Windows IT Pro UPDATE--Spyware and the Danger of Numbers--July 19, 2005

Make sure your copy of Windows IT Pro UPDATE doesn't get mistakenly blocked by antispam software! Be sure to add [email protected] to your list of allowed senders and contacts.

This email newsletter comes to you free and is supported by the following advertisers, which offer products and services in which you might be interested. Please take a moment to visit these advertiser's Web sites and show your support for Windows IT Pro UPDATE.

Reduce Your Server Infrastructure Costs By Up To 85%!
http://www.sw-soft.com/whitepapervzitproad1

Protecting Your Company by Managing Your Users' Internet Access
http://www.windowsitpro.com/whitepapers/stbernard/internetaccess/index.cfm?code=WinItProMid_719

1. Commentary
- Spyware and the Danger of Numbers

2. Hot Off the Press
- Microsoft to Developers: Be Ready for IE 7.0

3. Networking Perspectives
- Upgrading from Windows NT to Windows Server 2003

4. Peer to Peer
- Featured Blog: ZombieAlert Service
- Tip: How can I use a Group Policy Object (GPO) to set the default logon domain?

5. New and Improved
- Learn to Configure ISA Server 2004

==== Sponsor: Reduce Your Server Infrastructure Costs By Up To 85%! ====

Introducing... New Virtuozzo for Windows, Server Virtualization Software from SWsoft. Discover how the unique Virtuozzo technology with its incredibly low overhead and great performance will help you consolidate your servers to the highest level of scalability and server density. Further boost your ROI with complete isolation and enhanced resource management control. Easily manage large and virtual groups of servers as well as VPS's with a full suite of powerful administrative tools. Right now is the time to get more from your virtualization software. Click below to get your free Virtuozzo for Windows white papers and download a trail version today. Click Here Now:
http://www.sw-soft.com/whitepapervzitproad1

==== 1. Commentary: Spyware and the Danger of Numbers ====
by Paul Thurrott, News Editor, [email protected]

A recent report by the Pew Internet & American Life Project proves what most of us have suspected for some time: Spyware, malicious software that's typically installed on your system surreptitiously and can perform any number of unwanted actions, is changing the way people use the Internet.

The numbers are astonishing. According to the report, 91 percent of Internet users have changed their browsing habits to avoid spyware, 81 percent have stopped opening email attachments unless they're sure the attachments are safe, almost half have stopped visiting certain Web sites because they're afraid those sites are silently installing spyware on their PCs, and 25 percent have stopped downloading music and other files from peer-to-peer (P2P) file-sharing networks. (One has to wonder why that last figure isn't higher.)

Like terrorism and global warming, spyware has created an aura of fear about it, but unlike those examples, spyware is all too often the fear of the known, not the unknown. As far back as October 2004, most Internet users had had some form of spyware installed on their PCs. That figure is likely much higher today.

Aside from the obvious problem--the theft of crucial information, including credit card numbers and passwords--spyware materially affects the PC experience. Infected computers run slower, freeze, or crash. New desktop icons and applications begin appearing. Your Microsoft Internet Explorer (IE) home page changes, or new IE toolbars appear.

I've written about spyware a lot since suffering my first Trojan attack in May 2005 while testing the Windows XP Service Pack 2 (SP2) beta. In March 2005, I addressed the spyware problem in two Windows IT Pro UPDATE articles, "Spyware: The Greatest Threat Yet to the Corporate Desktop?" and "Microsoft Takes Action Against Malware" (See URLs below). So what's changed since then? Sadly, a lot has changed.

First, spyware is now a fact of life on the Windows platform, and if you administer Windows systems, you're responsible for ensuring that spyware doesn't make it to your users' desktops. That means you need a managed antispyware solution in place sooner rather than later. Like antivirus and other electronic protections, antispyware is now part of the equation. If you don't have a way of stopping it, you're not doing your job.

