They’ve been working on this particular scam for many months. Jeff Horne, director of threat research for anti-virus vendor Webroot, says an email account he set up to attract and study these types of email has received over one million phony tax-related messages since November.

These cyber-crooks also begin publishing malicious sites early in the tax season, with pages that allow people to download IRS forms for filing. “They automatically deliver the malware without you even realizing it,” said Horne. Whether delivered via email or a visit to a malicious site, the viruses lurk on your hard drive looking for keywords related to tax filing, such as social security numbers, street addresses, employer names and income, and then sends it back to the cyber-crooks.

Read the rest of this post on the original site

While BoomTown is usually tired of the overexposed Hollywood actress Jennifer Aniston, she is pretty funny in this online commercial for SmartWater, in which she tries make a video that “turns into a virus” by taking advantage of a number of viral Internet video trends.

If only her movies were this clever (or even as good as her famed television show, “Friends.”)

While it’s no “Humpilates,” the dirty-dancing babies bit is really good, especially when Aniston says, “Where’s the mommy?”

Enjoy the ad:

I have had a little disagreement with my IT guy. He says that when taking my laptop out in public, I should never type anything with passwords or confidential information. He says that someone can pick up my information. I say that I can’t believe that everyone in public is totally exposed. There must be some way to protect yourself while on a public network. Who is right?

A:

There’s no single correct answer. It’s true that thieves in public places can and do steal passwords and other sensitive information transferred over public Wi-Fi hotspots. But it’s also true that methods like Virtual Private Networks can mitigate this problem, and that most public hotspots are, just by the odds, unlikely to harbor these thieves at any one time. However, my advice is to avoid doing any sensitive tasks, like banking or stock trading, while using public hotspots. And, if you’re doing anything confidential on your company or home network remotely, use a VPN, which is like a secure tunnel through the internet.

Q:

I recently purchased a new iMac and am considering installing anti-virus/spyware/malware programs on it. Reader forums in MacWorld magazine say it’s not needed. A local newspaper computer columnist says he’s had Macs since the early ’80s and has never run an AV program and has had no problems. Other online computer advisers say Macs are always vulnerable and advise to run AV programs. Any recommendations here?

A:

No computer is inherently invulnerable to malicious software, and that includes the Macintosh. However, nearly every malicious program known is meant to run on Windows and simply won’t operate on the Mac operating system. The handful of Mac viruses and other malware that have been discovered are either proofs of concept, or have spread to very few users and done little or no damage. Most Mac users I’ve known don’t run third-party security software and haven’t had malware problems. So I don’t routinely recommend Mac security software.

There are two caveats, however. If you are running Windows on your Mac, you should install Windows security software, to run while Windows is in use. Also, Mac users are just as vulnerable as Windows users are to online scams, or to insecure public networks. So, even though you may never get a virus, you still have to be careful about doing sensitive Internet tasks via public hotspots or careless behavior like clicking on links sent you by unknown email senders.

Q:

My car has an audio jack that integrates any input into the sound system. I know that Kindle has a text-to-speech feature. Would I be able to use that feature via the audio jack in the car?

A:

Without having tested your car’s input jack, I assume the answer is yes. The Kindle has a standard headphone jack.

However, note that the text-to-speech feature works only on certain books, not all of them. Publishers have the right to allow or disallow it for any book.

Also, even if it’s enabled, it isn’t the same as an audio book, which is usually read by a trained narrator or by the author. Instead, it’s a computer doing the reading.

You can find Mossberg’s Mailbox and my other columns at the All Things Digital website, http://walt.allthingsd.com.

Lookout said Geinimi displays botnet-like qualities and is the most sophisticated wireless malware it has seen. Thus far, infected programs have only been seen on various Chinese app stores.

“Geinimi is effectively being ‘grafted’ onto repackaged versions of legitimate applications, primarily games, and distributed in third-party Chinese Android app markets,” Lookout said in a blog post on Wednesday. “The affected applications request extensive permissions over and above the set that is requested by their legitimate original versions.”

The security firm said it has already updated both the paid and free versions of its software to protect against Geinimi.

Lookout raised $11 million in Series B funding back in May.

The company was launched in 2007, with its founders taking 18 months to develop a new core technology focused on mobile devices. While some of the big-name security firms are in the mobile arena, their approaches are brought over from desktop and PDA security efforts, CEO and co-founder John Hering told Mobilized.

“I think there’s a very reasonable opportunity to create the next Symantec but built around the mobile platform,” Hering said, noting that over the next three to seven years mobile devices will become the primary computing device for millions of people.

Although threats to mobile devices are still comparatively rare, their highly mobile and always connected nature makes them an increasingly attractive target for those seeking to do harm. A year ago, Hering said that most attacks were proof-of-concept or attacks for notoriety. This year, though, has seen the rise of financially motivated malware, including an attack on Android where an app posing as a movie player sent premium SMS messages costing infected users $5 a pop. A separate attack in China infected more than one million phones, Hering said.

Lookout aims to stop those kinds of attacks and also allow capabilities like device tracking and remote wipe capabilities. Its software currently works on Android, BlackBerry and Windows Mobile (but not the new Windows Phone 7) operating systems. Hering said the company plans to expand to other popular operating systems and said some of the new funding will be used to expand to new platforms.

Ping Li, a partner at Accel and a board member at Lookout said the company’s approach of splitting work between the device and the cloud to more efficiently work on a mobile device is part of what attracted him to the company. He also pointed out that Hering and his co-founders are in their twenties and just have a different awareness of the devices than their older competitors.

“They grew up hacking mobile phones,” Li told Mobilized. “They never grew up hacking PCs.”

Part of growing as a security company is having the right product in place when a new threat emerges, Li said, pointing to Webroot, which came out of nowhere to become a significant business when spyware emerged as a major security issue.

The company has more than four million users of its software, although the vast majority are getting the software for free. The company recently launched a $3 per month premium service, but Hering won’t say how many customers it has.

Hering said Lookout’s model aims to follow that of desktop antivirus firm AVG, which has a popular and well-known free product but makes money by selling a premium service.

As for whether the company could make an attractive acquisition target for another security company looking to jump-start its mobile efforts, Hering was noncommittal.

“We’re just trying to keep up with the growth,” he said.

What program would you recommend for saving Web articles such as yours and which also provides for filing them by classifications such as technology, taxes, health, investments, etc.

A:

There are a number of programs that will let you quickly and easily save links to Web pages you want to save or read later.

One is called Instapaper. Another, which I have recommended in the past, is Evernote. The latter allows you to categorize Web links or any other notes with tags, or to store them in different notebooks that you could label and organize for different topics. Using these tags and/or notebooks, you can quickly find all saved links to Web pages on different topics.

Q:

I always am wary of installing any Microsoft program on my Mac because of viruses. I have, however, been thinking of getting the new Office 2011 for Mac that you reviewed because I have not been happy with the iWork program from Apple. Should I have these virus concerns?

A:

Microsoft’s Office for Mac is a purely native Mac program and doesn’t involve running the Windows operating system, which is the platform on which nearly all viruses operate. So, when it comes to the danger of viruses, Office for the Mac is like any other Mac program—highly unlikely to expose you to viruses.

The one exception is that, years ago, there was a rash of viruses that spread through the use of macros, or automated features, in certain Office files. These could theoretically still plague you, but Microsoft long ago took steps to snuff out most of these, and you can choose to disable macros in any documents you open.

