Security Alerts



Half a Dozen Windows Updates; One Critical

Bulletins Affect Windows Media components, CSRSS, SSL/TLS, and More Severity: High Summary: These vulnerabilities affect:  All current versions of Windows and components that ship with it How an attacker exploits them:  Multiple vectors of attack, including  enticing your users to download and open malicious media, documents, or other files. Impact:  Various results; in the worst case, an attacker can gain complete control of your Windows computer What to do:  Install the appropriate Microsoft patches immediately, or let Windows Automatic Update do it for you. Exposure: Today, Microsoft released six security bulletins describing seven vulnerabilities affecting Windows and components that ship with it (more…)

Share
January 11, 2012 — Category: Security Alerts

Seven Microsoft Security Bulletins in January; Two Fix Issues in Security Mechanisms

Like clockwork, Microsoft has posted the first Patch Day of the new year. In a word, I’d summarize it as average. As they forewarned in their advanced notification last week, Microsoft released seven security bulletins today, which include six updates for Windows and one update for a Microsoft development tool (specifically an AntiXSS library). (more…)

Share
January 11, 2012 — Category: Security Alerts

Service Certification Exams: Paying by Purchase Order (PO)

Payment for service certification exams may be made by Visa, MasterCard, or American Express at time of registration, or by pre-approved purchase orders (POs). This article outlines the steps that must be followed to get a pre-approved credit line with Prometric and to complete the exam registration process. (more…)

Share
January 9, 2012 — Category: Knowledge Base

Microsoft Kicks Off 2012 Patch Day with Seven Updates; Six for Windows

I hope Microsoft administrators had a relaxing and enjoyable holiday and New Years, because now it’s time for them to roll-up their sleeves and get back to work. According to their advanced notification post , Microsoft plans to release seven security bulletins on Tuesday, January 11. Six of the bulletins fix flaws in Windows or its components, while the remaining bulletin corrects vulnerabilities in one of Microsoft’s developer tools (more…)

Share
January 6, 2012 — Category: Security Alerts

Automated SQLi Attack Hijacks Over 1 Million Websites

In past, malicious web sites seemed relegated to the “bad neighborhoods” of the Internet. If you weren’t surfing piracy, pornography, or hacking sites, you probably wouldn’t have randomly encountered websites serving malicious code back then. (more…)

Share
January 6, 2012 — Category: Security Alerts

Wi-Fi Protected Setup (WPS) Undermines Wireless Security

Over the years, we’ve had to deal with vulnerabilities and weaknesses in wireless security protocols, such as the deprecation of the WEP protocol due to design flaws.  Now, a standard that was designed to make wireless security easier, actually makes it less secure. (more…)

Share
January 5, 2012 — Category: Security Alerts

Security Stories You May Have Missed Over the Holidays

If your office gets quiet around the week leading up to Christmas and New Years, as many seem to, you may have missed a few interesting security stories during this lull. Let me catch you up in one fell swoop. Below, I quickly highlight a menagerie of interesting security stories, which you may have missed over the past two weeks: Unpatched Vulnerability in Windows Win32k.sys Component – According to reports , a “researcher” calling himself webDEViL found a memory corruption flaw in Windows’ win32k.sys component. (more…)

Share
January 4, 2012 — Category: Security Alerts

Setting up iTunes and DVD Player for digital surround sound

Learn how to set up a Mac for surround sound playback using DVD Player or iTunes. (more…)

Share
January 4, 2012 — Category: Knowledge Base

Microsoft Releases Out-of-Cycle .NET Framework Security Update

Summary: These vulnerabilities affect: All versions of Microsoft’s .NET Framework How an attacker exploits it:  Multiple ways, including sending specially crafted web requests or enticing users to click maliciously crafted links Impact:  Various. (more…)

Share
January 4, 2012 — Category: Security Alerts

Mac Pro: Power consumption and thermal output (BTU) information

Learn about the power consumption and thermal output of Mac Pro computers. (more…)

Share
January 3, 2012 — Category: Knowledge Base