Second, you need a plan to deal with electronic attacks that succeed. What happens when spyware has already infected users' systems? What happens when intruders have already stolen crucial data? Data theft is a terrifying concern for individuals but what about a corporation's data? Is your CEO's laptop adequately protected?

Finally, the spyware scourge, which the Pew Internet & American Life Project survey says is changing the population's computer using habits, is causing a more fundamental change. Most Windows IT Pro UPDATE readers are likely familiar with Apple Computer's stunningly successful iPod MP3 player. Heck, many of you probably own an iPod. I happen to own several, although that's a different story altogether. Many analysts and industry pundits had predicted that a "halo effect" from the iPod would cause customers to consider Apple's other major product, the Macintosh computer, as well. The halo effect, they said, would lead to increased Mac sales and, perhaps, change the dynamics of the computer market.

So far, it's impossible to prove that the halo effect is real. But Mac sales grew 43 percent in the first quarter of 2005 and 35 percent in the second quarter, much higher than the PC industry average of 14 percent during the first half of 2005. Analysts are now wondering aloud whether the spyware problem that bedevils Windows-based PCs--but not Macs or Linux machines--is a contributing factor to Apple's sudden success with the Mac. Some suggest it's the single biggest factor--far more relevant to new users than the iPod halo effect.

The evidence is compelling. For the first time, PC users are simply throwing out computers that are infested with spyware, rather than trying to fix them. The problem is that spyware-infested PCs are often impossible to fix. Instead, you need to wipe out the system and start over again. In managed environments, this isn't a huge problem beyond backing up crucial data, but for individuals, it's a nightmare. With PC prices now starting at less than $300--or about $500 for an entry-level Mac mini--consumers are just starting over. It's simpler.

When the personal computing market first kicked into high gear in the early 1980s, computer enthusiasts were responsible for getting big business excited about the technology. First, VisiCalc-equipped Apple II computers began appearing in businesses, followed by IBM PCs running Lotus 1-2-3. Today, Mac laptops--called PowerBooks--are beginning to appear more and more often in the planes, Internet cafes, and press rooms I frequent around the country. Tech enthusiasts--what we might call tech influencers--are turning, increasingly, to the Mac.

For Microsoft and its Windows-using customers, this change could be a problem. Or, if you're interested in a safer computing experience, it could be a solution. Although many business users require Windows-specific applications that won't run on the Mac, a good percentage of Windows users today require only very basic services, including word processing, email, and Web browsing. These needs are well served by a Mac or even by a Linux-based PC, both of which are arguably safer today than Windows machines.

Questions emerge, of course. Is a more heterogeneous environment really safer, or is that just an added layer of complexity? And are Windows alternatives more secure because they're better designed or because so few hackers attempt to infiltrate those machines? These are questions for the ages, I suppose. But in a world where spyware is only the most recent attempt at tearing down the House of Windows, I'm beginning to wonder whether the alternatives don't make some sense.

Pew Internet & American Life Project Spyware Report (PDF)
http://www.pewinternet.org/PPF/r/160/report_display.asp

Spyware: The Greatest Threat Yet to the Corporate Desktop?
http://www.windowsitpro.com/article/articleid/45577/45577.html

Microsoft Takes Action Against Malware
http://www.windowsitpro.com/Article/ArticleID/45688/45688.html

==== Sponsor: Protecting Your Company by Managing Your Users' Internet Access

Companies pay plenty of attention to hardening their servers and networks but pay little attention to how uncontrolled Internet access from within an organization can represent a significant legal and security risk. For example, users who browse a malicious Web site can become infected with a Trojan or other malware without their knowledge as a result of vulnerabilities in Internet Explorer. Internet filtering technology is a key player in mitigating these threats. This white paper discusses the various methods available for Internet filtering and how to use them to increase security and decrease legal exposure. Download this free white paper now! http://www.windowsitpro.com/whitepapers/stbernard/internetaccess/index.cfm?code=WinItProMid_719

==== 2. Hot Off the Press ====
by Paul Thurrott, [email protected]

