Adobe has released a security advisory for Adobe Flash Player to address multiple vulnerabilities. Exploitation of these vulnerabilities may allow an attacker to cause a denial-of-service condition or take control of the affected system.Adobe has released updates for the following versions:Adobe…
Microsoft has published a Security Bulletin Advance Notification indicating that its February release will contain eleven bulletins. These bulletins will have the severity rating of critical and important, and will be for Microsoft Windows, Internet Explorer, Server Software, and .NET Framework.…
Apple has released a security update for OS X Server v2.2.1 for OS X Mountain Lion v10.8 or later to address multiple vulnerabilities. These vulnerabilities may allow a remote attacker to execute arbitrary code.US-CERT encourages users and administrators to review Apple Support Article HT5644 and…
Twitter announced its systems had been hacked an 250,000 users personal information had been compromised. Turn off your Java! “Earlier this week, hackers gained access to Twitter’s internal systems and stole information, compromising 250,000 Twitter accounts before the breach was stopped.…
Oracle has released an out-of-band patch to address multiple vulnerabilities in the Java Runtime Environment (JRE) 7 Update 11 and earlier. These vulnerabilities may allow an attacker to execute arbitrary code.US-CERT encourages users and administrators to review the bulletin and follow…
To secure your data and reduce SPAM sent to your business as well as to your private email account, get a dedicated address for internet postings. Never use your business email address for posting guestbook entries, votes, or questions and answers in forums and surveys. It’s good to be reachable…
Apple has released iOS 6.1 for the iPhone 3 GS and later, iPod touch 4th generation and later, and iPad 2 and later to address multiple vulnerabilities. These vulnerabilities may allow an attacker to operate with elevated privileges or execute arbitrary code.US-CERT encourages users and…
Multiple vulnerabilities have been announced in libupnp, the open source portable SDK for UPnP devices. Libupnp is employed by hundreds of vendors for UPnP-enabled devices. Information is also available in CERT Vulnerability Note VU#922681.US-CERT recommends that affected UPnP device vendors and…
The Cisco Wireless LAN Controller (Cisco WLC) product family is affected by multiple vulnerabilities that could potentially cause a denial-of-service condition, allow unauthorized access, or allow an attacker to execute code remotely.Cisco has released software updates that address these…
Google has released Google Chrome 24.0.1312.56 for Windows, Mac, Linux, and Chrome Frame to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code or cause a denial-of-service.US-CERT encourages users and administrators to review the Google Chrome…
An outrage of the new Instagram privacy policy has seen usage go from 40 million to 17 million in one month. Users took offense to instagram using photos in advertising without the consent of the photographer. The adjustments to the privacy policy will still allow Instagram to share information with…
Adobe has released a security hotfix to address multiple vulnerabilities in Adobe ColdFusion versions 10, 9.0.2, 9.0.1 and 9.0 for Windows, Macintosh, and UNIX. These vulnerabilities could allow an attacker to bypass authentication controls.US-CERT recommends that users and administrators review…
Oracle has released its Critical Patch Update for January 2013 to address 86 vulnerabilities across multiple products. This update contains the following security fixes:6 for Oracle Database Server7 for Oracle Fusion Middleware13 for Oracle Enterprise Manager Grid Control9 for Oracle E-Business…
Oracle has released an out-of-band patch to address the recently announced vulnerability in Java Runtime Environment (JRE) 7. US-CERT encourages users and administrators to review the bulletin and follow best-practice security policies to determine which updates should be applied.This product is…
The CERT Program has released Vulnerability Note VU#625617 to address a vulnerability in Oracle Java Runtime Environment (JRE) 7 and earlier that is currently being exploited in the wild. This vulnerability may allow an attacker to execute arbitrary code on vulnerable systems.US-CERT encourages…
Unsolicited commercial email may be a privacy and/or security violation under the Federal Trade Commission of the United States of America. SPAM should be forwarded to uce@ftc.gov.