Question: My Gmail account got hacked. What is the best protection? Answer: Our analysis shows that your account was compromised by an IP from Nigeria. Though we’re not sure how your gmail got hacked, a good guess would be you had a weak password. If so, the best protection is to use separate…
Original release date: March 21, 2013 | Last revised: March 22, 2013 US-CERT has received reports of apparently DHS-themed ransomware occurring in the wild. Users who are being targeted by the ransomware receive an email message claiming that use of their computer has been suspended and that the…
South Korea has been hit by a rash of cyber attacks caused by malicious code. Three broadcasting companies and two banks had their networks taken down and harddrives erased. Though there is no proof, sources believe the attacks were launched by North Korea.
Original release date: March 20, 2013 Apple has released iOS 6.1.3 for the iPhone 3GS or later, iPod touch 4 th generation or later, and iPad 2 or later to address multiple vulnerabilities. These vulnerabilities may allow an attacker to operate with elevated privileges, bypass security features or…
Original release date: March 19, 2013 Google has released Google Chrome 25.0.1364.173 to address multiple vulnerabilities. These vulnerabilities may allow an attacker to cause a denial-of-service condition or execute arbitrary code. US-CERT encourages users and administrators to review the Google…
Original release date: March 15, 2013 Apple has released OS X v10.8.3 and Security Update 2013-001 to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code, bypass authentication, leverage additional attacks, cause a denial-of-service condition or…
Original release date: March 15, 2013 Apple has released security updates for Safari Webkit 6.0.3 to address multiple vulnerabilities. These vulnerabilities could allow a remote attacker to execute arbitrary code or cause a cross-site scripting attack. Safari 6.0.3 WebKit updates are available for…
Original release date: March 12, 2013 Adobe has released security updates for Adobe Flash Player to address vulnerabilities that could cause a crash and potentially allow an attacker to take control of an affected system. Security updates are available for the following versions: Adobe Flash Player…
Original release date: March 08, 2013 | Last revised: March 12, 2013 Microsoft has released updates to address vulnerabilities in Microsoft Windows, Office, Internet Explorer, Silverlight, and Server Software as part of the Microsoft Security Bulletin summary for March 2013 . These vulnerabilities…
The European Union has fined Microsoft $733,000,000 for breaking an agreement to offer PC users a choice of Internet browsers other than just Internet Explorer. “A failure to comply is a very serious infringement that must be sanctioned accordingly,” said EU regulator Joaquin Almunia. “They…
Original release date: March 05, 2013 Google has released Google Chrome 25.0.1364.152 for Windows, Linux, and Mac to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code, bypass security features, or cause a denial-of-service condition. US-CERT…
The Department Of Homeland Security issued a statement advising Internet users to disable Java. Since the initial release, DHS has updated the advisory: Systems Affected Any system using Oracle Java 7 (1.7, 1.7.0) including Java Platform Standard Edition 7 (Java SE 7) Java SE Development Kit (JDK 7)…
Original release date: February 27, 2013 Adobe has released security updates for Adobe Flash Player. These updates address vulnerabilities that could cause a crash and potentially allow an attacker to take control of an affected system. Adobe is aware of reports that CVE-2013-0643 and CVE-2013-0648…
Original release date: February 22, 2013 | Last revised: March 01, 2013 UPDATE: The United States Department of Homeland Security, in collaboration with the Federal Bureau of Investigation and other partners, has released a second Joint Indicator Bulletin (JIB) through secure channels. Confirmed…
NBC.com was hacked and malicious code was placed on the homepage that looks for exploits on your browser (through plug-ins such as Adobe Acrobat and Java, as well as, iframe script.) When browsing the web, users should take care in viewing pages with exploitable code. The hack known as Citadel is…
Unsolicited commercial email may be a privacy and/or security violation under the Federal Trade Commission of the United States of America. SPAM should be forwarded to uce@ftc.gov.