Original release date: April 04, 2013 Microsoft has issued a Security Bulletin Advance Notification indicating that its April release will contain nine bulletins. These bulletins will have the severity rating of critical and important and will be for Microsoft Windows, Office, Internet Explorer,…
Original release date: April 03, 2013 The Mozilla Foundation has released updates to address multiple vulnerabilities. These vulnerabilities could allow an attacker to initiate a cross-site scripting attack or obtain sensitive information, enable privilege escalation or execute arbitrary code, or…
The U.K., France, Italy, and Germany have found Google to be in breach of their agreement to uphold consumers’ privacy. Members of the European Union found Google in violation about a year ago when Google (also owner of YouTube) merged about 60 privacy policies into one single policy. Google…
Original release date: March 29, 2013 Google has released Google Chrome 26.0.1410.43 for Windows, Mac, Linux, and Chrome Frame to address multiple vulnerabilities. These vulnerabilities could allow a remote attacker to cause a denial of service or execute arbitrary code. US-CERT encourages users and…
Question: My Gmail account got hacked. What is the best protection? Answer: Our analysis shows that your account was compromised by an IP from Nigeria. Though we’re not sure how your gmail got hacked, a good guess would be you had a weak password. If so, the best protection is to use separate…
Original release date: March 21, 2013 | Last revised: March 22, 2013 US-CERT has received reports of apparently DHS-themed ransomware occurring in the wild. Users who are being targeted by the ransomware receive an email message claiming that use of their computer has been suspended and that the…
South Korea has been hit by a rash of cyber attacks caused by malicious code. Three broadcasting companies and two banks had their networks taken down and harddrives erased. Though there is no proof, sources believe the attacks were launched by North Korea.
Original release date: March 20, 2013 Apple has released iOS 6.1.3 for the iPhone 3GS or later, iPod touch 4 th generation or later, and iPad 2 or later to address multiple vulnerabilities. These vulnerabilities may allow an attacker to operate with elevated privileges, bypass security features or…
Original release date: March 19, 2013 Google has released Google Chrome 25.0.1364.173 to address multiple vulnerabilities. These vulnerabilities may allow an attacker to cause a denial-of-service condition or execute arbitrary code. US-CERT encourages users and administrators to review the Google…
Original release date: March 15, 2013 Apple has released OS X v10.8.3 and Security Update 2013-001 to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code, bypass authentication, leverage additional attacks, cause a denial-of-service condition or…
Original release date: March 15, 2013 Apple has released security updates for Safari Webkit 6.0.3 to address multiple vulnerabilities. These vulnerabilities could allow a remote attacker to execute arbitrary code or cause a cross-site scripting attack. Safari 6.0.3 WebKit updates are available for…
Original release date: March 12, 2013 Adobe has released security updates for Adobe Flash Player to address vulnerabilities that could cause a crash and potentially allow an attacker to take control of an affected system. Security updates are available for the following versions: Adobe Flash Player…
Original release date: March 08, 2013 | Last revised: March 12, 2013 Microsoft has released updates to address vulnerabilities in Microsoft Windows, Office, Internet Explorer, Silverlight, and Server Software as part of the Microsoft Security Bulletin summary for March 2013 . These vulnerabilities…
The European Union has fined Microsoft $733,000,000 for breaking an agreement to offer PC users a choice of Internet browsers other than just Internet Explorer. “A failure to comply is a very serious infringement that must be sanctioned accordingly,” said EU regulator Joaquin Almunia. “They…
The Department Of Homeland Security issued a statement advising Internet users to disable Java. Since the initial release, DHS has updated the advisory: Systems Affected Any system using Oracle Java 7 (1.7, 1.7.0) including Java Platform Standard Edition 7 (Java SE 7) Java SE Development Kit (JDK 7)…
Unsolicited commercial email may be a privacy and/or security violation under the Federal Trade Commission of the United States of America. SPAM should be forwarded to uce@ftc.gov.