SECURE IT ALERT: Adobe Shockwave vulnerable on Mac and Windows – Update today!

Homeland Secure IT Alert for Thursday, August 26th 2010 I know it seems like it never ends… Adobe Reader, Adobe Acrobat, Adobe Flash, Adobe Air, Java, Windows, Mac, one update and patch after another following these security announcements….¬†¬† The vulnerability de jour is brought to you by Adobe, and it affects Shockwave player on Macintosh OSX and Windows platforms. The …

SECURE IT ALERT: Adobe to release Reader & Acrobat patches for Windows, Mac & UNIX

Homeland Secure IT Alert for August 18, 2010 Adobe has announced that August 19th will bring out-of-cycle updates to Adobe Reader 9.3.3 across the Microsoft Windows, Apple Mac and UNIX platforms, as well as Acrobat 8.2.3 on Apple Macintosh to address critical vulnerabilities. An update to Adobe Flash player is also anticipated. More info can be found here but the …

SECURE IT ALERT: QuickTime Movie Handling Vulnerability

Secure IT Alert for August 13, 2010 The following information comes courtesy of WatchGuard… QuickTime Movie Handling Vulnerability Only Affects Windows Users Severity: Medium 13 August, 2010 Summary: These vulnerabilities affect: QuickTime 7.6.6 and earlier for Windows (Mac version is unaffected) How an attacker exploits them: By enticing your user into viewing a maliciously crafted movie Impact: An attacker could …

1

SECURE IT ALERT: Microsoft August Security Bulletin Update

Homeland Secure IT Alert for Wednesday, August 11, 2010 Microsoft has updated their August Security Bulletin as of August 10, 2010… A webcast is scheduled for 2:00 PM Eastern on August 11, 2010 –¬†Register here The following information was provided courtesy of US-CERT National Cyber Alert System Technical Cyber Security Alert TA10-222A: Systems Affected Microsoft Windows Microsoft Office Internet Explorer …

1

Secure IT Alert: Microsoft Issues Critical Patches for XP, Vista, Windows 7, Server 2003 & 2008

Homeland Secure IT Alert for Monday, August 02, 2010 Microsoft Issues Emergency Patch: Rated Critical Microsoft¬†issues¬†out-of-band security bulletin and patch today August 2, 2009. Out of band means released ahead of the regular scheduled monthly update.¬† The out-of-band patch is designed to address a security flaw in the way shortcuts are displayed. Software affected includes Windows operating system, various versions, …

Secure IT Alert: Microsoft and Oracle vulnerabilities and patches available

¬†These are from CERT and affect Microsoft & Oracle. There are patches available. Microsoft Releases July Security Bulletin added July 13, 2010 at 01:25 pm Microsoft has released updates to address vulnerabilities in Microsoft Windows and Office as part of the Microsoft Security Bulletin Summary for July 2010. These vulnerabilities may allow an attacker to execute arbitrary code. US-CERT encourages …

SECURE IT ALERT: Apple Mac Trojan Vulnerability – Patched in OS X Malware Upgrade

Macintosh users are getting their own patches for Mal-Ware lately. Released last week with absolutely no fanfare was OS X 10.6.4 which addresses a Trojan vulnerability among other things. It seems that Apple intentionally has not made a big deal about this security issue, partly to help keep up the appearance that Mac computers are impervious to malicious software. A …

SECURE IT ALERT: Adobe Vulnerabilities Affect Mac, Windows, and More! Please Update NOW!

Homeland Secure IT Alert for Friday, June 18, 2010 Greetings and salutations, Last week we warned of Critical Vulnerabilities which affect Adobe products and this week we are hearing of many people being exploited by these security holes. There are patches and updates available that will secure your system, however, they are not applied automatically and must be performed by …

SECURE IT ALERT: Apple iPad reportedly still has a vulnerable Safari browser

The awesome little iPad tablet computer from apple is still vulnerable to the hacks that were reported earlier. According to this article, ‘Once implemented, the hack can reportedly allow hackers to steal someone else’s email identity, reflash network devices with firmware, or trick Safari into doing “pretty much anything on any TCP port and not have any current IDS/IPS in …