advtrialmonitoring.com

In addition to seeing increasing amounts of adware, Panda Security reported that Trojan horses account for almost 60 percent of all malware samples analyzed between July and September. Worms and spyware, once the bane of every computer user, were nominal during the period at only 4.53 percent and 2.93 percent respectively.

On Thursday, Panda Security released its report for the third quarter stating that adware is responsible for one third of all new malicious software. In particular, the security company cited increased use of fake antivirus scanners.

Shown is one of many fake antivirus products seen by Panda Security recently.

The fake scanners typically report a computer infection and suggest downloading an application to remove the malware. Once downloaded, the scanners then ask computer users to purchase the application before it can remove an infection that never really exists. The goal of these attacks is financial gain.

(Credit:
Panda Security)

No, I don’t really mean that. Aero’s definitely has more eye-appeal than anything XP’s interface has to offer, but ultimately I had to ask myself: Do I want to spend my time admiring the shiny surfaces and faux-3D buttons as Vista spins it wheels, or would I rather get my work done?

Press the Windows key, type Performance Information, and press Enter to open the Performance Information and Tools applet. Click “Adjust indexing settings” in the left pane, choose the Modify button, select Show All Locations, uncheck everything, and click OK > Done.

Vista won’t win any popularity contests, but even with its faults, I’ll take the most recent version of Windows over any of the predecessors. My biggest beef with Vista is that it’s slow. At least the OS makes it easy to optimize your system for peak performance. Here’s a quick recap of my three favorite Vista speedup tips.

Send Aero packing
One of the biggest knocks against Vista is that if you do away with the transparencies, sliding menus, and other features of the Aero interface, the operating system looks just like earlier versions of Windows. I like the Aero effects as much as the next guy–if the next guy’s blind.

It took all of about two minutes for me to get used to working in Vista without Aero. To make the change, return to the Performance Information and Tools applet as described above and click “Adjust visual effects” in the left pane. Under the Visual Effects tab, select “Adjust for best performance” and click OK.

Put indexing on permanent hold
I’ve been using Vista for a good 18 months now, and you can count on the fingers of one hand the number of times I’ve used Windows’ built-in search feature. I described how to tweak Vista’s indexing settings in a previous post, but there’s a simpler way to disable all indexing.

It just goes to show you that the job of squeezing every available CPU cycle out of your PC is never done.

You’ll still be able to use Windows’ search feature, though it will take longer to find the files you’re looking for. For me, it’s fastest to remember where I put the files I need myself rather than counting on Windows to find them for me.

Winnow your roster of autostart apps
In a post last spring, I described how to use Vista’s Software Explorer to disable the autostart programs that you don’t need to open automatically when Windows loads. Dang if I didn’t revisit Software Explorer the other day only to find new entries for more programs I don’t need running all the time. I don’t know how exactly they got there, but I know they’re off the list now, and my boot time is the better for it.

Wonder if they’ll make a play for Scrabulous.

Yes, that’s $15 million for the people responsible for the Warbook, Jetman, and Super Snake applications clunking up your friends’ Facebook profiles.

It makes sense. Gaming applications have proven to be some of the most popular apps on social-networking developer platforms like Facebook and MySpace.com, and veteran entrepreneurs have taken note. The Social Gaming Network was started by the founders of Webs.com–known in the Internet’s earlier days as Freewebs–and Zynga, another well-funded gaming start-up created by Tribe.net founder Mark Pincus. Both companies have turned to independent developers too, encouraging them to work on games on their platforms-within-platforms.

The company has netted $15 million in first-round funding from Greylock Partners, the Founders Fund, Columbia Partners, and Novak Biddle Venture Partners.

The Social Gaming Network, parent company of social-networking applications that do exactly what the name implies they would, has reason to celebrate.

Considering the Social Gaming Network has made acquisitions in the past–snapping up Facebook applications such as Free Gifts–there will probably be more on the way.

The new funding will be used to “allocate even greater resources to research and development of its gaming platform, and produce more tools for social game developers who want to create a richer gaming experience on the social networks and the social Web,” according to a statement. But it was also hinted that the cash will help the company add “more depth to its platform and diversity to its portfolio of games.”