Q:

Several times a year, a group of my friends rents a house in England or France. None of the houses has Wi-Fi. What is the cheapest and easiest way to access the Internet on our computers?

A:

Assuming the houses also lack wired Internet connections, I’d investigate cellular data connections, either via cellular modems for each individual computer, or devices like the MiFi, which create a Wi-Fi network for multiple computers using the cellular data network. I cannot say whether this would be a “cheap” method, as it would likely vary depending on which carrier you used.

The U.S. investigation is related to the arrest of 19 people in London on Tuesday in a probe into an international cybercrime group that allegedly stole at least £6 million, or $9.5 million, from U.K. banks, a person familiar with the investigation said Thursday. The U.K. banks included HSBC Holdings PLC and Royal Bank of Scotland Group PLC.

According to court documents in the U.S., computer hackers in Eastern Europe used a malicious computer code, known as Zeus Trojan, to access bank accounts of small and midsize businesses and municipal entities in the U.S.

The code is often attached to a seemingly legitimate email message and has the virus attached, prosecutors said. The virus then secretly monitors a person’s computer activity and steals usernames and passwords, prosecutors said.

Read the rest of this post on the original site

The virus, first detected in June, marked the first large-scale attack on the type of industrial computer systems that are used to monitor controls for large automated factories, utilities, nuclear power plants and water treatment systems, security analysts said.

Dubbed Stuxnet and spread by devices plugged into USB computer ports, the virus targets industrial process control systems made by Siemens and is programmed to try to steal data from them.

The German engineering giant is one of the world’s largest makers of such automated systems—one reason the company and security researchers believe its systems were the target. Last year, Munich-based Siemens (SI) generated €7 billion ($9 billion) in sales from its industrial-controls business.

Read the rest of this post on the original site

The company said in a statement that the issue only affected customers who have received replacement motherboards for four types of servers – the PowerEdge R310, R410, R510 and T410 – which is less than one percent of these models. The statement added that the virus only causes damage “when a customer has a specific configuration and is not running current anti-virus software.”

Dell says that it has removed all the infected motherboards from its supply chain and that its current stock is virus-free.

The computer maker has been contacting infected customers in order to schedule changes.

Read the rest of this post on the original site

Accel Partners has been pretty busy handing over giant wads of dough to start-ups this week–and today is focusing its largess on San Francisco-based Lookout, a smartphone security provider.

The Palo Alto, Calif.-based venture firm will be the lead investor in an $11 million Series B funding round for Lookout, which offers solutions to protect phones from malware and viruses, back up and restore valuable data and help users find their phones in the event they are lost or stolen.

Accel Partner Ping Li will join the start-up’s board.

Lookout currently works only on phones using Google (GOOG) Android, Research in Motion (RIMM) BlackBerry and Microsoft (MSFT) Windows Mobile operating systems.

Previous venture investors Khosla Ventures and Trilogy Partnership are also participating. The pair, along with angel investors such as Chris Sacca, had already put $5.5 million into Lookout late last year. The company was founded as Flexilis in 2007.

Lookout said the former CEO of Vontu and executive at Symantec (SYMC), Joseph Ansanelli, would become chairman of Lookout and that it had brought in other execs, including a former Yahoo (YHOO) staffer. Ansanelli has been an angel investor in Lookout.

Here’s the official press release:

Lookout Closes $11 Million in Series B Funding Led by Accel Partners

Explosive Growth in Smartphone Market Underscores Need for Mobile Security

SAN FRANCISCO–May 18, 2010–Lookout, the leader in smartphone security, today announced an $11 Million Series B round of funding led by Accel Partners with Khosla Ventures and Trilogy Partnership also participating. The company also announced that it has added several new executives to its leadership team, including former CEO of Vontu and executive at Symantec, Joseph Ansanelli, as Chairman of the Board.

“The smartphone market is exploding, and consumers are downloading third-party apps by the hundreds, making security an increasingly vital component of the mobile market,” said Ping Li, Partner at Accel Partners, who will join the board. “Consumers need to know that their applications, their data, and their phone itself are protected. We are excited to work with Lookout as they continue to extend their lead in this dynamic market.”

The global smartphone market grew more than 50% during the past year and as a result, consumers have been introduced to thousands of third-party applications across leading mobile platforms through app stores and downloaded sites. The Android Marketplace alone gives consumers access to more than 50,000 applications. While they enjoy the benefits of these applications, consumers are often unaware of the risks that accompany their increased data and application usage. Similar to the PC market, as consumers do more with their phones, they need protection from threats such as mobile viruses and malware, data loss and theft of the phone itself.

Lookout has developed cross-platform, cloud-connected applications that immediately identify and block threats before they compromise a consumer’s mobile phone, backup and restore mobile content, find a lost or stolen phone and wipe data from a phone if necessary. Available now on more than 400 mobile networks in 170 countries, Lookout prevents thousands of malicious applications, finds countless lost phones and restores important information for users every month.

“We are thrilled to receive such enthusiastic support from Accel Partners,” said John Hering, CEO and founder of Lookout. “Their backing is recognition of Lookout’s accomplishments to date and a testament to the importance of this market. With this additional financing, we’ll continue to invest in new technology and infrastructure so that we can provide the most comprehensive smartphone protection available to millions of consumers worldwide.”

Lookout Executive Additions

Joseph Ansanelli brings his extensive knowledge of security to Lookout as Chairman of the Board. Prior to Lookout, he served as CEO and co-founder of Vontu, turning the company into the leading provider of data loss prevention solutions before being acquired by Symantec in 2007.

In addition to Ansanelli, Lookout has also added several key members to the company’s executive team including Eric Bothwell as vice president of engineering, who formerly held engineering leadership positions at Vontu and Symantec; Chris Jones as vice president of product management, formerly senior director of portfolio product management at Symantec; and Julie Herendeen as vice president of marketing, formerly vice president of network products and advertising solutions for Yahoo! Inc.

Security company McAfee Wednesday morning issued a software update intended to give the computers that it’s contracted to protect a new list of malicious files to block and delete. Somehow a file that is part of Microsoft’s (MSFT) Windows operating system made it on to the list. And when McAfee’s software deleted this file, all hell broke loose.

People all over the country reported that their computers stopped working. Among the victimized organization were a hospital in Rhode Island, police in Kentucky and the National Science Foundation, according to the AP.

Read the rest of this post on the original site

In a statement posted to the Ministry’s Web site Monday evening, spokesperson Nguyen Phuong Nga indignantly dismissed accusations that the Vietnamese government has been using botnets to silence opposition to a bauxite mining operation in the country run by China’s state-owned mining group, Chinalco.

“Such comments are groundless,” said Nga. “We have on many occasions clearly expounded our view on issues relating to access to and use of information and information technology, including the Internet. Vietnam law puts in place specific regulations against computer virus and malware as well as on information security and confidentiality.”

Sounds eerily similar to China’s bristling response to Google (GOOG) claims that it had detected a targeted attack on its corporate infrastructure originating in China, doesn’t it?

Which is not to say that the two are in any way linked. At the moment, security researchers say they are not. It’s just that indignant disavowals like these do seem to be the go-to PR strategy in countries where online political censorship to is known to be pervasive.

One of the intrinsic values of a hard-copy book is the ability to physically pass the book to another person once I have completed reading it. Are there e-readers out there that allow you to buy an e-book, install it on one e-reader, and then pass it on another e-reader of the same brand?

