It Security need to be address by today organizations. This should start from the top down but in most cases IT Security start from the bottom and in most cases never reach the top. The blog on IT Security are to help everyone better...
[more]
It Security need to be address by today organizations. This should start from the top down but in most cases IT Security start from the bottom and in most cases never reach the top. The blog on IT Security are to help everyone better understand how knowledge of the subject. The bad guys are working hard to gain access to your network and/or computer, we need to work at keeping them out.
Firefox late Thursday released an update to its web browser to resolve a major JavaScript vulnerability. Firefox version 3.5.1 fixes the "critical" flaw, revealed Tuesday by vulnerability tracking firm Secunia and which arises when the browser processes JavaScript code to handle HTML font tags. An exploit could cause a memory corruption buffer overflow, leading to the installation of malware on a compromised system. Soon after the flaw was disclosed, an exploit based on the Metasploit... Read Full Story
Microsoft on Tuesday issued two out-of-band security patches -- one for the development tools suite Visual Studio and another for Internet Explorer. According to Microsoft's security bulletin for Visual Studio, there are several vulnerabilities in the Active Template Library (ATL) that is shipped with Visual Studio. The vulnerabilities, which could allow an attacker to execute remote code, may cause controls or components developed using ATL, such as ActiveX controls, to be vulnerable as... Read Full Story
Microsoft released a security patch on Tuesday aimed at preventing hackers from exploiting a vulnerability in its Web browser, Internet Explorer. The US software giant said that the security update would be automatically installed for Internet Explorer users who have automatic updating enabled on their computers but would need to be installed manually by other users. It said the update resolves three privately reported vulnerabilities in Internet Explorer. "These vulnerabilities could allow... Read Full Story
Windows Vulnerability Scanner checks your system for Windows Vulnerabilities. It guides you to update with the right patch to make your system secure. Read Full Story
A currently underway attack is attempting to trick victims with an e-mail that purports to request a verification for payment to a major company, but instead carries a Trojan.
Email security company Cloudmark reports seeing more than 1.6 million of the attack emails, which bear a subject of “payment request from” followed by a company name such as eBay or J. P. Morgan Chase and Co. The body of the message says that to decline the payment, the recipient must download and install an attached... Read Full Story
IBM’s X-Force 2009 Mid-Year Trend and Risk Report says that there has been a tremendous increase of 508% in malicious web links over Internet during first half of 2009. The malicious content was found even on trusted sites, including search engines, blogs, bulletin boards, personal websites, online magazines, and mainstream news sites.
“There is no such thing as safe browsing today and it is no longer the case that only the red light district sites are responsible for malware. We’ve... Read Full Story
Microsoft has warned of a flawed software in Internet Explorer that hackers can exploit to take over some computers. The vulnerability was found in a program used in the popular web browser to play video on computers running with Windows XP or Windows Server 2003 operating systems, Microsoft said in a warning posted online. "An attacker who successfully exploited this vulnerability could gain the same user rights as the local user," the software giant warned in a security bulletin. "We are... Read Full Story
This AOK Patch Impact report deals with the August 11th Microsoft Patch Tuesday Security Update. This Microsoft security update includes nine patches; five rated Critical and the other four rated as Important by Microsoft. After loading the ChangeBASE AOK application testing portfolio into the AOK Patch Impact database, the nine patches were tested for application level issues and in addition; application dependencies. For these nine Microsoft Security updates, only the Microsoft Office... Read Full Story
Vulnerabilities in Microsoft Active Template Library (ATL) Could Allow Remote Code Execution Version: 1.0 Microsoft is releasing this security
advisory to provide information about our ongoing investigation into
vulnerabilities in the public and private versions of Microsoft's
Active Template Library (ATL). This advisory also provides guidance as
to what developers can do to help ensure that the controls and
components they have built are not vulnerable to the ATL issues; what
IT... Read Full Story