When is too early?
Children today can get a Social Security number assigned within days of birth. That number may be valuable for setting up college saving accounts and obtaining company health benefits, but, in most cases, that Social Security number sits dormant for about 16 years. No loans. No credit cards. No activity. Pat Dane, chief revenue officer at MyPublicInfo, recommends “as soon as the parents give the kid a Social, they ought to start monitoring it.”

Scott Mitic, CEO of TrustedID said, “according to the Federal Trade Commission, as many as 400,000 children may already be victims of identity theft. To make matters worse, the number of complaints has increased by 78 percent over the past several years, making children the fastest growing segment of identity theft victims.” He said common warning signs include the receipt of pre-approved credit offers addressed to your child, calls from a collection agency in which the caller asks for your child by name, or notices addressed to your child from government or law enforcement agencies.

“It’s a squishy area,” said Affinion’s Rusin. “If they don’t have credit files, how can you monitor them?”

Tom Rusin, president and chief executive officer of Affinion’s North America operation, said there should be no credit information being stored for minors with the credit bureaus, but they aren’t consistent with what age they start to hold a child’s information. “For some they hold information for those 18 and older, with one it’s 16 and older. Technically speaking, if you are nine, your information should not reside within the credit bureaus at all.”

Julie Fergerson, Debix VP of emerging technologies

Mike Prusinski, VP of public affairs at LifeLock, agreed: “A credit freeze cannot be placed if there is nothing to attach it to. After multiple attempts or inquiries (in)to a child’s identity, it is possible that a credit file might be created.”

The DES and others in the media suggested that parents concerned about protecting their children against ID fraud seek a credit report for each child, and then put a credit freeze on the credit bureau accounts–advice that initially sounded right to me. But sources tell CNET News that such steps are wrong. Jay and Linda Foley, of the Identity Theft Resource Center (ITRC), said ordering a credit report that technically should not exist is one of the worst things you can do.

(Credit:
ITRC)

“To me (new account creation) is probably one of the more egregious forms of identity theft,” ITRC’s Linda Foley said.

ID monitoring is not credit monitoring
Different from credit monitoring is ID monitoring. MyPublicInfo’s Dane explained to me the subtle distinction between credit monitoring and ID monitoring, the difference that has ID fraud experts upset with those spreading misinformation about protecting children. Credit monitoring and ID monitoring are not the same, said Dane, who sent me some Gartner studies showing that credit report monitoring isn’t as effective today as ID monitoring when it comes to detecting new account creation, for example. ID monitoring casts a much wider net, looking for activity on a person’s Social Security number, not their credit report.

Linda Foley, Founder, ID Theft Resource Center

Debix’s Fergerson told me when ID theft occurs among children, a credit file is often attached to the child’s Social Security number with the suspect’s name and date of birth, not the child’s. “So doing the traditional things like ordering fraud alerts or credit reports, any of those things, will always come back saying there is nothing there.”

Trusted ID offers similar protection for minors.

(Credit:
Robert Vamosi / CNET)

(Credit:
Debix)

Tom Rusin, president and CEO of Affinion's North America operation

Affinion’s Rusin said his company is in the process of creating a children’s identity protection program.

The credit bureaus want to make sure you are the correct person before releasing information, Foley said. If you are told, “there is no file,” that is a good answer and you should stop worrying. Check again when the child is 16 and then again when they are 17 and getting ready to apply for a job or college. “If you are told there is a file, contact one of the non-profits or government agencies that provide victim assistance at no charge,” she said. “They will walk you through the steps to clear the records.”

Debix will also monitor a child’s ID and if there’s a problem, it’ll clean it up. Recently Debix partnered with Javelin research to study the first 500 children who signed up with its service. Of that group, researchers found 5 percent had a pre-existing problem. Debix’ Fergerson said that 12 percent were aged 5 and younger, and the average amount of each fraud was about $12,000. She said the company saw one case where a 17-year-old found his Social Security number had been used by a woman for the last two decades, a woman who had $325,000 in debt, a mortgage, and
car loan. The 17-year-old boy was a few months away from applying for college. “This case, the woman wasn’t a criminal, she legitimately believed the number was hers.” Debix straightened out the accounts.