Microsoft to Developers: Be Ready for IE 7.0
With Microsoft set to release its first beta of Microsoft Internet Explorer (IE) 7.0 to testers next week, the company is trying to prepare developers for the release, which will identify itself to Web servers differently than its predecessors. However, developers should treat IE 7.0 just like IE 6.0, Microsoft says, despite the fact that it appears to be a different browser. Read the complete story at the following URL:
http://www.windowsitpro.com/articles/index.cfm?articleid=47059

==== 3. Networking Perspectives ====
by Alan Sugano, [email protected]

Upgrading from Windows NT to Windows Server 2003
Alan Sugano recently had to upgrade a client's network form Windows NT to Windows Server 2003. Read about his problems and workarounds during the migration in the article at the following URL:
http://www.windowsitpro.com/articles/index.cfm?articleid=47073

==== Events and Resources ====
(from Windows IT Pro and its partners)

Sort Through Sarbanes-Oxley, HIPPA, and More Legislation Quicker and Easier!
In this free Web seminar, get the tips you've been looking for to save time and money in achieving IT security and regulatory compliance. Find out how you can simplify these manually intensive, compliance-related tasks that reduce IT efficiency. Turn these mandates into automated and cost-effective solutions. Register now!
http://www.windowsitpro.com/seminars/regulatorycompliance/index.cfm?code=0720emailannc

All High-Availability Solutions Are not Created Equal--How Does Yours Measure Up?
In this free Web seminar, you'll get the tools you need to ensure your systems aren't going down. You'll discover the various categories of high-availability and disaster-recovery solutions available and the pros and cons of each. You'll learn what solutions help you take preemptive, corrective action without resorting to a full system failover, or in extreme cases, that perform a non-disruptive, automatic switchover to a secondary server.
http://www.windowsitpro.com/seminars/truehighavailability/index.cfm?code=0720emailannc

Antispam product not working?
Many email administrators are experiencing increased frustration with their current antispam products as they battle new and more dangerous email threats. In-house software, appliances, and even some services may no longer work effectively, require too much IT staff time to update and maintain or satisfy the needs of different users. In this free Web seminar, learn how you can search for a better way to protect your email systems and users.
http://www.windowsitpro.com/seminars/antispamsolutions/index.cfm?code=0720emailannc

Setting Up Exchange 2003 on a Windows Server 2003 Cluster Can Be Tricky Get help in this chat with Daragh Morrissey, who will answer questions and offer expert advice about Exchange clustering, on Thursday, July 28, 2005, at 12:00 P.M. Eastern. Learn more at http://www.windowsitpro.com/Article/ArticleID/46747/46747.html

Ensuring Protection and Availability for Microsoft Exchange
Given the heightened awareness around national security and protecting important human and physical assets, having data protection solutions that are cost-effective, hardware independent, and scalable is something every IT manager should seriously consider. In this free white paper, discover how you can ensure that your Exchange environment is always protected.
http://www.windowsitpro.com/Whitepapers/nsisoftware/exchangeprotection/index.cfm?code=0720emailannc

Influencers 2005: Thriving In The Face Of Regulation: How to Accommodate the New Corporate Governance Regime and Achieve Optimum Financial Performance
Join Arthur Levitt, former chairman of the SEC, Arnold Hanish, and Scott Mitchell as they discuss the most important management challenge facing businesses today--Wednesday, July 20 at 11:00 a.m. EDT. Register here:
http://bfmag.com/webcasts/7-20-05/index.html?w=1&ext_event_user_cd=winit&partnerref=winit

