Web Threats

Having to deal with SharePoint exposed to the Internet, it’s always interesting to see some of the shady techniques out there that people will use to subvert sites and engineer traffic or steal information.  Nearly everyone uses the web for work or pleasure today as web based technologies continue to shape our day to day lives.

As companies around the glob expand their web presence and usage of the web for critical business applications, it is important that everyone becomes familiar with some of the threats they are exposed to.  As new web based applications and mobile capabilities promulgate, educating people about threats and how to defend your systems against increasing sophisticated malware is a must.

Here is a brief glossary of some of the web threats that exist today:

Blackhat search engine optimization (SEO): Ranks malware pages highly in search results.

Click-jacking: Tricking a Web user into clicking on something different to what the user perceives they are clicking on, thus potentially revealing confidential information or taking control of their computer

Spearphishing: The act of attempting to acquire information such as usernames, passwords, and credit card details (and sometimes, indirectly, money) by masquerading as a trustworthy entity in an electronic communication.

Malvertising: Provides malefactors an opportunity to "push" their attacks at cautious web users who would not normally visit unknown external URLs, by exploiting the reputation of the website and the allegedly advertised brands to convince them that they are visiting legitimate advertisements

Compromised legitimate website: Host embedded malware that spreads to unsuspecting visitors.

Drive-by download: Exploits flaws in browser software to install malware just by visiting a page

Fake antivirus: A form of Internet fraud using computer malware that deceives or misleads users into paying money for fake or simulated removal of malware or claims to get rid of malware, but instead introduces malware to the computer to extort money from the victim.

Keyloggers: Captures personal information and account passwords for identity or financial theft in a covert manner so that the person using the keyboard is unaware that their actions are being monitored.

Botnet software: Subverts the system into silently joining a network that distributes spam, hosts illegal content or serves malware.

Next SoCalCodeCamp October 13th & 14th, 2012 at USC

Code Camp is a free event for developers to come and learn from their peers. This community driven event has become an international trend where peer groups of all platforms, programming languages and disciplines band together to bring content to the community.

Who is speaking at Code Camp? YOU are, YOUR PEERS are, and YOUR LOCAL EXPERTS are… all are welcome! This is a community event and one of the main purposes of the event is to have local community members step up and offer some cool presentations! Don’t worry if you have never given a presentation before, we’ll give you some tips if you need help, and this a great opportunity to spread your wings. Of course, we do have some ringers on our speaker list as well… stay tuned… Schedule is released 2 weeks before the event and will be located here: http://www.socalcodecamp.com/schedule.aspx

And yes the price is right! FREE FREE FREE

Please just check in when you get to the event so we can know how many people showed up and so we can give you some fun stuff

We are out of the gate fast with our LA Code Camp this year. Here are August/September tasks to help co-create our amazing community-driven event!

  • RSVPed/marked my calendar/encouraged others to do the same
  • Submitted and/or encouraged others to submit sessions – Speaker FAQ
  • Blogged/tweeted commented/retweeted about awesome sessions and the event
  • Signed up and/or encouraged others to contribute as a financial and/or raffle-prize sponsor – Sponsor FAQ
  • Signed up and/or encouraged others to volunteer on event-day – Volunteer FAQ
  • Enjoy the rest of my summer… and be ready for another great SoCal Code Camp!

Remember, YOU help make Code Camp GREAT!

Many thanks!

Inland Empire .NET User’s Group Meeting September 24 @ 6:30pm

I’m actually going to try to make this one.  Normally meetings are on Tuesday evenings and I’m busy being the "Soccer Coach” on Tuesday evenings… Looking forward to seeing you there!

Next User Group Meeting

When: Monday, Sep 24, 2012
Where: New Horizons (new location)
Time: 6:30 to 9:30 pm

Special Meeting Date !

"The Business of Software”

We all know how to write great software, but once all the code is written, the unit tests are done, and everything is deployed, now what do you do to make some money? This is an interesting issue for all of us, so come listen to Mindscape co-founder John-Daniel Trask present on the Business of Software.  JD is making a special trip from Wellington, New Zealand to present to several user groups in Southern California, and will be making a special stop in the Inland Empire to talk to us. Please note, this is a special meeting and will be on Monday September 24th.

Why Doesn’t Your City Have Curbside Composting?

nearly 100 cities now have curbside composting.

But Waste Management, which makes money off hauling and dumping our waste, sees this as a threat to its business model. And it’s quite a bit of money. Waste Management’s revenues for just the second quarter of 2012 was $3.46 billion. "Their business model is based on controlling the landfills and ensuring that a lot of materials go there," Peter Anderson, executive director of the Center for a Competitive Waste Industry, told Earth Island Journal.

http://www.motherjones.com/environment/2012/09/why-doesnt-your-city-have-curbside-composting