ITRC’s Jay Foley said there’s the classic story of a child in foster care. The kid turns 18 and the county ceases supervision. The kid then learns that through a bad parent or other means there’s a bad credit report. “Instead of that child going on straight from high school to college, the child’s going to end up working low- to pathetic-wage jobs while they clean up this mess in order to qualify for a student loan,” he said.

Sometime on October 14, a wide array of furniture and electronics were stolen from a commercial storage facility outside Phoenix. The building was used by the Arizona Early Intervention Program, which helps families of disabled children.

Two weeks ago, the state informed the parents of the nearly 40,000 children in the program that their personal information was potentially at risk for ID fraud. According to the Arizona Department of Economic Security (DES), a backup computer hard drive stolen from the facility was password protected. What happened next is where the controversy arises.

Making the problem worse
Julie Fergerson, vice president of emerging technologies at Debix, agreed. “If you actually try to order the credit file, there is a certain number of inquires against the Social Security number that the credit bureaus will create, potentially, on accident, a credit file.”

Not traditional credit report monitoring, warned ITRC’s Jay Foley. He said it’s not a good idea to sign up a child for a service for something that does not exist.

Scott Mitic, CEO of TrustedID

“If someone stole my son’s Social,” he said, “they could walk into Verizon, T-Mobile and open the easiest form of credit there is.” Establishing a utility record is a common way that identity fraud is committed in part because it is harder to identify. Instead of appearing on a credit report, it needs a separate monitoring process, which the Gartner reports say most people do not have. When this so-called “synthetic ID theft” happens to a child, it may occur for years and years before the child needs to establish credit and finds he or she cannot.

Catch it young
Right now parents and guardians cannot put a block on a child’s Social Security number saying it “belongs to a minor,” but Linda Foley said she’s working to make that a federal law by the end of 2009. Affinion’s Rusin further suggested that the Social Security Agency also needs to improve its database so that two names don’t show up under one SSN.

What should you do?
ITRC’s Linda Foley said “if you think that your child may be a victim of identity theft, parents need to fire off registered letters to each of the credit bureaus. The letters should include the child’s full name, Social Security number, parent (or guardian’s) name and address. The letter should ask that a search for a credit file be done of the child’s Social Security number since often the name will be different. Additionally you should include photocopies of your driver’s license (proof of your identity), a copy of the child’s birth certificate showing you as the parent, any guardianship papers if you are not the parent and a copy of the child’s Social Security card. Foley said it sounds like a lot, but that’s what photocopiers are for.

So what kind of monitoring is right for a child?

(Credit:
TrustedID)

LifeLock’s Prusinski said for minors 15 and under, his company attempts to set a fraud alert every six months; for children over the age of 16, it is every 90 days, just like adults. “Although we cannot place an actual alert if no credit file exists, we still take the necessary measures to ensure that we are preventing a credit file from being fraudulently created.” In addition LifeLock does a credit report audit for minors once a year through the FACT Act, which only requests a credit file. “This action has not created an inquiry because there is nothing with the bureaus that matches that SSN or name.” Ideally, parents should then receive the letter that states “a credit file cannot be found.” LifeLock also performs a separate Social Security Administration audit for children to see if work history exists.

“The reality is if we catch it when they are young, before they are 16 or 17 years old,” Linda Foley said, “it is far easier to take care of than if you were to become a victim of identity theft because we can show that anyone under the age of 18 who is still a minor, not emancipated, cannot be held legally responsible for any contract.” Knowing early on makes it easier for parents to repair the situation, she said.

“And if there is a credit report file (associated with your child’s name), it’s not always necessarily identity theft said ITRC’s Linda Foley. “It could be that someone mixed up the numbers and instead of a six they put down a five. And sometimes credit files are created because of clerical errors,” said Foley. “The key here is to identify it early so we can fix it.”

The alert cites a blog by researcher Jeremy Brown, who provides working exploit code. In one example, Brown uses the string “acroie:///DoS” to cause a DoS in Adobe Acrobat 9 running on
Windows Vista.

