Archive for February, 2010

Patches released for Firefox 3.0.17 and 3.5.7 – update to 3.0.18 or 3.6

Thursday, February 18th, 2010

If you are using 3.0.17, you can do a check for updates. 3.5.7 users are really being directed to version 3.6 it seems. http://www.mozilla.com/en-US/products/download.html?product=firefox-3.5.8&os=win&lang=en-US

Patch for Adobe Reader version 9.3 – update to version 9.3.1

Thursday, February 18th, 2010

Adobe released a patch for Reader yesterday. I was not able to see that the download site is distributing 9.3.1. But if you do a check for updates after starting reader you should get 9.3.1 As a side note:http://2mw.mcafee.com/2minutebroadcast.aspAdobe Rushes Out Patch for Critical Vulnerabilities in Reader, Acrobat Adobe has released updates for all versions […]

Make sure you are running Open Office version 3.2 or 3.3

Monday, February 15th, 2010

Everything I am reading seems to indicate that 3.1 has vulnerabilities. I suggest only having 3.2 or 3.3 installed. http://www.securityfocus.com/bid/38218OpenOffice Prior to 3.2 Multiple Remote Code Execution Vulnerabilities OpenOffice is prone to multiple remote code-execution vulnerabilities because of errors in processing certain files. Remote attackers can exploit these issues by enticing victims into opening maliciously […]

Remember to update your Flash Player to version 10.45.2

Friday, February 12th, 2010

http://www.adobe.com/support/security/bulletins/apsb10-06.html A critical vulnerability has been identified in Adobe Flash Player version 10.0.42.34 and earlier. This vulnerability (CVE-2010-0186) could subvert the domain sandbox and make unauthorized cross-domain requests. Adobe recommends users of Adobe Flash Player 10.0.42.34 and earlier versions update to Adobe Flash Player 10.0.45.2. Adobe recommends users of Adobe AIR version 1.5.3.1920 and earlier […]

BlackBerry Applications Used to Spy on Users

Tuesday, February 9th, 2010

BlackBerry Applications Used to Spy on Users   A researcher at the ShmooCon hacker conference on February 7, 2010demonstrated how BlackBerry applications can be used to expose sensitiveinformation without the use of exploits. For a video, visit:http://vimeo.com/9192358 The senior researcher for Veracode’s Research Lab, Tyler Shields, alsoreleased proof-of-concept source code for a spyware app he […]

Feb 8 looks to be a big MS patch day

Friday, February 5th, 2010

There appears to be 5 critical patches for Windows 2000 and XPFour critical patches for Server 2003 And 3 critical patches for Vista and Windows 7 http://blogs.technet.com/msrc/archive/2010/02/04/february-2010-bulletin-release-advance-notification.aspx February 2010 Bulletin Release Advance Notification Today we released February bulletin information through our Advance Notification Service (ANS). This month, we will be releasing 13 bulletins – five […]

If you are running IE7 or even IE8 on non Vista systems you might have a problem

Thursday, February 4th, 2010

http://blogs.technet.com/msrc/archive/2010/02/03/security-advisory-980088-released.aspx Security Advisory 980088 Released Hi everyone, Today we released Security Advisory 980088 to address a publicly disclosed vulnerability in Internet Explorer that may allow Information Disclosure for customers running on Windows XP or who have disabled Internet Explorer Protected Mode.  At this time we are not aware of any attacks seeking to use the […]

Most consumers reuse banking passwords on other sites

Tuesday, February 2nd, 2010

http://www.theregister.co.uk/2010/02/02/e_banking_password_fail_survey/ The majority of online banking customers reuse their online-banking login credentials on other websites, according to a new survey on password insecurity. Online security firm Trusteer reports that 73 per cent of bank customers use their online account password to access at least one other, less sensitive website. Even worse, around half (47 per […]

PC World – how to stop 11 hidden security threats

Monday, February 1st, 2010

http://www.pcworld.com/printable/article/id,187199/printable.html How to Stop 11 Hidden Security Threats Antivirus software and a firewall alone can’t guarantee your safety. Here’s how to foil the latest crop of sneaky attacks and nefarious attempts to steal your data. <!– Part 1 of a special five-part series. –> Tony Bradley, PCWorld Sunday, January 24, 2010 05:00 PM PST Do […]