromised file
  • Go to your browsers and explore tools and extensions to uninstall anything suspicious
  • Do a regular check for any unauthorized or suspicious browser extensions and plug-ins to make sure your homepage and search engine are the ones that you have set
  • Always opt for custom installation and then de-select anything that is unnecessary or unfamiliar

The information provided above will help you to protect your system from being victim of Fireball malware.


Mr. Govind Rammurthy receives the coveted “Top Rated CEO” by Owler

June 6, 2017

MUMBAI, India – June 6, 2017 – Mr Govind Rammurthy, CEO & MD, eScan has been accorded with the “Top Rated CEO” by Owler amongst select 1000 peers worldwide. Owler, one of the fastest growing aggregators of corporate news and business insights worldwide has initiated the rating of business leadership through evaluation of 167, 000 business leaders globally across industry verticals.

Owler is one of the world’s largest community-based business insights research platform that captures the business insights from organizations globally. This is an initiative by Owler to honor the top rated CEOs based on feedbacks from the members of the Owler community worldwide. The Owler community has collectively contributed more than a quarter million ratings this year. Owler analyzed those ratings, and selected the top 1,000 leaders as the “Top rated CEO” from over 167,000 CEOs surveyed by Owler from across 50 cities and 25 industries worldwide. The ratings were based on various criteria.

Commenting on the recognition by Owler, Mr Govind Rammurthy, CEO & MD of eScan, said, “It is been a humbling experience to be recognized as a Top Rated CEO by Owler. It puts an onus on us to strive hard and excel in our commitment towards providing world-class products and solutions, apart from strengthening our seamless support & services for our valued partners, customers and end users.

# # #

About eScan

eScan is an ISO (27001) certified pure play enterprise security solution company with over 2 decades of expertise in developing IT security solutions. eScan today has a presence in 12 countries through its offices and subsidiaries. It also boasts of a robust channel partner network of more than 50, 000 partners spread across 190 countries worldwide. It is trusted by more than 6,500 enterprise and corporate users spread across various industry segments such as Government, BFSI, Education, Defense, Telecom, IT & ITeS, Infrastructure, Hospitality, and Healthcare worldwide.

It is powered by some of the latest and innovative technologies, such as Proactive Behavioral Analysis Engine (PBAE) Technology, MicroWorld Winsock Layer (MWL) Technology, Domain & IP Reputation Check (DIRC) Technology, Non-Intrusive Learning Pattern (NILP) Technology, and sophisticated Anti-Virus Heuristic Algorithms that not only provide protection from current threats, but also provides proactive protection against the ever-evolving cyber threats. eScan provides 24×7 free remote support facility to help its esteemed users to provide real-time solutions for security related issues. For more information, visit www.escanav.com


R&M Introduces Patch Cord Configurator for Power over Ethernet

May 25, 2017

R&M recommends: Avoid overheating, compute cleverly, calculate cabling precisely. Slimline patch cords are also suitable for Power over Ethernet

BENGALURU, India – May 25, 2017 – R&M, the globally active developer and provider of cabling systems for high-quality network infrastructures, based in Wetzikon, Switzerland, is facilitating the introduction of Power over Ethernet to data centers and large networks with planning tools. Power over Ethernet (PoE) is used to power Ethernet end devices, such as switches, using data cables instead of separately laid power cables. Network cables can, however, also heat up under the influence of electricity. This in turn results in an increase in attenuation which reduces the transmission range. IT planners, technicians and data center operators must therefore carefully plan how to reduce the heating up of cables before they introduce PoE – for example with shorter links or smaller cable bundles. R&M supports planning with handy calculation tables. In addition to the configurator for fixed cables which is already available, R&M now also offers a configurator for patch cords. The free tool can be downloaded from the web: https://www.rdm.com/Home/Products-Markets/Topics-in-Focus/Power-over-Ethernet.

Black-Cable

Power over Ethernet is spreading increasingly. Data center operators are also using the major advantages this technology provides even though this does entail the challenge of keeping the cables cool. This is not only true of the thick cable bundles behind the racks, but also the patch cords on the front,” says R&M Product Manager Roger J. Karrer. The deciding factors: the cable cross section and the PoE performance levels used.

Thin cables are more susceptible to heat but users are increasingly opting for more slimline patch cords to reduce the cable volume at the front of the rack and facilitate patching. For example, the new PoE-capable R&MthinLine patch cord range is very much in demand. Its slimline cables have a total cross section of just 3.8 mm or 4.5 mm and conductor diameters from AWG28 to AWG30. This is why R&MthinLine cords are more flexible than conventional ones. They are easy to lay in tighter bending radii and are simple to store in cable guides.

Roger J. Karrer emphasizes: “This combination of PoE and thin patch cords pays particular attention to the possible increase in temperature and planners are given plenty of support by the PoE patch cord configurator from R&M.” The configurator calculates the end temperature to be expected in the patch cord bundle for each planned PoE performance level. These range from 15 watts to 4PPoE (4-Pair Power over Ethernet) with a 55 or 100 watt output. With 4PPoE up to half an ampere can flow via each twisted pair, which can cause overheating in long, very chunky cable bundles.

Slimline-patch-cord (1)

Slimline patch cords such as R&MthinLine cables support the use of Power over Ethernet (PoE) in data centers and large networks. Greater heating up of the current-carrying cables should, however, be avoided. The patch cord configurator from R&M helps planners to take precautionary measures.

