Pittsburgh Tech Guy

For anyone who has freaked out when an antivirus alert popped up on their screen and spent time researching it only to find out it was a false alarm, a recent survey will hit home.

A survey of information-technology professionals published on Friday found that the average large organization has to sift through nearly 17,000 malware alerts each week to find the 19 percent that are considered reliable. The efforts at triage waste employees’ time—to the tune of a total estimated annual productivity loss of $1.3 million per organization. In the end, security professionals only have time to investigate four percent of the warnings, according to the survey conducted by the market researcher Ponemon Institute.

The survey results show the problems posed by security software that alerts for any potential threat, says Brian Foster, chief technology officer of network-security firm Damballa, the sponsor of the research.

“At the end of the day, all of these security products are spitting out more alerts than humans have time to deal with,” Foster said. “And at the end of the day, if your software is overwhelming the analysts, you are part of the problem, not part of the solution.”

The deluge of unreliable alerts—a problem known in the industry as “false positives”—is a well-known issue for many types of security systems. Typically, security-conscious users and IT security professionals have a choice: turn on more features in their security products and deal with the increased alerts or disable features and risk missing a real attack.

Unfortunately, companies often choose the latter. But even when security professionals choose the most stringent options, the increase in unreliable alerts overwhelms users and those responsible for IT security. Instead of investigating every warning, they are trained to ignore the warnings.

In 2013, for example, when cybercriminals broke into Target’s systems and loaded malware, the company’s FireEye security system issued an alert for the activity, but the company ignored the alerts. As a result, a District Court judge in Minnesota has given the go-ahead for banks to sue the retailer.

In the past, Damballa’s Foster has built a few products at other companies that produce a large number of alerts. Security firms are more concerned with catching every attack, even if doing so means burying a critical alert in a haystack of irrelevant warnings. The industry has to change, Foster says, especially with trained security analysts in short supply.

“These products rely on a smart, skilled human to make sense of all the alerts in order to be effective, and unfortunately, there are not enough technically trained professionals to go around,” he said.

Of course, from the security industry’s perspective, solving the problem involves buying more security, not less. By combining existing systems with more data and automated analysis, the triage of alerts can be automated, whittling down the number of warnings that humans actually have to investigate.

“Find ways to corroborate those alerts,” Foster said. “Try to get at the problem from multiple angles instead of relying on a single silver bullet.”

For home users, few solutions exist. Security-conscious users who use more stringent security software will have to deal with more alerts produced by security systems tuned to warn more often. Deciding whether an alert is serious will continue to be up to the user until security services crop up to help users manage their systems.

Not sure where to start in Photoshop? Here's a crash course on the basics

Photoshop is a powerful application that can be used for a variety of purposes, from editing photos or other images to graphic design and 3D art to light videography work. But Photoshop's power and versatility can also make it incredibly intimidating. The program’s main window is strewn with 20 different tools plus a ton of filter effects and image layers to top it all off. While Photoshop may be as understandable as Sanskrit to a novice, we’re going to show you how to get started with the basics.

Click here for the full MaximumPC article:

Under What's New check out the Infrographs on How to set up a VPN, become invisible on the Internet and how to access the Deep Internet.  Interesting reading!!

Yet another end is nigh for Windows 7. After months of buildup—Microsoft killed standalone software sales of the operating system in October 2013, and Windows 7 consumer PCs stopped being manufactured in October 2014—the venerable OS is finally exiting “mainstream support” on January 13, 2015. And for months now, the Web has been flooded with a wave of confused or downright fearmongering headlines and articles implying that Windows 7 is following Windows XP into the graveyard.

It's not.

The confusion here stems from Microsoft's maddeningly obtuse naming conventions. Leaving mainstream support only means that Windows 7 won't be receiving any new features or product tweaks, such as the impressing-sounding DirectX 12 gaming technology slated to launch with Windows 10. You won't be able to call Microsoft for free help if you run into an issue with Windows 7 either. 

Once a Windows desktop operating system leaves mainstream support, it enters the extended support phase—the very same support phase that Windows XP found itself in from early 2009 until its death earlier this year.

You'll still receive those oh-so-critical security patches during extended support, meaning that while Windows 7 won't be in active development beyond next January, it won't be tossed to the wolves of the Web, either. Hotfixes will still be provided, too, assuming they're security related. (Business can sign up for an extended hotfix support plan if your company wants hotfix support for non-security issues.) And those security updates will be coming for a long time, too: Extended support for Windows 7 lasts until January 14, 2020. Heck, commercial PCs with Windows 7 Professional will even continue to be sold for the foreseeable future. 

You can read Microsoft's Support Lifecycle for Windows if you're still curious about how this all works. (You can also find information about the other products reaching various End of Support statuses on January 13 in this Microsoft Support post.)

So take a deep breath. Relax. Don't panic. Windows 7 isn't being left for dead until years from now, even if the timing of Microsoft's Windows 10 events (including the one scheduled for January 21) directly coincide with Windows 7 End of Support milestones. In fact, here's three ways to buy a new Windows 7  and yes, downgrade rights from Windows 8.1 Pro still work just fine. 

For many people, smartphones have replaced portable music players as the way to listen to music on the go, but for high-end audio there’s still the Walkman, and Sony will preview the latest version on Monday at CES in Las Vegas.

The NW-ZX2 is designed for Hi-Res Audio, a group of digital audio formats that go beyond CD and MP3 in terms of quality. While MP3 or MP4-based formats still rule the consumer market, Sony and other audio makers have been pushing Hi-Res Audio to those serious about their music.

To be considered Hi-Res, audio quality must be 96kHz/24bit or higher. Regular CDs offer 44.1kHz/16bit quality.

The new Sony audio player shares the same large screen on its front as its predecessor, the ZX1, and is based on Android 4.2, which means users can download and install video, apps and games from Google Play.

It has Wi-Fi, Bluetooth and NFC connectivity, 128GB of storage, which is enough for about 60 hours of Hi-Res Audio music, and a microSD slot.

A launch date has not been announced, but it will cost $1,200.

Sony is also planning to launch a car audio head unit that’s compatible with Hi-Res Audio. The unit will be available in the coming months at a price to be announced.