A:

Yes, but not with as much freedom as lending a physical book. One of the advantages of the Barnes & Noble (BKS) Nook e-readers is that some, though not all, titles, can be lent to the user of another Nook, or to a friend who merely uses the company’s e-reader software on a computer or a smart phone. Each book can only be lent once, however, and each loan expires after two weeks.

Q:

If I totally erase my computer’s hard disk and then do a fresh reinstall of the operating system, will that also delete any and all would-be viruses, cookies, etc.—and restore the computer to its original “virgin” status?

A:

I’m not sure what you mean by a “would-be virus,” but the answer is yes. If you fully erase your hard disk with a utility that overwrites the files and free space with nonsense data, and then reinstall the operating system, the computer should act like it was new. You’d be free of any files you didn’t want.

There are easier ways to erase all cookies, by using a function in your Web browser. And the method you suggest would require you to spend considerable time installing any OS updates that have been issued since your operating-system disk was created, and reinstalling your programs and data files. Should you choose to do this, I’d urge you to back up your key files first.

You can find Mossberg’s Mailbox and my other columns at http://walt.allthingsd.com.

But security experts say it isn’t yet clear how effective Microsoft’s approach will be, while online rights groups warn that the activities of innocent computer users could be inadvertently disrupted.

On Monday, a federal judge in Alexandria, Va., granted Microsoft’s request for an order to deactivate hundreds of Internet addresses that the company linked to an army of tens of thousands of PCs around the globe, infected with computer code that allows them to be harnessed to spread spam, malicious virus programs and mount mass attacks to disable Web sites.

Read the rest of this post on the original site

Thanks for your review of programs for running Windows on a Mac. But, if I use them, won’t I expose my Mac’s files to Windows viruses and spyware?

A:

Yes, potentially, because both of the programs I reviewed, Parallels and Fusion, can access Mac folders and files—which means any malicious software that infects Windows can do so as well. That’s why both programs come with security software. You can choose to install the security products they provide, or obtain and install your own. But I strongly recommend you use security software on any computer running Windows, even if it’s a virtual PC operating inside a Mac.

Another protective step you can take is to set an option in these programs that prevents them from accessing your Mac’s files and folders. You’ll still need security software to protect your Windows installation, but, your Mac files and folders should be isolated.

Q:

I’m trying to replace my aging Palm PDA, but all I can find are smart phones with lots of bells and whistles and monthly fees. All I want is something that can hold appointments, contacts and notes, and sync with my PC. Is there anything like that out there?

A:

The old-fashioned PDA is indeed fading fast. But there are still a few around. For instance, Hewlett-Packard still sells a $300 model called the iPAQ 111, which does have Wi-Fi and Bluetooth, but isn’t a phone and thus doesn’t require a monthly cellphone contract.

Q:

Are any of the e-readers on the market compatible with the free e-books available at public libraries?

A:

This depends on the format your library uses. Sony explicitly says its e-readers can handle public library e-books, and others may as well. I suggest asking at your library. One tipoff might be if the e-reader you’re considering can handle the EPUB format, which more libraries stock. In addition to the Sony devices, the Barnes & Noble Nook also handles this format.

You can find Mossberg’s Mailbox, and my other columns, online for free at the All Things Digital web site, http://walt.allthingsd.com.

Facebook has unveiled an exclusive partnership with McAfee to give its 350 million users–those who use PCs, that is–a free six-month subscription to its security software.

The deal with McAfee (MFE) comes at a slightly odd time–coinciding with yesterday’s three-ring circus in the blogosphere about an alleged employee at Facebook who claimed in an anonymous interview that the social networking powerhouse was rife with internal security abuses.

BoomTown thought the report specious at best, but it certainly brought up valid concerns that pop up regularly about consumer security–especially viruses and spam–on Facebook and on the Internet at large.

This concern has been heightened by privacy controversies over Facebook’s new policy of broadening availability of user data to the wider Web unless the user takes action to prevent it.

As Facebook grows, those worries will, obviously, only become more pronounced.

In any case, the offer with McAfee is also an interesting one in that Facebook certainly has a great audience for all kinds of companies to market to. It’s nice that the first one is so sensible.

According to a McAfee press release, its software “will be available to Facebook users in the U.S., U.K., Australia, Italy, Germany, the Netherlands, Spain, France, Canada, Mexico and Brazil. Numerous additional countries will be added throughout Q1.”

Here is the Facebook blog post on the deal, as well as the McAfee press release below it:

Better Security through Software

One of the best defenses against security threats is a good offense, and we want to help you take the offensive by having the latest security software installed on your computer. Today, we are announcing a one-year partnership with McAfee to offer all 350 million people who use Facebook the ability to download a six-month subscription to McAfee security software at no cost, along with a special discount once the six months are over.

You can take advantage of this offer by visiting the “Protect Your PC” tab on the McAfee Page on Facebook.

We’re committed to doing everything we can to help you protect your account and make your experience on Facebook as safe and enjoyable as possible. We invest in dedicated teams and advanced technical systems that detect and block suspicious behavior. When we find a message with a link to a fake login page or other malicious website, we prevent it from being sent and delete all instances of it from the site. We also work with third parties to get malicious sites added to browser blacklists or removed completely.

For the rare case in which an account is compromised, we’ve developed a unique process that requires the account owner to take steps to secure the account and learn security best practices. We’ve also incorporated custom McAfee software into this process for people identified as having infected computers. Now, if your computer is infected, you will be asked to run a scan and clean it before accessing Facebook. We’re not aware of another free Internet service that takes this much responsibility for helping its users keep their accounts secure.

We have a lot of control over security measures on Facebook. However, we don’t control other websites and services you visit that might infect your computer. For this reason, we recommend that you install updated security software, which you can now do at no cost through this partnership, and that you always follow these safe practices:

-Don’t open attachments in emails that look suspicious or come from an unknown or untrustworthy source.
-Don’t open attachments unless you know what they are, even if they’re from friends.
-Delete chain mail and spam from your email and Facebook inboxes.
-Be cautious when downloading files from the Internet.
-Be cautious of any message, post or link you see on Facebook that looks suspicious, requires an additional login, or asks you to download or upgrade software.
-Use an up-to-date browser that features an anti-phishing blacklist. Some examples include Internet Explorer 8 and Firefox 3.0.10.
-Choose unique logins and passwords for each of the websites you use.
-Check to see that you’re logging in from a legitimate Facebook page with the facebook.com domain.

Become a fan of the Facebook Security Page to receive more tips, updates on the latest threats and other information to help you protect your computer and online accounts.

SANTA CLARA, Calif.–(Business Wire) Today McAfee, Inc. (NYSE:MFE), the world’s leading dedicated security company, and Facebook announced an unprecedented collaboration that will provide additional security protection to a significant portion of the Internet population. Through this partnership, the two companies have jointly created security solutions that include McAfee security software, a custom scanning and repair tool, and consumer friendly education materials that Facebook will make available to its more than 350 million users. In total, this is a first-of-its-kind security offering that represents a major milestone in the fight to secure the Internet and reduce global cybercrime.