The configurator takes ten parameters, such as room temperature and the volume of the cable bundles, into consideration. Planners can derive tolerances from these and see when critical temperatures will be reached in the patch cord bundles.

Configurator-PoE

Screenshot of the PoE configurator: With a patch cord configurator, cabling specialist R&M supports the introduction of Power over Ethernet (PoE) to data centers and large networks. IT planners use the free tool to calculate the rise in temperature in cable bundles caused by PoE.

# # #

About R&M

“R&M, a Swiss Company, offers high-performance cabling solutions for Cat. 5e, Cat. 6 and Cat. 6A systems. For fiber-optic cabling, R&M offers a complete range of cables and components for single-mode (OS1, OS2) and multi-mode (OM3, OM4) fiber optic systems.

With direct presence in over 36 countries around the world and with 50 years of experience, R&M has earned the reputation of a quality leader that always offers added value, comprehensive warranty and excellent support. More information can be found on www.rdm.com.”


eScan observes a threat in using free Wi-Fi service provided by RailWire

May 23, 2017

The smart city dream is making everyone enthusiastic. However, this comes with security breaches and malware attacks that can have a detrimental effect on the entire nation. Public Wi-Fi networks are not very safe as they may seem. Even if they have a security password or OTP, there is sharing of data which is constantly happening via these platforms. This means your data is at risk and you may become an easy target to cybercrime.

eScan 2

Due to the mayhem caused by WannaCry Ransomware, we saw a surge and emergence of Ransomware as the top-most attack vectors in the threat landscape. According to the statistics made available, India was one of the top most affected countries in the world.

Moreover, based on the information collected from our telemetry servers, we observe that the most infected state within India was Madhya Pradesh with 32.63%, followed by Maharashtra at 18.84% with Delhi coming in at number three position with 8.76%.

eScan

There are numerous ISPs operating within India, and Google’s Railwire, the free Wi-Fi service launched by Railtel, is one of them. It was observed to be the top-most network where WannaCry and other Ransomware have been detected within India is the RailTel with 32.14% of the entire share.

Based on the figures, we can gauge the popularity of this Free Wi-Fi Service and also the density of population which can get affected. We have every reason to believe that majority of the Ransomware attacks which happened during the last week, within India, would have been averted had Railtel implemented the stop-gap measure of blocking SMB traffic.

While the Government is installing free Wi-Fi spots at various spots all over India, there is need to validate the internal security of these networks and there is also a need to ensure that all the consumers who are using RailTel’s free Wi-Fi service should do so with some caution. Moreover caution is to be exercised whenever using any free Wi-Fi service.

We, at eScan, believe that it is our duty to be proactive in alerting the users about the potential attacks, which will help them to take necessary precautions. Sharing out statistics is one such aspect. Here are some of the tips to stay safe from Ransomware, phishing, etc. while using open Wi-Fi at public places:

  • Avoid doing financial transactions like online shopping, banking etc. while using public Wi-Fi networks
  • Do not share any confidential/personal information via public Wi-Fi
  • Use Virtual Private Network (VPN) Apps on your device to keep data secure
  • Do not let the device to connect automatically to public Wi-Fi Turn off file sharing while using Wi-Fi
  • Connecting to unsecure networks can leave your device vulnerable
  • Protect your system with Security Suite, which not just blocks malicious traffic but would also protect your system harmful activity

NetRack Conducts Employee Medical Checkup Program

May 18, 2017

The health checkup program is part of company’s CSR activity, registers participation of 168 employees

BENGALURU, India May 18, 2017 – NetRack, a leading solutions provider for data centers and end-to-end IT server racks, recently organized a two-day health check-up program for their employees. This health check-up program was attended by 168 employees and it was aimed to spread awareness on health and fitness amongst employees. The check-up consisted of Physical Examination, Complete Blood Picture, Lipid Profiling, Random Blood Sugar, Blood Grouping, Eye test, Lung Test and body mass index.

The main objective of the health checkup program was to provide preventive counseling, motivate employees to remain in the best of health, encourage them to do exercises, and to evaluate the health status to help increase the productivity. NetRack believes that the IT companies should focus more and more on employee’s health & wellness and urges them to include regular health checkups for employees as part of their CSR activity.

Nagaraj U, DirectorTechnical at NetRack said, “Employees are the biggest asset for any organization and we at NetRack, continuously encourage our employees to follow best practices to remain healthy and fit. The good health of employees always ensures good productivity and it plays a bigger role in the success of any organization.”

After the physical examination, medical experts took a counseling session and briefed the employees about good health care and hygiene practices to ensure long and disease free life. They also explained the importance of healthy practices and benefits of routine exercises which are essential for modern day busy lifestyles.

NetRack is one amongst the certified company for Occupational Health and Safety Management System with OHSAS 18001:2007 certification. This is the second year consecutively when NetRack successfully conducted the health checkup program and the company aims to organize these programs on a regular basis.

# # #

About NetRack

NetRack Enclosures foresees itself as a single window solutions provider for all data, network and server related concerns. NetRack’s mission is to deliver time bound quality products that are superiorly designed and are engineered to perfection, to help the customers overcome their constraints while enabling scalability and increased performance at a reduced cost. NetRack guarantees to offer its clients good customer support services for problem-solving and better relations.

Improved customer relations, employee welfare and transformation at all levels to achieve more than what they have achieved so far. The company wishes to upgrade itself through research and development of newer technologies for enhanced performance, scalability and cost-effective products to cut costs to the customer. To know more, please visit www.netrackindia.com


%d bloggers like this: