Aspect Technologies

Samsung has released the Android 2.1 update to the Samsung Moment with little to no fanfare.  It can be obtained only by a direct download from the Samsung Support site.  Trying to update the firmware directly from the phone will not work.

The update software only works with PC’s running XP or later.  Sorry Apple users, you are out of luck unless you are running boot camp.

Samsung has an excellent article on their site that walks you step by step through the installation process at:

Sprint : What Are The Required Steps To Upgrade To DE03 For My SPH-M900 Moment?

Samsung has also updated the user manual for the Moment on their website to reflect the new interface changes that come with Android 2.1.

Enjoy!!

I just had one of my clients call me this morning.  They had received a very convincing looking email from "Intuit Update Center" with the subject "Intuit Update Notification".  The email wanted them to download an update to their digital certificate or risk losing access to Quickbooks by March 10th.

Luckly, the recepient noticed a few grammer errors in the email which tipped them off that something was amiss. They called me, I went to Intuit’s website, and found that Intuit’s security team already had an article posted about this email. They are trying to shut down all the bogus download sites as quickly as possible, but they are fighting a reactive battle and awareness of this scam is your best defense.

This is a good example of the increasing sophistication of internet criminals. They released this scam on March 1st to conincide with the height of the tax season. The emails are targeting accountants and bookkeepers who have access to vital computers that contain financial records, bank account numbers and credit card processing information. They are counting on these people to be tired and overworked and just that tiny bit careless enough to download this supposed update without thinking.

If you receive either this email or any other varients please do not use the links and delete it immediately.

Remember that Intuit will NEVER send you an email with an attachment to install or with a link asking you to download a patch.

For more information see: http://security.intuit.com/alerts/alert.php?a=8. I have all appended the full text of that article below.

Kindest regards and safe surfing,

Sterling Cain, President

Aspect Technologies, Inc.

———————————————-

Phishing Alert for QuickBooks Customers–security plug-in or digital certificate

Overview

IMPORTANT UPDATE FOR QuickBooks Customers: Intuit is receiving reports of individuals receiving fraudulent emails from QuickBooks or QuickBooks Online. The two separate emails ask customers to either download a plug in to assess their security or download a Digital Certificate. Customers should delete either of these emails. As we discover these fraudulent sites (cyber criminals often use the same email repeatedly, although they change web sites), we take them down.

Email texts

The text of the fraudulent emails are below. The first email is about a fake security plug-in.

As is the case with many companies that maintain large databases of information, Intuit is the target of fraudulent attempts to access and extract information from its database. We recently learned our database was illegally accessed and certain contact and personal data were taken, including QuickBooks names, email addresses, phone numbers. The information accessed does not include banking information.

Immediately upon learning about this, Intuit started an investigation and took corrective steps. It is important to know the company continually monitors for any illegal use of information in our database, and so far, we have not detected the misuse of this information.

In order to help assure the security of your information, we have developed a special plug-in for browser and Windows – QuickBooks Update. This software will protect users private information from any kinds of spyware or malware.

System requirements:

· Windows XP, Vista, 2000, 2003

· Internet Explorer 6.x, 7.x, 8.x

ATTENTION: You will not be able to use our service without update from 29 of November 2009

Download:

· Windows QuickBooks Update

· Internet Explorer plug-in

If you are not Microsoft Windows user you can use our services as usual

This is the end of the first fraudulent email.

The second email is about a fake digital certificate and appears exactly as it is sent (mistakes included):

Dear Mr(s).

In order to access Intuit after 6 of March 2010, you must have a valid Digital Certificate installed on your Computer.

Creating and installing your Intuit digital certificate s a quick and automaed process.

Knowing with whom you are communicating, it security on internet operations. only encrypt is not enoug, as it provides no proof of the identity of the sender of the encrypted information. Without special safeguards, you risk being impersonated online. Digital certificates provide an electronic means for Intuit to verify your identity. Used in conjunction with encryption, digital certificates provide a more complete security solution, assuring the identity of all parties participating in a transaction.

The Intuit server has its own digital certificate to assure you that you are actually connecting with Intuit and not with an gyp.

To generate your own Digital Certificate, you need to download Digital Certificate generation tool. For security reasons, download is available only once. Please download Digital Certificate generation tool direct to your Microsoft Windows PC. It is important to note that: Your Intuit digital certificate will expire after one year. You will be prompted to enter an automatic renewal process 30 days prior to certificate expiration.

System requirements :
Internet Explorer 6.x, 7.x, 8.x
Windows XP, Vista, 2000, 2003
ATTENTION: You will not be able to use our service without update from 6 of March 2010

Download :

Digital Certificate generation tool

If you are not Microsoft Windows user you can use our services as usual

Have more than customers, or want to give your accountant access to your books?

Then Upgrade Today! —
simply log in and click "Upgrade" from your home page.

For faster access, bookmark accounting.quickbooks.com in your browser.

This is the end of the second fraudulent email.

Information

On the Internet, "phishing" refers to criminal activity that attempts to fraudulently obtain sensitive information. There are several ways a scam artist will try to obtain your social security number, driver’s license, credit card information, or bank account information. Here is our QuickBooks Online commitment to you, as well as some steps you can take to make sure your data is safe and secure.

Our commitment to you:

What we won’t do

1. We will never send you an email with a "software update" or "software download" attachment.

2. We will never send you an email asking you for login or password information to be sent to us.

3. We will never ask you for your banking information or credit card information in an email. We will never ask you for confidential information about your employees in an email.

What we’ll do

1. We will provide you with instructions on how to stay current with your Intuit product, and we will provide you with information on how to securely download an update from your computer.

2. If we need you to update your account information, we will request that you do so by logging into your account.

Here’s what you can do to protect yourself from a phishing attack:

1. If you suspect you have received a phishing email from Intuit, please forward it immediately to spoof@intuit.com. We will look into each reported instance.

2. Make sure you subscribe to an anti-virus software and keep it up-to-date.

3. Make sure you have updated your web browser to one that includes anti-phishing security features, such as Internet Explorer 7 or Firefox version 3 or higher

4. Make sure that you keep up to date on the latest releases and patches for your operating systems and critical programs. These releases are frequently security related.

5. Do not respond to emails asking for account, password, banking, or credit card information.

6. Do not open up an attachment that claims to be a software update. We will not send any software updates via email.

7. Do not respond to text messages or voicemails that ask you to call a number and enter your account number and pin.

8. Make sure you have passwords on your computer and your payroll files.

Here are 3 common methods that phishers use in their emails

1. Spoofed email address. Don’t reply to unsolicited email and don’t open email attachments. It’s easy to fake a From or Reply To address, either manually or with spam software, so never assume an email is real by looking at its header. You might be able to spot fake addresses by checking for domain name misspellings, but this isn’t foolproof. Some email service providers combat the problem of spoofed addresses by using authentication techniques to verify a sender’s integrity.

2. Fake link. When in doubt, never click on a link in an unsolicited or suspicious email. Scam emails can contain a hidden link to a site that asks you to enter your log on and account information. A clue: if the email threatens you with account closure if you don’t log on soon, you could be the target of phishing. You may be able to tell if a link is real by moving your mouse over it and looking at the bottom of your browser to see the hidden Web address – it will look different than the one you see on the surface.

3. Forged Website. If you must visit a financial site, like your bank or credit card company, enter its known address into the browser location field manually. Use a browser with an anti-phishing plug-in or extension, like FireFox version 3 or higher or Internet Explorer 7. These browsers warn you about forged, high-risk sites. Phony Web sites mimic real sites by copying company logos, images, and site designs. Malicious webmasters can also use HTML, Flash or Java Script to mask or change a browser address.

Visit security.intuit.com to get the most up to date information about phishing. Forward suspicious emails to spoof@intuit.com.

Log in with an administrative account.

Left click “Start” and hover over Programs –> Administrative Tools –> Active Directory Users and Computers and left click.

Find where your “User Objects” are stored and right click the user you wish to reset.  Hover over “Reset Password” and left click.

Type in the new password.  Choose whether or not you want the user to change the password and click OK.

One of the nice things about the new version of Firefox is that it will automatically reopen all the tabs you had open the last time you closed it.  Internet Explorer 7 used to do this as well.  However, Microsoft decided that this was not the greatest idea and took away that automatic functionality in Internet Explorer 8.

However, you can closely approximate this behavior with one simple change.  You have to change your homepage to about:Tabs under Tools –> Internet Options.

Now when you open Internet Explorer you have the option to click “Reopen Last Browsing Session”.  Voila you have all the tabs back from when you last closed IE8.

View us on 9news.com discussing Apple’s new iPad tablet.

9NEWS.com | Denver | Colorado’s Online News Leader | Buzz grows over possible Apple Tablet unveiling

This is a little flash movie I created of the new taskbar in Windows 7.  It is truly one of the most innovative features I have seen Microsoft come up with in a while.

One of our employees joined his Sprint phone to our company plan.  He had come from another employee plan where they had restricted his ability to roam or call long distance.  However, once he was on our plan he was still unable to perform these functions.  He decided to camp out on their tech support line this morning to see what was the matter.  After making it to Tier 5 tech support (I did not know you could even get that high) he reached a tech that was worth his salt and knew what the problem was.  It turns out that for some accounts there are two numbers.  A hidden internal Sprint number and your normal external number.  They had removed the restrictions on the external number but they had not removed the restrictions from the internal number.

I hope this helps someone in the same situation.

Yah I know.  They released it yesterday.  It sucks to be so behind the curve.  But I cannot restrain my joy and I have to shout it out to the world.

Google Chrome for Mac!

Phew, I feel better now.

What is so great about Google Chrome?  It is simple… speed, speed and more speed.

We ran into a situation today where we upgraded a server from Windows Server 2003 R2 to Windows Server 2008.  We thought we had covered all the bases, but we had to jump through a few hoops to get the Autodesk Network License manager to work. 

First, a disclaimer.  Autodesk does not support Windows Server 2008 with ANY version of the license manager.  However, we were able to get version 11.5 to load. 

1. Version 10.4 of the license manager will not load at all in Server 2008.  We upgraded to 11.5 to get past that problem.
2. On the Autocad install DVD the installation package for FlexLM is named NLM.msi.  If you need to install on a remote server you only need to copy this file across the WAN.
3. Copy all the settings from your old installation into notepad and copy the files off to a backup directory.  You do not want to mess up and delete your license file.
4. Remove the old version via “Programs and Features” in Control Panel.  In case you didn’t know, Microsoft has renamed the old reliable “Add/Remove Programs”.
5.  We moved from a 32 bit (x86) version of FlexLM to the 64 bit (x64) version of FlexLM.  This messed up the path in LMTools because the directory names changed from “c:\program files (x86)\” to just “c:\program files\” .  You have to change the path to the lmgrd.exe executable.  That path was automatically imported from the old installation.

Yet another one that one of our clients received the other day.  This was on their Verizon phone.  We confirmed that it happened to another Verizon customer as well.

From:  MsgID5_YW6WAWUF@v.w

Sooper Credit Union Alert:

  Your CARD has been DEACTIVATED.  Please contact us at 303-482-2272 to REACTIVATE your CARD.