Microsoft has pre-announced next week’s Patch Day, and it doesn’t look too bad. (more…)
Summary: This vulnerability affects : Adobe Flash Player 11.1.102.62 and earlier, running on all platforms (including Android) How an attacker exploits it : By enticing users to visit a website containing malicious Flash content Impact : In the worst case, an attacker can execute code on the user’s computer, potentially gaining control of it What to do : Download and install the latest version of Adobe Flash Player (version 11.1.102.63 for computers) Exposure: Adobe Flash Player displays interactive, animated web content called Flash . Although Flash is optional, 99% of PC users download and install it to view multimedia web content. (more…)
RSA Conference, Stratfor Email Leak, NASA Breach, and More Today’s WatchGuard Security Week in Review is coming to you a few hours late, primarily because I’ve just returned from a week at the RSA Security Conference in San Francisco. In this episode, I summarize that conference’s key themes, share the latest Anonymous news, mention some NASA breaches, and recommend a free security tool. (more…)
Lots of Patches, Big Nortel Breach, and More Anonymous Shenanigans Are you ready for another week of software updates, Enterprise breaches, and hacktivist cyber-riots? If so, this week’s episode of WatchGuard Security Week in Review is hot off the NLE system . Watch it below, and tell us what you think in the comments section. (more…)
Summary: This vulnerability affects : Adobe Shockwave Player 11.6.3.633 and earlier, running on Windows and Macintosh computers How an attacker exploits it : By enticing your users into visiting a website containing a malicious Shockwave content Impact : An attacker can execute code on your computer, potentially gaining control of it What to do : If you allow the use of Shockwave in your network, you should download and deploy the latest version (11.6.4.634) of Adobe Shockwave Player as soon as possible. Exposure: Adobe Shockwave Player displays interactive, animated web content and movies called Shockwave . According to Adobe, the Shockwave Player is installed on hundreds of millions of PCs (more…)
Severity: High Summary: These vulnerabilities affect: All versions of Sun Java Runtime Environment (JRE) and Java Development Kit (JDK) released before today How an attacker exploits them: Typically by luring your users to a malicious web page containing specially crafted Java Impact: Various results; in the worst case, an attacker can gain complete control of your computer What to do: Install the appropriate JRE (or JDK) update as soon as possible Exposure: Java is a programming language (first implemented by Sun Microsystems) used most often to enhance web pages. Oracle’s Sun Java Runtime Environment (JRE) is one of the most popular Java interpreters used today. (more…)