Under the terms of the partnership, McAfee is Facebook’s exclusive provider of consumer security software, and Facebook users will be eligible for a complimentary six-month subscription of the McAfee Internet Security™ Suite software. Following the six-month period, Facebook users will be eligible for special discount subscription pricing. Facebook is applying all financial incentives from this partnership to the benefit of its users and will not be taking a share of any revenue from user subscriptions. McAfee Internet Security Suite software protects users’ PCs from online threats, viruses, spyware, hackers, online scammers, identity thieves and other cybercriminals, and includes award-winning McAfee® SiteAdvisor® site rating technology.

In the rare instance a Facebook account is compromised, Facebook has developed an innovative process that requires users to take steps to re-secure their Facebook account and learn security best practices. As part of this partnership, this process will now also include custom McAfee technology to clean users’ computers. There is no charge for use of this tool.

To keep users educated about the latest threats, Facebook and McAfee will work together to develop educational content for the Facebook Security Page (http://www.facebook.com/security), Facebook’s principal resource for security-related information with more than one million fans. McAfee will also continuously update its own Facebook Page (www.facebook.com/mcafee), which features the offer on the “Protect Your PC” tab as well as security information on “Protect Your Kids” and “Security Notes” tabs.

“Facebook is very serious about security and has made significant efforts to protect its users and service by investing in dedicated teams and sophisticated systems, and this partnership with McAfee furthers that mission,” said Todd Gebhart, executive vice president and general manager, McAfee Consumer, Mobile and Small Business. “We believe our partnership will make a real difference in the battle to secure the Internet by giving so many more people access to industry leading technology from McAfee.”

Facebook selected McAfee after a competitive review process among the leading security vendors. McAfee is rated the number one vendor in threat detection,1 and McAfee Active Protection™ technology provides protection by blocking both known and unknown online threats almost instantly.

Research has shown that up to 78 percent of consumers do not have updated anti-virus, an enabled firewall and anti-spyware, and 48 percent of them have expired anti-virus, the most fundamental protection2. So many people without even the most basic protection for their computers are an obvious risk to themselves, but also to people with whom they interact online. Thea greement between McAfee and Facebook is designed to address this problem.

“By partnering with a market leader like McAfee, we are taking an unprecedented step towards making the entire Internet more secure and reducing the possibility of threats being brought onto our service by unsuspecting users,” said Elliot Schrage, vice president of global communications, marketing and public policy, Facebook. “Keeping the Internet secure requires that users, security vendors and Internet companies all work together. We think we’ve developed an excellent model for this collaboration, and to ensure the greatest possible value to our users, Facebook will not accept any revenue from subscriptions. We hope this is something that other services will emulate.”

Upon launch, McAfee Internet Security Suite software will be available to Facebook users in the U.S., U.K., Australia, Italy, Germany, the Netherlands, Spain, France, Canada, Mexico and Brazil. Numerous additional countries will be added throughout Q1.

1 Av-Test.org malware detection results published in Computerbild magazine (Issue 26 12/05/09)

2 Source: 2007 McAfee-National Cyber Security Alliance Online Safety Study

“We actually did an evil scale and decided not to serve at all was worse evil.”

– Google CEO Eric Schmidt on the company’s decision to offer a censored version of its search services in China, Jan. 30, 2006

Evidently Google is taking its informal “don’t be evil motto” a bit more seriously these days. The search sovereign threatened late Tuesday to pull out of its operations in China after detecting a “highly sophisticated and targeted attack on [its] corporate infrastructure originating from China.” Targeted in the assault: The Gmail accounts of Chinese human rights activists.

“These attacks and the surveillance they have uncovered–combined with the attempts over the past year to further limit free speech on the web–have led us to conclude that we should review the feasibility of our business operations in China,” Google’s chief legal officer, David Drummond, wrote in a post to the company blog.

“We have decided we are no longer willing to continue censoring our results on Google.cn, and so over the next few weeks we will be discussing with the Chinese government the basis on which we could operate an unfiltered search engine within the law, if at all,” Drummond added. “We recognize that this may well mean having to shut down Google.cn, and potentially our offices in China.”

Shut down Google.cn, and potentially our offices in China? Hmm. What’s the Chinese word for “Bing”?

Drummond didn’t directly accuse the Chinese government of orchestrating the incursion, but he certainly seems to be implying there’s a link. And you’d think one would have to exist for Google (GOOG) to threaten pull out of a country that has more Internet users than the total population of the U.S.–even if its efforts to gain market share there haven’t met with the same success as in the rest of the world.

It’s tough to stake your claim in a country where the government favors the local rival and blocks your traffic if you fail to censor. Baidu’s share of the Chinese search market in the third quarter was 77 percent, up from 75.6 percent. Google’s share for the same period? Just 17 percent, down from 19 percent.

So, to some extent, Google can probably threaten to leave China because the country accounts for such a small portion of its revenue. On the other hand, China leads the world in Internet users and presents a hell of a market opportunity–large enough that Google willingly provided a censored version of its services as a prerequisite for doing business there. Or, rather, it used to.

At $395.50 Baidu shares are up more than two percent after hours on the news. Google shares are down 1.6 percent at $581.01.

Drummond’s post in full, below, as well as another on the safety of data on Google by Dave Girouard, President of Google Enterprise:

A new approach to China

Like many other well-known organizations, we face cyber attacks of varying degrees on a regular basis. In mid-December, we detected a highly sophisticated and targeted attack on our corporate infrastructure originating from China that resulted in the theft of intellectual property from Google. However, it soon became clear that what at first appeared to be solely a security incident–albeit a significant one–was something quite different.

First, this attack was not just on Google. As part of our investigation we have discovered that at least twenty other large companies from a wide range of businesses–including the Internet, finance, technology, media and chemical sectors–have been similarly targeted. We are currently in the process of notifying those companies, and we are also working with the relevant U.S. authorities.

Second, we have evidence to suggest that a primary goal of the attackers was accessing the Gmail accounts of Chinese human rights activists. Based on our investigation to date we believe their attack did not achieve that objective. Only two Gmail accounts appear to have been accessed, and that activity was limited to account information (such as the date the account was created) and subject line, rather than the content of emails themselves.

Third, as part of this investigation but independent of the attack on Google, we have discovered that the accounts of dozens of U.S.-, China- and Europe-based Gmail users who are advocates of human rights in China appear to have been routinely accessed by third parties. These accounts have not been accessed through any security breach at Google, but most likely via phishing scams or malware placed on the users’ computers.

We have already used information gained from this attack to make infrastructure and architectural improvements that enhance security for Google and for our users. In terms of individual users, we would advise people to deploy reputable anti-virus and anti-spyware programs on their computers, to install patches for their operating systems and to update their web browsers. Always be cautious when clicking on links appearing in instant messages and emails, or when asked to share personal information like passwords online. You can read more here about our cyber-security recommendations.

We have taken the unusual step of sharing information about these attacks with a broad audience not just because of the security and human rights implications of what we have unearthed, but also because this information goes to the heart of a much bigger global debate about freedom of speech. In the last two decades, China’s economic reform programs and its citizens’ entrepreneurial flair have lifted hundreds of millions of Chinese people out of poverty. Indeed, this great nation is at the heart of much economic progress and development in the world today.

We launched Google.cn in January 2006 in the belief that the benefits of increased access to information for people in China and a more open Internet outweighed our discomfort in agreeing to censor some results. At the time we made clear that “we will carefully monitor conditions in China, including new laws and other restrictions on our services. If we determine that we are unable to achieve the objectives outlined we will not hesitate to reconsider our approach to China.”

