Oracle Java vulnerabilities – This is not a repeat

Nothing more to say here… ¬†JAVA is full of holes it might seem. ALL systems, including Apple Mac, Microsoft Windows, Windows Server, Linux, that are running Java may be vulnerable. Here’s the latest US-CERT Alert for February 20th in its entirety. — —–BEGIN PGP SIGNED MESSAGE—– Hash: SHA1 National Cyber Awareness System US-CERT Alert TA13-051A Oracle Java Multiple Vulnerabilities Original …

Apple Macs infected with malware – at Apple Inc

Remember the computer that is impervious to malware, the Apple Mac? Well here’s one for you… Yesterday, Apple Inc announced that computers within their own network have been exploited. ¬†Mac computers in other companies have also been exploited. It’s always a heated subject whenever I mention that more and more Apple Macs are becoming compromised. Very passionate people will argue …

SECURE IT ALERT: Using RDP / Remote Desktop Protocol on your Microsoft Windows desktop or server? Patch it – NOW!

Homeland Secure IT Alert for Tuesday, March 13, 2012 Welcome to another exciting edition of Microsoft Patch Tuesday!¬†This one is so exciting, it gets two posts dedicated to it. This bunch of patches contains one very important fix for a flaw so serious, according to some security experts, you can’t patch it fast enough (read here).¬†Critical update MS12-020. Of course, …

SECURE IT ALERT: Update your Adobe Shockwave – Mac users, this means you too…

Adobe released a security bulletin this week warning of nine critical vulnerabilities that affect Adobe Shockwave Player 11.6.3.633 and earlier for Windows and Macintosh. That bulletin can be found here: http://www.adobe.com/support/security/bulletins/apsb12-02.html Basically, it is the same old and busted story… ¬†If you are running an unpatched, and therefore vulnerable version of Shockwave Player, and you happen to visit a website …

Smile, You’re on Candid Camera! TRENDnet Security Camera Feeds Exploited

TRENDnet announced that upwards of 50,000 cameras, comprised of 26 vulnerable models have been identified which are vulnerable to the threat of being used for reverse surveillance. An article on BBC.co.uk indicates that as 7 of the 26 vulnerable models have patches to faulty code already released and the owners would be notified of the available updates. The scary thing …

Are you using pcAnywhere? Symantec says to cut that out… #vulnerbilities #hax0rz

If you are using pcAnywhere to remotely access your computer, you probably want to go read the “pcAnywhere Security Recommendations” posted by Symantec. http://www.symantec.com/connect/sites/default/files/pcAnywhere%20Security%20Recommendations%20WP_01_23_Final.pdf The danger is that someone so inclined could potentially access your computer through vulnerabilities exposed from old source code, and gain full access to your computer, files and your network. To sum it up, disabling pcAnywhere …

Microsoft security advisory 2659883 announces DoS vulnerability in ASP.NET

Microsoft released Security Advisory 2659883 today which outlines a vulnerability in ASP.NET which could permit a Denial of Service. More information is available here:¬†http://technet.microsoft.com/security/advisory/2659883 Two notes from that page listed as “Mitigating Factors”: By default, IIS is not enabled on any supported Windows operating system Sites that disallow application/x-www-form-urlencoded or multipart/form-data HTTP content types are not vulnerable Please visit the …

HTC logging tools may expose your EVO 3D, 4G or Thunderbolt Android smartphone information

An interesting article was pointed out to me over on the AndroidPolice.com site that says, “Massive Security Vulnerability In HTC Android Devices (EVO 3D, 4G, Thunderbolt, Others) Exposes Phone Numbers, GPS, SMS, Emails, Address, Much More“… This article pretty much says it all… There is even a work-around, but not an official fix for the security vulnerability from HTC as …

SECURE IT ALERT: A plethora of Microsoft Windows, Office and IE updates are available

Homeland Secure IT Alert for Tuesday October 12, 2010 ¬† Well folks, we have a boat load of updates this go ’round…. These updates affect Microsoft Office on both MIcrosoft Windows and Microsoft Macintosh operating systems. Then of course there are updates to the Microsoft Windows Operating System itself, and Microsoft Internet Explorer. The Reader’s Digest version(tm) goes like this …