POS Trojans, Android Spear Phishing, and Record DDoS Extra, Extra, the Internet almost broke (no it didn't). Read... View all about it! Too much security news, and too little time? Let me summarize the highlights for you in my weekly InfoSec recap video. This week I cover two trojans targeting point-of-sale (POS) computers, a few software updates, a targeted spear phishing … [Read more...]
Cisco Patch Day: Multiple DoS Flaws in IOS
As part of their semiannual patch day, Cisco released seven security advisories describing different Denial of Service (DoS) vulnerabilities affecting the IOS software that primarily ships with their routers. The seven flaws differ technically, and lie within various IOS components, including NAT, IKE, RSVP, etc. However, most of them share the same essential scope and impact. … [Read more...]
MS Black Tuesday: 12 Bulletins, 57 Flaws, and Lots of Work
Though not the biggest on record, today's Patch Day is no slouch. As expected, Microsoft released a dozen security bulletins, fixing 57 vulnerabilities that affect a range of their software, including: Windows (and its components) .NET Framework Internet Explorer (IE) Exchange Server Fast Search Server 2010 According to the summary alert, Microsoft rates five of the … [Read more...]
MS Black Tuesday: 12 Bulletins, 57 Flaws, and Lots of Work
Though not the biggest on record, today's Patch Day is no slouch. As expected, Microsoft released a dozen security bulletins, fixing 57 vulnerabilities that affect a range of their software, including: Windows (and its components) .NET Framework Internet Explorer (IE) Exchange Server Fast Search Server 2010 According to the summary alert, Microsoft rates five of the … [Read more...]
Microsoft Black Tuesday: Updates Correct .NET and MSXML Flaws
Are you ready for the first Patch Day of 2013? If you run a Microsoft shop (Mac users need not apply this month), get ready as you'll want to install some of today's updates as soon as you can. As promised, Microsoft released seven security bulletins and software updates today, two of which they rate as Critical. The seven updates fix 12 vulnerabilities in products like … [Read more...]