These attacks and the surveillance they have uncovered–combined with the attempts over the past year to further limit free speech on the web–have led us to conclude that we should review the feasibility of our business operations in China. We have decided we are no longer willing to continue censoring our results on Google.cn, and so over the next few weeks we will be discussing with the Chinese government the basis on which we could operate an unfiltered search engine within the law, if at all. We recognize that this may well mean having to shut down Google.cn, and potentially our offices in China.

The decision to review our business operations in China has been incredibly hard, and we know that it will have potentially far-reaching consequences. We want to make clear that this move was driven by our executives in the United States, without the knowledge or involvement of our employees in China who have worked incredibly hard to make Google.cn the success it is today. We are committed to working responsibly to resolve the very difficult issues raised.

Keeping your data safe

Many corporations and consumers regularly come under cyber attack, and Google is no exception. We recently detected a cyber attack targeting our infrastructure and that of at least 20 other publicly listed companies. This incident was particularly notable for its high degree of sophistication. We believe Google Apps and related customer data were not affected by this incident. Please read more about our public response on the Official Google Blog.

This attack may understandably raise some questions, so we wanted to take this opportunity to share some additional information and assure you that Google is introducing additional security measures to help ensure the safety of your data.

This was not an assault on cloud computing. It was an attack on the technology infrastructure of major corporations in sectors as diverse as finance, technology, media, and chemical. The route the attackers used was malicious software used to infect personal computers. Any computer connected to the Internet can fall victim to such attacks. While some intellectual property on our corporate network was compromised, we believe our customer cloud-based data remains secure.

While any company can be subject to such an attack, those who use our cloud services benefit from our data security capabilities. At Google, we invest massive amounts of time and money in security. Nothing is more important to us. Our response to this attack shows that we are dedicated to protecting the businesses and users who have entrusted us with their sensitive email and document information. We are telling you this because we are committed to transparency, accountability, and maintaining your trust.

This guide stresses laptops, which have become the prevalent choice, but most of its specs also apply to desktops. As always, it is aimed at average consumers doing typical tasks, such as Web surfing, email, social networking, word processing, photos, video and music. It doesn’t apply to businesses, hard-core gamers or serious media producers—groups that need specialized or heftier hardware.

Consumers shopping for new computers this fall have a wide variety of choices with the new operating systems pre-installed, making the machines faster and better. Windows PCs are no longer burdened with the disliked Vista OS.

That’s the good news. The bad news is that the Windows hardware makers and retailers generally are trying to nudge you to spend more. They are anxious to guide consumers away from the popular, but low-profit, stripped-down netbooks to somewhat larger Windows 7 laptops from which they can make more money. This larger-size category goes by a variety of names, which can be confusing.

Windows vs. Mac: The arrival of Windows 7 makes PCs from Hewlett-Packard (HPQ), Dell (DELL) and others much better choices than their Vista-equipped predecessors were. Microsoft (MSFT) has closed most of the gap with Apple’s (AAPL) Mac OS X operating system. Also, Windows PCs are often priced hundreds of dollars lower than Macs, and offer many more choices.

But Apple’s hardware is stylish and sturdy, and, in my tests, Macs usually boot faster than Windows machines. Plus, Apple’s chain of retail stores offers a better buying experience and strong post-purchase support. Also, in my view, Apple’s built-in software still has the edge. Snow Leopard is fast and reliable. And it comes with a full suite of excellent built-in programs, including email, photo and video software. Microsoft has stripped Windows 7 of such programs. Some PC makers have restored some or all of these in certain models, although I consider Apple’s counterparts better. Another huge plus: The Mac isn’t susceptible to the vast majority of viruses and spyware.

Cost: Prices on Windows PCs are creeping upward. You can buy a Windows PC for under $500, but many stores are pushing costlier models. And those $250 netbooks are much scarcer. Now, they typically run between $300 and $450. Apple has mostly stuck with its same, higher, prices, though it has boosted the specs on many models. The cheapest Mac desktop, the minimalist Mac mini, is $599. The cheapest Mac laptop, the new MacBook, is $999. The heart of Apple’s line starts at $1,199.

New category: Windows PC makers this season are pushing a category of laptop that is meant to fit between a netbook and a full-size laptop. It goes by a variety of confusing names, such as “ultrathin” or “thin and light,” though these models are often no thinner or lighter than some laptops of the past. They typically cost between $500 and $800, and often have 13-inch screens.

Memory: All Macs come with at least two gigabytes of memory, which is plenty for running Snow Leopard well. Mainstream Windows PCs have at least three gigabytes. But the cheapest Windows machines sometimes come with less. I recommend at least two gigabytes.

64-bit: PCs have long been based on something called a 32-bit architecture, but many models now use a 64-bit architecture, allowing properly written software to use more memory and run faster. If possible, buy a 64-bit computer, which is likely to dominate eventually, even though some software and add-on hardware may be incompatible at first.

Graphics: The new operating systems allow software makers to speed up some tasks by offloading them from the main processor onto the graphics chip. So, if possible, get a “discrete” graphics processor, which has its own memory. Otherwise, find a potent “integrated” graphics chip, which shares your main memory.

Processor: Mainstream Windows PCs sport fast, dual-core processors from Intel (INTC) or its rival, AMD (AMD). These pack the equivalent of two brains onto one chip. But many lower-price Windows PCs have slower processors, such as the Intel Atom, which are best suited for light duty. Apple models all use Intel’s dual-core processors, except for the highest-priced desktops, which come with quad-core chips.

Hard disks: A 250-gigabyte hard disk should be the minimum on most PCs. On a netbook, look for at least a 160-gigabyte disk. Solid-state disks are faster and use less battery power, but often add hundreds of dollars to the price tag.

Touch: Windows 7 lets you control the computer by touching the screen with your fingers, and some PC makers add their own touch-screen features. But this only works fully with newer types of touch screens, adding cost. Make sure any touch-screen model you buy has a full multitouch screen that supports all Windows 7 gestures. Apple uses the laptop touch pad, or its new mouse, as the multitouch, finger-gesture mechanism, instead of the screen.

As always, don’t buy more machine than you need.

Find all of Walt Mossberg’s columns and videos online, free, at the All Things Digital Web site, walt.allthingsd.com. Email him at mossberg@wsj.com.

]]> http://allthingsd.com/20091028/operating-systems-offer-new-choices-in-pc-shopping/feed/ 0 http://allthingsd.com/20091007/a-windows-to-help-you-forget/ http://allthingsd.com/20091007/a-windows-to-help-you-forget/#comments Thu, 08 Oct 2009 01:02:03 +0000 Walter S. Mossberg http://ptech.allthingsd.com/20091007/a-windows-to-help-you-forget/ In just two weeks, on Oct. 22, Microsoft’s long operating-system nightmare will be over. The company will release Windows 7, a faster and much better operating system than the little-loved Windows Vista, which did a lot to harm both the company’s reputation, and the productivity and blood pressure of its users. PC makers will rush to flood physical and online stores with new computers pre-loaded with Windows 7, and to offer the software to Vista owners who wish to upgrade.

With Windows 7, PC users will at last have a strong, modern successor to the sturdy and familiar, but aged, Windows XP, which is still the most popular version of Windows, despite having come out in 2001. In the high-tech world, an eight-year-old operating system is the equivalent of a 20-year-old car. While XP works well for many people, it is relatively weak in areas such as security, networking and other features more important today than when XP was designed around 1999.