==== Featured White Paper ====

Do You Know If Your Network Is At Risk Of A Trojan Attack?
Discover the various methods available for controlled Internet access and how to use them to increase security and decrease legal exposure. Download your free white paper now!
http://www.windowsitpro.com/whitepapers/stbernard/internetaccess/index.cfm

~~~~ Hot Release: (Unipress) Vendor ~~~~

Quickly reduce costs, improve agent workflow, & speed customer support.
Award-winning FootPrints 100% web-based service desk software is easy-to-use, affordable, & fully customizable. Centrally track all multi- channel requests, deliver self-help online, manage two-way email, and dynamically access contact records in your SQL-based directories.

Download our complimentary white paper, "Leveraging SQL Databases to Expand the Capabilities of the Service Desk".
http://www.unipress.com/footprints/winnetmag.html

==== Instant Poll ====

Results of Previous Poll:
The voting has closed in Windows IT Pro's nonscientific Instant Poll for the question, "What size company do you work for?" Here are the results from the 260 votes:
- 13% Less than 25 connected PCs
- 45% 25 to 500 connected PCs
- 42% More than 500 connected PCs

New Instant Poll:
The next Instant Poll question is, "Does your company have an enterprise antispyware solution?" Go to the Windows IT Pro home page and submit your vote for a) Yes, b) No, or c) I don't know.
http://www.windowsitpro.com/magazine

==== 4. Peer to Peer ====

Featured Blog: ZombieAlert Service

If you're wondering whether your computers have become part of a zombie network, check out Mark Edwards' latest posting on the Security Matters blog at the following URL:

http://www.windowsitpro.com/Blog/index.cfm?action=blogindex&DepartmentID=949

Tip: How can I use a Group Policy Object (GPO) to set the default logon domain?
by John Savill, http://www.windows2000faq.com

Find the answer at the following URL:

http://www.windowsitpro.com/articles/index.cfm?articleid=47055

==== Announcements ====
(A complete Web and live events directory brought to you by Windows IT Pro: http://www.windowsitpro.com/events )

July Special--Get Windows IT Pro at 44% Off!
Get Windows IT Pro and get answers! Act now to get an entire year for just $39.95--that's 44% off the cover price! You'll also gain exclusive access to the entire Windows IT Pro article database (over 9000 articles). Bonus: The Top 50 Windows Tips handbook. This is a limited-time, risk-free offer, so click here now:
http://www.windowsitpro.com/rd.cfm?code=wfeu2057wu

Register Now for the 2005 PASS Community Summit
The 2005 PASS Community Summit, September 27-30 in Grapevine, (Dallas) Texas, is your final chance to obtain in-depth information on Microsoft SQL Server 2005 prior to its upcoming official launch. Register by August 31 for just $1495 for the LARGEST user-driven SQL Server educational event! Click here:
http://w3.sqlpass.org/summit/windows/update

==== 5. New and Improved ====
by Angie Brew, [email protected]

Learn to Configure ISA Server 2004
Syngress Publishing announced "Dr. Tom Shinder's Configuring ISA Server 2004" by Thomas W. Shinder and Debra Littlejohn Shinder. The book is based on the authors' experiences with ISA Server 2004. Chapter topics include examining the ISA Server 2004 feature set; comparing ISA Server 2004 with its competition; installing and configuring the ISA Server firewall software; using ISA Server 2004's monitoring, logging, and reporting tools; and much more. The book is 608 pages and costs $49.95. Contact Syngress Publishing at [email protected].
http://www.syngress.com

Tell Us About a Hot Product and Get a T-Shirt!
Have you used a product that changed your IT experience by saving you time or easing your daily burden? Tell us about the product, and we'll send you a T-shirt if we write about the product in a future Windows IT Pro What's Hot column. Send your product suggestions with information about how the product has helped you to mailto:[email protected].

==== Sponsored Link ====

Argent versus MOM 2005
Experts Pick the Best Windows Monitoring Solution
http://a.windowsitpro.com/RealMedia/ads/click_lx.ads/www.windowsitpro.com/TextLink/1112745096/x14/Penton/WN_Argent_July05_NLSplink_116194/1x1.gif/1

==== Contact Us ====

About the newsletter -- [email protected] About technical questions -- http://www.windowsitpro.com/forums About product news -- [email protected] About your subscription -- [email protected] About sponsoring UPDATE -- [email protected]