Archive for August, 2009

Reports Say Vulnerabilities Outpacing Patches- all you gotta do is patch

Wednesday, August 19th, 2009

http://2mw.mcafee.com/2minutebroadcast.asp Reports Say Vulnerabilities Outpacing Patches Newly released data from Trusteer and Qualys puts a spotlight on trouble in the vulnerability management process. Qualys reports that it still takes a month for a patch to be deployed to half of vulnerable systems, while Trusteer reports that close to 80 percent of the computers it scans […]

Good segment from wired about the guy who did TjMax and Haniford – SAME person and he was already in custody

Wednesday, August 12th, 2009

http://newshour-tc.pbs.org/newshour/rss/media/2009/08/18/20090818_cyber.mp3 Cyber Scam A vast computer scam that resulted in the thefts of millions of credit card numbers has raised new questions on cyber security. http://www.computerworld.com/s/article/9136787/Government_informant_is_called_kingpin_of_largest_U.S._data_breaches?taxonomyId=17 Government informant is called kingpin of largest U.S. data breaches Gonzalez allegedly worked with feds to jail cohorts while launching own massive attacks So lets see, after he was […]

Its been a big week for patches – make sure you have all of them

Friday, August 7th, 2009

http://ait-security.tamu.edu/2009/08/patch-that-mac-today—security-patches-for-1058.htmlPatch for Mac OS X – update to 10.5.8http://ait-security.tamu.edu/2009/08/patches-for-java-issued-on-august-5—version-1615.htmlJava patch -Patch for JDK (java development kit) and JRE (Java Runtime environment) to versions 1.6.15 http://ait-security.tamu.edu/2009/07/vulnerabilities-in-firefox-prior-to-version-312.htmlFirefox update to version 3.0.13 or 3.5.2 http://ait-security.tamu.edu/2009/07/dont-forget-to-patch-your-flash.htmlFlash patch to version 10.0.32.18

Patches for Java issued on August 5 – version 1.6.15

Friday, August 7th, 2009

Sun issued a patch to Java on August 5 to address several vulnerabilities. Please make sure your java has downloaded an automatic update to version 1.6.15 http://secunia.com/advisories/36159/Description:Some vulnerabilities have been reported in Sun Java, which can be exploited by malicious people to disclose sensitive information, bypass certain security restrictions, cause a DoS (Denial of Service), […]

Patch that mac today – Security patches for OS-X update to 10.5.8

Thursday, August 6th, 2009

Apple released lots of patches for OS-X 10.5 today. Updating to version 10.5.8 is what is needed to address the vulnerabilities recently identified http://isc.sans.org/diary.html?storyid=6919 Details of these will be posted here soon: http://support.apple.com/kb/HT1222 Updates can be obtained here: http://www.apple.com/support/downloads/ Fixed vulnerabilities include: bzip2 CVE-ID: CVE-2008-1372 Application termination. CFNetwork CVE-ID: CVE-2009-1723 Incorrect URL displayed after a […]