After using pre-release versions of Windows 7 for nine months, and intensively testing the final version for the past month on many different machines, I believe it is the best version of Windows Microsoft (MSFT) has produced. It’s a boost to productivity and a pleasure to use. Despite a few drawbacks, I can heartily recommend Windows 7 to mainstream consumers.

Like the new Snow Leopard operating system released in August by Microsoft’s archrival, Apple (AAPL), Windows 7 is much more of an evolutionary than a revolutionary product. Its main goal was to fix the flaws in Vista and to finally give Microsoft customers a reason to move up from XP. But Windows 7 is packed with features and tweaks that make using your computer an easier and more satisfying experience.

The new taskbar shows small previews of many windows and allows for larger previews.

Windows 7 introduces real advances in organizing your programs and files, arranging your taskbar and desktop, and quickly viewing and launching the page or document you want, when you want it. It also has cool built-in touch-screen features.

It removes a lot of clutter. And it mostly banishes Vista’s main flaws—sluggishness; incompatibility with third-party software and hardware; heavy hardware requirements; and constant, annoying security warnings.

I tested Windows 7 on 11 different computers, ranging from tiny netbooks to standard laptops to a couple of big desktops. These included machines from Lenovo, Hewlett-Packard (HPQ), Dell (DELL), Acer, Asus, Toshiba and Sony (SNE). I even successfully ran it on an Apple Macintosh laptop. On some of these machines, Windows 7 was pre-loaded. On others, I had to upgrade from an earlier version of Windows.

In most cases, the installation took 45 minutes or less, and the new operating system worked snappily and well. But, I did encounter some drawbacks and problems. On a couple of these machines, glacial start-up and reboot times reminded me of Vista. And, on a couple of others, after upgrading, key features like the display or touchpad didn’t work properly. Also, Windows 7 still requires add-on security software that has to be frequently updated. It’s tedious and painful to upgrade an existing computer from XP to 7, and the variety of editions in which Windows 7 is offered is confusing.

Finally, Microsoft has stripped Windows 7 of familiar built-in applications, such as email, photo organizing, address book, calendar and video-editing programs. These can be downloaded free of charge, but they no longer come with the operating system, though some PC makers may choose to pre-load them.

In recent years, I, like many other reviewers, have argued that Apple’s Mac OS X operating system is much better than Windows. That’s no longer true. I still give the Mac OS a slight edge because it has a much easier and cheaper upgrade path; more built-in software programs; and far less vulnerability to viruses and other malicious software, which are overwhelmingly built to run on Windows.

Now, however, it’s much more of a toss-up between the two rivals. Windows 7 beats the Mac OS in some areas, such as better previews and navigation right from the taskbar, easier organization of open windows on the desktop and touch-screen capabilities. So Apple will have to scramble now that the gift of a flawed Vista has been replaced with a reliable, elegant version of Windows.

Here are some of the key features of Windows 7.

New Taskbar: In Windows 7, the familiar taskbar has been reinvented and made taller. Instead of mainly being a place where icons of open windows temporarily appear, it now is a place where you can permanently “pin” the icons of frequently used programs anywhere along its length, and in any arrangement you choose. This is a concept borrowed from Apple’s similar feature, the Dock. But Windows 7 takes the concept further.

For each running program, hovering over its taskbar icon pops up a small preview screen showing a mini-view of that program. This preview idea was in Vista. But, in Windows 7, it has been expanded in several ways. Now, every open window in that program is included separately in the preview. If you mouse over a window in the preview screen, it appears at full size on your desktop and all other windows on the desktop become transparent—part of a feature called Aero Peek. Click on the window and it comes up, ready for use. You can even close windows from these previews, or play media in them.

I found this feature more natural and versatile than a similar feature in Snow Leopard called Dock Expose.

You can also use Aero Peek at any time to see your empty desktop, with open windows reduced to virtual panes of glass. To do this, you just hover over a small rectangle at the right edge of the taskbar.

Taskbar icons also provide Jump Lists—pop-up menus listing frequent actions or recent files used.

Desktop organization: A feature called Snap allows you to expand windows to full-screen size by just dragging them to the top of the screen, or to half-screen size by dragging them to the left or right edges of the screen. Another called Shake allows you to make all other windows but the one you’re working on disappear by simply grabbing its title bar with the mouse and shaking it several times.

File organization: In Windows Explorer, the left-hand column now includes a feature called Libraries. Each library—Documents, Music, Pictures and Videos—consolidates all files of those types regardless of which folder, or even which hard disk, they live in.

Networking: Windows 7 still isn’t quite as natural at networking as I find the Mac to be, but it’s better than Vista. For instance, now you can see all available wireless networks by just clicking on an icon in the taskbar. A new feature called HomeGroups is supposed to let you share files more easily among Windows 7 PCs on your home network. In my tests, it worked, but not consistently, and it required typing in long, arcane passwords.

Touch: Some of the same kinds of multitouch gestures made popular on the iPhone are now built into Windows 7. But these features won’t likely become popular for a while because to get the most out of them, a computer needs a special type of touch screen that goes beyond most of the ones existing now. I tested this on one such laptop, a Lenovo, and was able to move windows around, to resize and flip through photos, and more.

Speed: In my tests, on every machine, Windows 7 ran swiftly and with far fewer of the delays typical in running Vista. All the laptops I tested resumed from sleep quickly and properly, unlike in Vista. Start-up and restart times were also improved. I chose six Windows 7 laptops from different makers to compare with a new MacBook Pro laptop. The Mac still started and restarted faster than most of the Windows 7 PCs. But the speed gap has narrowed considerably, and one of the Lenovos beat the Mac in restart time.

Nagging: In the name of security, Vista put up nagging warnings about a wide variety of tasks, driving people crazy. In Windows 7, you can now set this system so it nags you only when things are happening that you consider really worth the nag. Also, Microsoft has consolidated most of the alerts from the lower-right system tray into one icon, and they seemed less frequent.

Compatibility: I tried a wide variety of third-party software and all worked fine on every Windows 7 machine. These included Mozilla Firefox; Adobe (ADBE) Reader; Google’s (GOOG) Picasa and Chrome; and Apple’s iTunes and Safari.

I also tested several hardware devices, and, unlike Vista, Windows 7 handled all but one smoothly. These included a networked H-P printer, a Canon (CAJ) camera, an iPod nano, and at least five external flash drives and hard disks. The one failure was a Verizon (VZ) USB cellular modem. Microsoft says you don’t need external software to run these, but I found it was necessary, and even then had to use a trick I found on the Web to get it to work.

System Requirements: Nearly all Vista PCs, and newer or beefier XP machines, should be able to run Windows 7 fine. Even the netbooks I tested ran it speedily, especially with the Starter Edition, which lacks some of the powerful graphics effects in the operating system. (Other netbooks will be able to run other editions.)

If you have a standard PC, called a 32-bit PC, you’ll need at least one gigabyte of memory, 16 gigabytes of free hard-disk space and a graphics system that can support Microsoft technologies called “DirectX 9 with WDDM 1.0.” You’ll also need a processor with a speed of at least one gigahertz. If you have a newer-style 64-bit PC, which can use more memory, you’ll need at least two gigabytes of memory and 20 gigabytes of free hard disk space. In either case, you should double the minimum memory specification.

Aero Peek lets you see your desktop by making your windows transparent.

