Our Company

We are committed to providing our customers with the best products on the market, as well as excellent support.  At IT Management Solutions, our primary goals are -

• To provide professional and on time service to our clients.
• To provide our clients with efficient, flexible and economic solutions to their network and computer needs using proven products and technology.
• To develop a long term relationship by providing expertise that results in improved operating efficiency, security and productivity for our clients.

 

What we do

Support
Experience with the latest technology. More... Security
Protect your most valuable assets More... VoIP
VoIP solutions from leading vendors  More... Consultation
Professional, experienced consultants to aid you More...

Botnet Example Video

Have you ever wondered where all those SPAM emails are comming from or why your PC is running so slow?  Watchguard has an excellent video of a botnet in action.

Security Advisories

US-CERT Cyber Security Alerts
US-CERT Cyber Security Alerts provide timely information about current security issues, vulnerabilities, and exploits. Cyber Security Alerts are released in conjunction with Technical Cyber Security Alerts when there is an issue that affects the general public. Cyber Security Alerts outline the steps and actions that non-technical home and corporate computer users can take to protect themselves from attack.
SA10-040A: Microsoft Updates for Multiple Vulnerabilities
Microsoft Updates for Multiple Vulnerabilities

SA10-021A: Microsoft Internet Explorer Vulnerabilities
Microsoft Internet Explorer Vulnerabilities

SA10-013A: Adobe Reader and Acrobat Vulnerabilities
Adobe Reader and Acrobat Vulnerabilities

SA10-012B: Microsoft Windows and Adobe Flash Player 6 Vulnerabilities
Microsoft Windows and Adobe Flash Player 6 Vulnerabilities

SA09-343A: Adobe Flash Vulnerabilities Affect Flash Player and Adobe AIR
Adobe Flash Vulnerabilities Affect Flash Player and Adobe AIR

SANS Internet Storm Center, InfoCON: green

Infocon: green
Samurai WTF 0.8

Samurai WTF 0.8, (Mon, Mar 8th)
A new version of the Samurai WTF (Web Testing Framework) distribution, version 0.8, has been r ...(more)...

Vodafone Android Phone: Complete with Mariposa Malware, (Tue, Mar 9th)
Panda Security has a post up on one of their employees buying a brand new Android phone from Vodafon ...(more)...

Energizer Malware, (Tue, Mar 9th)
We received several emails today about the US-CERTanalysis of Trojan horse software found in a ...(more)...

SEO poisoning on TV show, (Mon, Mar 8th)
An ISCreader, thanks Paul, notified us about a new SEO(Search Engine Optimization) ...(more)...

SANS Internet Storm Center, InfoCON: green

Infocon: green
Samurai WTF 0.8

Samurai WTF 0.8, (Mon, Mar 8th)
A new version of the Samurai WTF (Web Testing Framework) distribution, version 0.8, has been r ...(more)...

Vodafone Android Phone: Complete with Mariposa Malware, (Tue, Mar 9th)
Panda Security has a post up on one of their employees buying a brand new Android phone from Vodafon ...(more)...

Energizer Malware, (Tue, Mar 9th)
We received several emails today about the US-CERTanalysis of Trojan horse software found in a ...(more)...

SEO poisoning on TV show, (Mon, Mar 8th)
An ISCreader, thanks Paul, notified us about a new SEO(Search Engine Optimization) ...(more)...

Microsoft Security Bulletins
Microsoft Security Bulletins
MS10-015 - Important: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (977165)
Bulletin Severity Rating:Important - This security update resolves one publicly disclosed and one privately reported vulnerability in Microsoft Windows. The vulnerabilities could allow elevation of privilege if an attacker logged on to the system and then ran a specially crafted application. To exploit either vulnerability, an attacker must have valid logon credentials and be able to log on locally. The vulnerabilities could not be exploited remotely or by anonymous users.

MS10-014 - Important: Vulnerability in Kerberos Could Allow Denial of Service (977290)
Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow denial of service if a specially crafted ticket renewal request is sent to the Windows Kerberos domain from an authenticated user on a trusted non-Windows Kerberos realm. The denial of service could persist until the domain controller is restarted.

MS10-013 - Critical: Vulnerability in Microsoft DirectShow Could Allow Remote Code Execution (977935)
Bulletin Severity Rating:Critical - This security update resolves a privately reported vulnerability in Microsoft DirectShow. The vulnerability could allow remote code execution if a user opened a specially crafted AVI file. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

MS10-012 - Important: Vulnerabilities in SMB Server Could Allow Remote Code Execution (971468)
Bulletin Severity Rating:Important - This security update resolves several privately reported vulnerabilities in Microsoft Windows. The most severe of these vulnerabilities could allow remote code execution if an attacker created a specially crafted SMB packet and sent the packet to an affected system. Firewall best practices and standard default firewall configurations can help protect networks from attacks originating outside the enterprise perimeter that would attempt to exploit these vulnerabilities.

MS10-011 - Important: Vulnerability in Windows Client/Server Run-time Subsystem Could Allow Elevation of Privilege (978037)
Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in Microsoft Windows Client/Server Run-time Subsystem (CSRSS). The vulnerability could allow elevation of privilege if an attacker logs on to the system and starts a specially crafted application designed to continue running after the attacker logs out. An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability. The vulnerability could not be exploited by anonymous users.