Updated September 12 at 11:12 a.m. with comment from Adobe.

According to an alert from the SecuriTeam mailing list, “a vulnerability in Adobe Acrobat 9 allow attackers to cause the program to crash by providing it with a malformed URL.”

Certain URLs can cause Adobe Acrobat 9 to suffer a denial of service or crash, says a researcher.

A spokesperson for Adobe said Thursday night, “We are aware of and investigating this. Our initial findings are consistent with those reported by the researcher that this is a denial-of-service issue.”

After those passwords were made available, I noticed some of them up for sale. Some people were selling their passwords on eBay because they knew they were valuable and they needed the money. Those are the same people that declined seats this year due to financial hardship.

But thanks to Jay Leno and eBay joining forces, it actually has gotten worse.

eBay is the place where people can turn found junk into money. I would like to see Leno less surprised or galled when so-called “fans’” sell his tickets. Comedy pays his bills. Let it pay some other peoples’, too.

Unlike Leno, the Yankees didn’t respond by taking the passwords down from eBay. Instead, those auctions were allowed to continue and people made hundreds of dollars from them.

Jay Leno is planning a free stand-up comedy show for struggling Detroit residents. The tickets were made available Monday morning. By Monday night, Leno noticed that some of the tickets he gave away were on sale on eBay for “eight hundred something dollars,” he said.

This isn’t the only example of people using eBay to resell special access to events. As a New York Yankees season ticket holder, I received an e-mail earlier this week with information on the team’s “pre-on sale ticket sale.” I have a password that I can input Thursday or Friday that will let me buy individual game tickets to Yankee Stadium before the public has access to those tickets. It’s a perk for people who were season ticket holders last year.

Times are tough in Detroit. Many citizens of the city are struggling to find ways to keep their homes and find steady work. It couldn’t get much worse.

I’m all for it. Those who have been hurt by this recession shouldn’t be held back when they see an opportunity to get some extra cash. I realize Leno thinks he’s being altruistic by hosting a free show, but if he really wanted to do what’s right, why would he stop people that need the money from reselling tickets to it?

During his television monologue Monday night, Leno told viewers about the situation and explained that “you’re out of your mind to pay $800 to see me.” And then he asked eBay to cease all ticket sales for his live show. “I would like to ask the people at eBay to take the tickets down,” he said. “There’s nothing for sale here. It’s just totally free.”

Check out Don’s Digital Home podcast, Twitter stream, and FriendFeed.

Jay, what did you expect? Many of the people who would be in your Detroit audience are down on their luck and need cash to pay bills and feed the family. Doesn’t it make sense that they would try to make a few dollars off the free tickets if they could?

If Jay Leno really wants to do what’s best for these people, he should allow them to use eBay to sell the tickets. Maybe they need the money more than they need to listen to Jay’s jokes. Just a guess.

By Tuesday, all instances of the sale were down from eBay. According to the company, Leno’s request to have the tickets removed falls under its “Authorized Resellers Only” policy, so all would-be sellers were banned from selling tickets to the events.

IODA, which was founded in 2003, distributes music from independent labels to retailers, such as iTunes, Amazon, and RealNetworks’ Rhapsody. It’s also one of the companies that hasn’t been invited to MySpace Music.

IODA, the indie-music distributor, has gone through a round of layoffs, the company confirmed Wednesday.

The “reduction in workforce” took place a couple of weeks ago and affected mostly the technology and administrative units, according to Heather Staples, a spokeswoman for the company. A source affiliated with San Francisco-based IODA, which stands for Independent Online Distribution Alliance, said the company trimmed staffing by 15 percent. Staples declined to disclose how many employees were let go, but she said it was less than 15. She did say the company now has 75 employees.

“There was some belt tightening while the company concentrates on reaching profitability next year,” Staples said.

Still, file sharing affects independent artists just like it does marquee label acts.

The Internet is supposed to be fueling one of the best periods for independent artists. They no longer have to rely on big recording labels’ and their huge promotion, marketing, and distribution machines to be discovered. Fans can discover bands on MySpace and other Web sites.