Installation, editions and price: There are four editions of Windows 7 of interest to consumers. One, a limited version called Starter, comes pre-loaded on netbooks. A second, called Professional, is mainly for people who need to tap remotely into company networks (check with your company to see if you need this). A third, called Ultimate, is mainly for techies who want every feature of all other editions. Most average consumers will want Home Premium, which costs $120 for upgrades.

The system for upgrading is complicated, but Vista owners can upgrade to the exactly comparable edition of Windows 7 while keeping all files, settings and programs in place.

Unfortunately, XP owners, the biggest body of Windows users, won’t be able to do that. They’ll have to wipe out their hard disks after backing up their files elsewhere, then install Windows 7, then restore their personal files, then re-install all their programs from the original CDs or downloaded installer files. Then, they have to install all the patches and upgrades to those programs from over the years.

Microsoft includes an Easy Transfer wizard to help with this, but it moves only personal files, not programs. This painful XP upgrade process is one of the worst things about Windows 7 and will likely drive many XP owners to either stick with what they’ve got or wait and buy a new one.

In my tests, both types of installations went OK, though the latter could take a long time.

Bottom line: Windows 7 is a very good, versatile operating system that should help Microsoft bury the memory of Vista and make PC users happy.

Correction: The edition of Microsoft’s Windows 7 operating system aimed at business users is called Windows 7 Professional. This week’s Personal Technology column erroneously stated it was named Business.

Write to Walter S. Mossberg at walt.mossberg@wsj.com

]]> http://allthingsd.com/20091007/a-windows-to-help-you-forget/feed/ 0 http://allthingsd.com/20090513/upgrading-to-windows-7-from-vista/ http://allthingsd.com/20090513/upgrading-to-windows-7-from-vista/#comments Wed, 13 May 2009 22:56:02 +0000 Walter S. Mossberg http://mailbox.allthingsd.com/20090513/upgrading-to-windows-7-from-vista/ There’s no other major item most of us own that is as confusing, unpredictable and unreliable as our personal computers. Everybody has questions about them, and we aim to help.

Here are a few questions about computers I’ve received recently from people like you, and my answers. I have edited and restated the questions a bit, for readability.

---

I have a PC with Windows XP, which I bought because my computer guru said to stay away from Vista. I read your column saying upgrading from XP to the new Windows 7 will be much more cumbersome than doing so from Windows Vista. So, what should I do now? Upgrade to Vista for a while so I can then move more smoothly to 7? Or wait, buy a separate Windows 7 computer in the fall, and just transfer my files and applications from the XP computer?

Putting budget considerations aside, I think the latter course would make more sense. The new machine with Windows 7 preloaded will probably give you smoother performance than one you upgraded twice to new operating systems in a matter of months. But, bear in mind that you will have to reinstall all your applications on the new Windows 7 computer, and that, depending on the terms of the applications’ licenses, you might even have to buy new copies. On the other hand, if you do the chain of upgrades, and don’t buy a new machine, you may be able to avoid this application problem, or at least much of it.

I appreciated your review of the Clickfree automatic backup drive. Does the backup it creates include the various folders and subfolders for data such as photos, or does it just create a huge single list?

The Clickfree software is primarily designed to back up, display and restore your files by their types — photos, music, text, email, spreadsheets, etc. Once it has performed a backup it lets you view and restore your files by these types. However, it will display the tree of all your folders and allow you to specify where it should search for these files. It also allows you to back up and restore entire folders, such as your My Documents folder, regardless of their contents. Detailed information, including a downloadable user manual, is available in the Support section of clickfree.com.

I am planning to buy one of the products you recently reviewed — a Western Digital My Book — and attach it directly to a port on my Internet router. Can I install antispyware and antivirus programs on the drive? If not, how will the data on this drive be protected?

Nothing is perfectly secure. The bad guys are clever, and you never say never. However, since this product isn’t an actual PC running Windows, viruses and spyware programs can’t likely run directly on it. Still, if one of your computers contains malicious software, and it can see the contents of the network drive, then the data on the drive could be endangered. I know of no way to install or run security programs on the drive. But the security software on your PC may protect the drive, if it is able to handle external drives across a network. Also, the firewall built into your network router will help. The product has some security measures built in, such as encrypting files when you use the optional feature that allows you to access the drive’s contents across the Internet.

• You can find Mossberg’s Mailbox, and my other columns, online free of charge at the new All Things Digital Web site, http://walt.allthingsd.com.

]]> http://allthingsd.com/20090513/upgrading-to-windows-7-from-vista/feed/ 1 http://allthingsd.com/20090415/displaying-contacts-without-a-code/ http://allthingsd.com/20090415/displaying-contacts-without-a-code/#comments Wed, 15 Apr 2009 22:30:02 +0000 Walter S. Mossberg http://mailbox.allthingsd.com/20090415/displaying-contacts-without-a-code/ Here are a few questions I’ve received recently from people like you, and my answers. I have edited and restated the questions a bit, for readability.

---

I saw your recent review of ICE, the emergency medical information app for the iPhone. But my iPhone is set up to require a passcode to get to the home screen and run apps. Is there any way to display emergency contacts before a person enters the passcode?

There are some apps that allow you to customize the wallpaper of your iPhone or iPod Touch by adding a few lines of text that can be seen before it’s unlocked. One, called Close Call, displays a red cross and, next to it, an emergency phone number, and one brief line about, say, a key allergy or medical condition. The app is free, and is from a company called Polka, at polka.com.

I installed VMware Fusion on my Mac so I can run a virtual Windows XP computer on the Mac. When in the virtual Windows environment, I use security software. If I have the Fusion program shut down completely when I am not using it, will my computer be vulnerable to Windows security threats?

The vast majority of viruses, spyware and other malicious software is designed to run on Windows and cannot run natively on the Mac’s built-in operating system. So, while you are wise to use security software in your virtual Windows PC, any malware it misses won’t be able to run when Fusion is shut down. While even a virtual PC can get real viruses, this faux PC just disappears when Fusion is shut down, and so does all its software, including viruses.

But simply because Windows-based malware can’t run on the Mac’s OS, that doesn’t mean you don’t have to be careful. You can still be tricked by false email and Web sites into giving up personal information.

• You can find Mossberg’s Mailbox, and my other columns, online free of charge at the new All Things Digital Web site, http://walt.allthingsd.com.

]]> http://allthingsd.com/20090415/displaying-contacts-without-a-code/feed/ 0 http://allthingsd.com/20090320/att-talks-cybersecurity-with-congress/ http://allthingsd.com/20090320/att-talks-cybersecurity-with-congress/#comments Fri, 20 Mar 2009 19:35:36 +0000 Andrew LaVallee http://voices.allthingsd.com/?p=9680 Congress is a tech-savvier place today than it was when Edward Amoroso, AT&T’s (T) chief security officer, started making trips to Washington more than 20 years ago.

Back then, he says, he would discuss virus threats at length before a lawmaker would raise his hand. “You’re expecting some question that might impress you, and they’d ask, ‘Can you tell me what a virus is?’”

Yesterday, however, when he addressed the Senate Committee on Commerce, Science, and Transportation, he was surprised to hear senators fluently discussing botnets and the recent cyber-attack against Estonia.

Exchanging glances with colleagues after the hearing, he recalls, “We made that face that you make when you’re kind of impressed.”

