It Security need to be address by today organizations. This should start from the top down but in most cases IT Security start from the bottom and in most cases never reach the top. The blog on IT Security are to help everyone better...
[more]
It Security need to be address by today organizations. This should start from the top down but in most cases IT Security start from the bottom and in most cases never reach the top. The blog on IT Security are to help everyone better understand how knowledge of the subject. The bad guys are working hard to gain access to your network and/or computer, we need to work at keeping them out.
QuickHealCleaner which may be named Quick Heal Cleaner is one of the latest and greatest antispyware applications out on the Internet to date. QuickHealCleaner is actually a direct replica of the well known SystemCop , BlockDefense , SaveDefense antispyware programs. It is somehow funny how many of them were created. QuickHealCleaner makes its way onto your machine by fake video codec’s installations which actually comes with Trojans. These fake video codec installations may come with a... Read Full Story
Here is the update for September Microsoft Security Releases! September 2009 brings a moderate Microsoft Patch Tuesday update from Microsoft with five CRITICAL Security updates. All five Microsoft Security Updates (MS09-45 to MS09-49) will require system reboots and relate to Remote Code Execution. The ChangeBASE team has raised the system reboot ratings for patch MS09-046 and MS09-047 to "Require a Reboot" from "May require a reboot" due to the nature of the files updated and the impact on... Read Full Story
A new critical zero-day vulnerability in Adobe Reader is currently being exploited in the wild, Adobe confirmed on Wednesday. The current versions of Flash Player 9 and 10 and Adobe Reader and Acrobat v9.x are affected by the vulnerability on the Windows, Macintosh and Lunux operating systems, Adobe said in an advisory Wednesday. The vulnerability, which could cause a computer to crash or allow an attacker to take control of an affected system, is being exploited in attacks against Adobe... Read Full Story
Microsoft has released the security patches for September 2009 which fix browser and web based attacks in various Microsoft programs and operating systems. All security patches have a critical or important security rating and are users who work with these software programs or operating systems should update them as soon as possible to protect their system from these attacks.
Microsoft has released two charts that show the severity and exploitable index and the deployment priority. The... Read Full Story
A flaw in all versions of BIND 9 reportedly being widely exploited has the potential to cause widespread damage if it goes unpatched, security experts said. The vulnerability affects the Domain Name Server (DNS) software called BIND 9, which a very large portion of the internet runs on. Specifically, BIND 9 servers that are masters for one or more zone are susceptible to be taken down by a denial of service attack, the Internet Software Consortium (ISC), which develops BIND, said in an... Read Full Story
HomeATM isn't the only company telling you that Https = HttBS . Even Microsoft says so. And it's ALL browsers that are weak. That's why HomeATM and the PIN Payments Blog has spent such an inordinate amount of time trying to get across our point that no website is safe and that transactions MUST be done OUTSIDE the browser space.
In what would provide the perfect segue for yet another dissertation on the "Don't Type" vs. "Swipe" mantra, I bring you this from Microsoft's... Read Full Story
These following vulnerabilities have been around for a while with no patches… Come on Microsoft… Microsoft Internet Explorer Window Injection Vulnerability Microsoft Windows XP GDI+ .ICO Handling DoS Vulnerability Microsoft Internet Explorer FTP Access Information Disclosure Microsoft Foundation Class Library FileFind Method Buffer Overflow Microsoft Windows Web Proxy Automatic Discovery (WPAD) Vulnerability Microsoft Internet Explorer Cross-Zone Scripting Vulnerability Microsoft Windows GDI... Read Full Story
Adobe on Thursday issued a security update for Flash Player and AIR to address a number of critical vulnerabilities which could potentially allow an attacker to take control of the affected system.The flaws affect the current versions of Adobe Flash Player 9 and 10 for Windows, Macintosh and Linux operating systems and Adobe AIR 1.5.1 and earlier versions, Adobe said in its security bulletin. The update addresses 10 vulnerabilities in total. Specifically, it addresses a bug caused by a flaw... Read Full Story
Firefox late Thursday released an update to its web browser to resolve a major JavaScript vulnerability. Firefox version 3.5.1 fixes the "critical" flaw, revealed Tuesday by vulnerability tracking firm Secunia and which arises when the browser processes JavaScript code to handle HTML font tags. An exploit could cause a memory corruption buffer overflow, leading to the installation of malware on a compromised system. Soon after the flaw was disclosed, an exploit based on the Metasploit... Read Full Story
Microsoft on Tuesday issued two out-of-band security patches -- one for the development tools suite Visual Studio and another for Internet Explorer. According to Microsoft's security bulletin for Visual Studio, there are several vulnerabilities in the Active Template Library (ATL) that is shipped with Visual Studio. The vulnerabilities, which could allow an attacker to execute remote code, may cause controls or components developed using ATL, such as ActiveX controls, to be vulnerable as... Read Full Story
