New Attack Method Delivers Malware Via Mouse Hover

Mouseover’ technique relies on users hovering over hyperlinked text and images in Microsoft PowerPoint files to drop Trojan.

Researchers have found a new form of attack that abuses the action of hovering over hyperlinked text and images in a Microsoft PowerPoint presentation.

Trend Micro researchers discovered the “mouseover” technique, used by a Trojan downloader also found in a spam campaign hitting EMEA businesses in the manufacturing, education, pyrotechnics, logistics, and device fabrication industries. The downloader they analyzed delivers a version of the OTLARD banking Trojan, also known as GootKit.

“This is the first occurrence of malware using the ‘hover’ method to initiate a download that we know of,” says Mark Nunnikhoven, Trend Micro’s VP of cloud security.

“While GootKit is known malware, businesses should be more concerned about this latest technique as it shows none of the usual indicators of an infected document,” he explains. This is novel because it abuses the previously safe user practice of hovering over a link before clicking.
Continue reading New Attack Method Delivers Malware Via Mouse Hover

Reasons to love Windows 10

Microsoft has already revealed features, such as a smarter Cortana and Xbox integration, that may appeal to existing Windows users and lure those on other operating systems. Here are 10 reasons why Windows 10 could effortlessly pull you away from your Mac or Chrome operating system when it debuts for PCs and tablets on July 29.

Cortana

Forget Siri and all of the other personal assistant bots out there. Cortana is back from her greatly exaggerated death in Halo 4, and she’s better than ever.

Edge

The new browser, set to debut with Windows 10, is integrated with Cortana. This means you’ll receive streamlined content based on your preferences and browsing habits.

Xbox

For the first time, Xbox will officially be integrated with the operating system when it debuts, which means that everything from gameplay recording to streaming can be done in sync with any Windows 10 device.

OneDrive

Windows users are able to begin a project on one device, then carry it over to another Windows, Android or iOS device, thanks to OneDrive’s synchronization over the cloud. 15 GB of storage to Windows users for free, and unlimited storage to Office 365 subscribers.

Hello

Windows Hello is a new security feature that focuses on making sure you are you. It greets users and allows them to log into their device with their face, iris or finger.

Store

Store has come a long way since the beginning with new additions such as Drawboard PDF and GoToMeeting. Now, Microsoft has promised that its apps will be ready to wow you come Windows 10.

2-in-1

Continuum will allow 2-in-1 devices to smoothly transition from tablet-to-PC mode (and vice versa), allowing you to work in any circumstance.

Office

Microsoft has confirmed that Windows 10 users will have access to new universal Windows applications for Word, Excel and PowerPoint. They will all be available for purchase separately, meaning you don’t need to invest in the whole Microsoft Office Suite if you only want one program.

IT

Windows Update for Business will come with distribution rings, where IT professionals can choose which devices receive updates. Additionally, IT will be able to decide when updates should – and should not – occur, according to specific time frames. Enterprise Mobility Suite and System Center can be integrated seamlessly with the update as well.

Defender

Windows 10 will come with Windows Defender, the company’s free anti-malware protection. Microsoft promises ongoing security updates for the supported lifetime of its devices.

Moving Outlook 2010 data to a new computer

Bought a new computer? Want to move your outlook data but note sure how We’re here to help. This will work for Office / Outlook 2010.

Note: Empty your deleted items folder and anything else you no longer need. This will make the transfer process much quicker.

Follow these steps to export your information:

  • Click the File tab.
  • In the Outlook Options window, click Advanced.
  • Click Export.
  • In the Import and Export Wizard, click Export to a file, and then click Next.
  • Click Outlook Data File (.pst), and then click Next.
  • Select the folder to export, and then click Next.
  • Click Browse, and then select the location where you want the new .pst file to be saved.
  • In the File Name box, type the name that you want to use for the new .pst file, and then click OK.
  • Click Finish.

Follow these steps to import your information:

  • Click the File tab.
  • In the Open category, click Import.
  • In the Import and Export Wizard, click Import from another program or file, and then click Next.
  • Click Outlook Data File (.pst), and then click Next.
  • Type the path and the name of the .pst file that you want to import, or click Browse to choose the file to import.
Note: Under Options, it is recommended that you click Do not import duplicates, unless you want the imported information to replace or duplicate items that are already in Outlook.
  • Click Next.
  • Select the folder that you want to import. To import everything in the .pst file, select the top of the hierarchy.
Note: The top folder (usually Personal Folders, Outlook Data File or your email address) is selected automatically. Include subfolders is selected by default. All folders under the folder selected will be imported.
  • Click Finish.

October 2014 Patch Tuesday addresses four active zero-day exploits

One of the zero days fixed in the October 2014 Patch Tuesday had been used in attacks against NATO and others, while FireEye discovered two more being used in targeted attacks.

Microsoft today delivered a total of eight security bulletins addressing 24 unique vulnerabilities as part of its October 2014 Patch Tuesday release, with the most notable updates aimed at four zero-day exploits that were recently discovered in the wild.

The first of the zero-day vulnerabilities, CVE-2014-4114, was discovered in August by threat intelligence vendor iSIGHT Partners, which worked with Microsoft in the following weeks to share technical information on the threat. Continue reading October 2014 Patch Tuesday addresses four active zero-day exploits

How Munich rejected Steve Ballmer and kicked Microsoft out of the city

Breaking up with Microsoft is hard to do. Just ask Peter Hofmann, the man leading the City of Munich‘s project to ditch Windows and Office in favour of open source alternatives.

The project took close to a decade to complete, has seen the city wrestle with legal uncertainties and earned Munich a visit from Microsoft CEO Steve Ballmer, whose pleas to the mayor of Germany’s third largest city not to switch fell on deaf ears.

Munich says the move to open source has saved it more than €10m, a claim contested by Microsoft, yet Hofmann says the point of making the switch was never about money, but about freedom. Continue reading How Munich rejected Steve Ballmer and kicked Microsoft out of the city

Rearming Microsoft Office 2010 Trial

Note: This procedure will only give you up to 180 days, after that you will need to

In order to rearm Office 2010, just run the OSPPREARM command located at the following folder:

%Program Files%\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\

For example, open a command prompt windows (in Windows 7 or Vista, open an elevated command prompt window), and type the following command:

C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPREARM.EXE

Rearm Office 2010

Note: Change the path if necessary, such as when installing 32-bit (x86) Office 2010 on 64-bit OS, where the path may be located at %ProgramFiles(x86)%, i.e. C:\Program Files (x86).

The rearm feature is provided in Office 2010 as a convenience for corporate customers as Microsoft now requires all installed copies of Office 2010 to be activated, including licenses sold through volume licensing. A total of 5 rearms are possible, where after reset, additional 30 days of free usage is allowed without proper activation. When timed correctly to rearm Office 2010 at last day of current cycle’s expiration days, the 5 rearms can extend and prolong the free usage of Office 2010 to half a year long.

According to TechNet, rearm function in Office 2010 is mainly for corporate customers who deploy Office 2010 via KMS activation or MAK activation, as rearm allows grace timer to be reset to 30 days of grace, freezes the grace timer, and resets the client machine ID (CMID). If the deployment image has not been rearmed, users will see notification dialog boxes at the time that the image is deployed, instead of 25-days after deployment. The 25-day grace period allows ample time for a KMS host to be found and activation to succeed. If activation is successful, users do not see notifications to activate.