The subcommittee handles a wide range of communications, security and technology issues, and it conducted the hearing, titled “Cybersecurity: Assessing Our Vulnerabilities and Developing an Effective Defense,” to identify security threats and changes the government needs to make to fend them off.

Read the rest of this post

]]> http://allthingsd.com/20090320/att-talks-cybersecurity-with-congress/feed/ 0 http://allthingsd.com/20081001/navigating-microsoft-office/ http://allthingsd.com/20081001/navigating-microsoft-office/#comments Thu, 02 Oct 2008 01:45:04 +0000 Walter S. Mossberg http://mailbox.allthingsd.com/20081001/navigating-microsoft-office/ Here are a few questions I’ve received recently from people like you, and my answers. I have edited and restated the questions a bit, for readability.

---

In the new version of Microsoft Office, I cannot find a “favorites” capability in the Open dialog box. In my older version, when I began to open a document, I had a box on the left called “Favorites” that I could invoke to find common file locations. Did they really kill this very useful feature?

No, but they changed the way you make it visible in Office 2007. You can get back your “Favorites” category by right-clicking the bar at the left-hand side of the Open dialog. From the menu that appears, click on “Add Favorites,” and your Favorites category should appear in the left-hand bar, and stay there.

If I have McAfee security software, do I need an antispyware program as well?

Everyone running a Windows computer, even a virtual Windows computer on a Mac, should have antispyware software. In some ways, spyware is a worse security problem than viruses, and can lead to identity theft.

McAfee has made many types and versions of security software over the years. Some, especially recent versions of the company’s comprehensive products, include antispyware protection. Check your version to make sure it includes this capability. If it doesn’t, you will either need to upgrade to a more comprehensive suite, or obtain a separate anti-spyware product.

When my friend put a Spike Jones CD of mine into his Mac to import it using iTunes, the CD was misidentified with an embarrassing title. What would cause such a thing to happen? Does iTunes go out to the Web looking for album names, instead of going by what’s on a disk?

Yes. Music programs like iTunes, and all its major competitors, can’t identify a disk directly. So they rely on online databases to identify CDs. Each CD contains a hidden code that the database providers quickly match up with their huge catalogs of CDs to provide the album title, artist, date, track list and other information. But, sometimes, especially when the CD is relatively obscure, the databases are wrong and yield erroneous information. When that happens, you have to type in the information by hand.

You can find Mossberg’s Mailbox, and my other columns, online free of charge at the new All Things Digital Web site, http://walt.allthingsd.com.

]]> http://allthingsd.com/20081001/navigating-microsoft-office/feed/ 2 http://allthingsd.com/20080917/symantec-rewrites-its-security-suite-to-curb-nuisances/ http://allthingsd.com/20080917/symantec-rewrites-its-security-suite-to-curb-nuisances/#comments Thu, 18 Sep 2008 01:08:02 +0000 Walter S. Mossberg http://ptech.allthingsd.com/20080917/symantec-rewrites-its-security-suite-to-curb-nuisances/ It can be awful to have your Windows computer infected with malicious software, but it is almost as bad suffering the daily burdens imposed by the security software designed to protect you.

Too often, security programs significantly slow down the computer, causing lags in booting up the machine, launching programs and receiving email. Not only that, they can be incredibly annoying, popping up frequent messages or asking questions in techie lingo.

The main screen of the 2009 version of Norton Internet Security is streamlined and even includes a gauge to show much drain the security program is placing on the computer.

Now, Symantec (SYMC) has decided to radically rewrite its main security suite for Windows to directly address these problems. And in my tests, this new product, Norton Internet Security 2009, largely succeeded. It isn’t perfect, but it is the fastest, simplest and least obtrusive security suite I have ever used.

Being quick and quiet is great, but, of course, a security product also has to be effective against the vast number of viruses, spyware programs and other malicious attacks aimed at Windows. I don’t have a security lab in which to test such effectiveness. But PC Magazine does, and the magazine called the new Norton suite’s spyware and virus protection “extremely effective.” The magazine’s tests are described at http://www.pcmag.com/article2/0,2817,2330024,00.asp.

However, I wasn’t impressed with Norton’s optional antispam feature, which caused the only significant problem I ran into in my testing.

The new suite costs $70, and can be purchased at symantec.com and elsewhere. For that price, you get to install it on three PCs and you get a one-year subscription to its updates, which cost $60 thereafter.

Symantec is now including free support, even over the phone, though in my tests this support proved lousy. Norton Internet Security 2009 works only on Windows XP and Windows Vista.

I tested the new security suite on a Dell (DELL) desktop running Vista and on a Macintosh laptop running Windows XP as a “virtual machine,” meaning Windows and Windows programs ran simultaneously with the Mac operating system. Symantec assured me the program would run properly in this latter setup, and I had run the previous version of Norton successfully in the same environment.

The first thing you notice about NIS 2009 is the fast and simple installation. The process took under two minutes on each of my test machines.

File scanning is also much faster, partly because the new suite has a feature called Insight that allows it to skip the scanning and rescanning of many of your files. Insight gathers information about your installed programs and compares them against a list of programs Symantec knows are “trusted,” through either its own research or through scanning results voluntarily submitted by other users. These trusted programs are then exempted from future scans, saving a ton of time.

The new Norton suite has a feature called Insight which calculates how many of your programs it knows are trusted, and therefore needn’t be scanned repeatedly, saving time.

For instance, on my Dell running Vista, an immediate complete scan done before Insight analyzed the computer took more than an hour. But after Insight determined that over 70% of my programs were trusted, complete scans took 10 minutes or less. Of course, your data files, like Word documents and emails, still must be scanned, because they are typically unique.

To minimize the impact on users, the new Norton does scanning and other tasks only when it detects that the computer has been idle for at least 10 minutes. And new virus definitions trickle into your computer invisibly, in the background, rather than all at once in a major process.

Symantec is so certain that its product has a low impact on PC performance that it built a gauge into its new streamlined main screen that shows its drain on the main processor, or CPU.

NIS 2009 is also far less annoying than other suites I’ve used. In normal operation, it notifies you only when it has completed a background task or if there’s a threat or a repair that requires a user action, such as a reboot. And there’s an even quieter optional “silent mode” that can turn off nearly every nonurgent activity of Norton for up to six hours. Silent Mode is automatically activated during full-screen activities, such as playing games or watching movies.

The new suite has a bunch of other features, including a browser toolbar for Internet Explorer and Firefox that warns against fake and malicious Web pages, and that can securely enter your passwords and other information on Web sites. It also has an antispam feature for Microsoft (MSFT) Outlook and Outlook Express.

This antispam feature, which is off by default, was rated as weak by PC Magazine and, in my tests, it caused both Norton and Outlook Express to crash repeatedly in Windows XP running on my Mac. Symantec suspects this is a problem particular to running Windows the way I was on the Mac. After I reinstalled Norton and turned off the feature, all was well again.

But Symantec’s free tech-support service was not only unable to diagnose the problem, it didn’t even know the difference between Outlook and Outlook Express.

Despite this one glitch, I can recommend Norton Internet Security 2009 as a good way to protect your Windows computer with minimal impact on your time and attention.

Find all of Walt Mossberg’s columns and videos online, free, at the All Things Digital Web site, walt.allthingsd.com. Email him at mossberg@wsj.com.

]]> http://allthingsd.com/20080917/symantec-rewrites-its-security-suite-to-curb-nuisances/feed/ 0