CERT Technical Cyber Security Alert TA11-350A – Adobe Vulnerabilities – Windows, Mac, Unix
A little something to keep you busy… Adobe vulnerabilities that affect Microsoft Windows, Mac and Unix machines. Patch ‘em up! —–BEGIN PGP SIGNED MESSAGE—– Hash: SHA1 National Cyber Alert System Technical Cyber Security Alert TA11-350A Adobe Updates for Multiple Vulnerabilities Original release date: December 16, 2011 Last revised: – Source: US-CERT Systems Affected [...]
Coming next Tuesday to a Microsoft Windows machine (and some Macs) near you… UPDATES! #PatchTuesday
Microsoft didn’t forget your Christmas gift…. And it’s coming early! That’s right, Microsoft Patch Tuesday is upon us again, and this December 13th you can expect a slew of updates covering the entire line of current Microsoft Windows operating systems. Operating Systems: Windows XP 64 & 32 bit, Server 2003 64 & 32 bit and [...]
The US Postal Service did not email you about a returned or refused package. Don’t open that attachment!
In the last 24hrs, I have spoken with or assisted at least 3 people who have become infected due to opening a malicious email. One of them was my wifey, Pamela, who received an email from the US Postal Service stating that her package had been refused and to open the attached file for details. [...]
Microsoft is trying to tempt you to use Internet Explorer 9 with the offer of free stuff
Are you using something other than Microsoft Internet Explorer 9 (IE9) for your web browser? A growing number of you are, and Microsoft does not like it one bit. In fact, if you go visit their promo site, you can receive “Free stuff from sites you love” if you will just cross over to the [...]
October updates for Apple products… Patch ‘em up!
Apple released a slew of updates to address major security vulnerabilities this week… Be sure get your devices up to date… OS X Lion v10.7.2 and Security Update 2011-006 iTunes 10.5 Safari 5.1.1 iOS 5 Software Update Numbers for iOS v1.5 Pages for iOS v1.5 Apple TV 4.4 A few of these provide you with [...]
mysql.com website hacked and used to serve malware to visitors
In what is becoming way too common, the popular site, mysql.com was exploited, and used to distribute malware by redirecting visitors to another site this week. Anyone browsing to mysql.com yesterday would have been redirected, and without even being prompted, then likely been exploited themselves by the software running on the rogue website which apparently [...]
Apple’s Mac OS X Lion poses enterprise security risks (this is not a repeat)…
Using Mac’s in your enterprise? You will want to read this article http://www.theregister.co.uk/2011/08/26/mac_osx_lion_security_hole/… This is kind of a big deal, as it underscores that Mac OS X Lion machines simply fail at LDAP, a basic part of enterprise network integration. In short, if you bring these Macs into your environment, once authenticated, they simply don’t care [...]
Don’t trust those external portable USB hard drives with your important data!
I’ve posted this before… External, portable, USB hard drives are convenient to store some data on, but dang it, don’t put everything on one and trust that it is forever and always going to be there for you. These devices use 2.5″ hard drives like you would find in a notebook computer, and while there [...]
Adobe Updates for Shockwave, Flash Media Server, Flash Player, AIR, Photoshop & RoboHelp
Running Adobe products? Of course you are! There are number of updates available that you need to apply. Please, if you are prompted to install these updates, do so. If not, make sure they are indeed installed, or better yet, just upgrade to the latest versions of the applications to avoid the potential for [...]
Security consultancy advises enterprise clients to steer clear of adopting large numbers of Macs
An article in The Register states, “Beware of Macs in enterprise” due to the findings by iSec Partners who claim large numbers of Macs are “in many ways more vulnerable than recent versions of Windows.” The vulnerability they specifically mention is the DHX authentication scheme which is easy to compromise and apparently “trivial to force [...]
