WatchGuard Security Week in Review: Episode 35 – Adobe Certs

New Java 0day, Cisco DoS, and Stolen Adobe Certs

There’s no shortage of information and network security news lately. If you find yourself struggling to keep up with it, due to all your other daily tasks, let my weekly summary videos fill you in. WatchGuard Security Week in Review quickly highlights the most important stories of the week, and lets you know what to do about the ones that might affect you.

This week’s episode includes two important software updates, news of another Java zero day flaw, a story about advanced attackers breaching a Smart Grid vendor’s network, and details about stolen Adobe code signing certificates. There’s patches to install and certificates to revoke, so give this week’s episode a view to learn what to do.

If you’d like more details on any of these stories, or want to see the ones I didn’t have time to cover in the video, check out the Reference section below. Have a great weekend, and see you next Friday.

(Episode Runtime: 8:50)

Direct YouTube Link: http://www.youtube.com/watch?v=R-DbODYoBLI

Episode References:

• Cisco release eight security updates in September – Cisco
  
• Chrome update fixes 24 vulnerabilities – Techworld
• Another Java zero day vulnerability – Computer World
• Smart Grid company suffers network breach – Wired
• New attack can wipe Samsung smartphones – Network World
• Adobe warns of code signing certificate theft – Adobe blog

• Extra Stories
  • More banks DDoSed by hacktivists  –  NBC News
  • IEEE password breach (unprotected file on FTP site) – Network World
  • NFC hack allows free subway rides – Network World
  • Microsoft may have known about IE 0day long ago  –  Ubergizmo
  • Mobile malware is up over 2000% – PC Advisor
  • Verizon Mobile passwords easily cracked – Net Security

— Corey Nachreiner, CISSP (@SecAdept)

Share This: