Cisco IOS FTP Server warning
Blog One from last week here, but Cisco is warning users of its IOS FTP Server feature about "multiple vulnerabilities", which could lead to denial-of-service attacks and other such nasties. What to do about it?
[May 15, 2007, 12:49 in News Blog by David Meyer]
Linux and Unix 'had more vulnerabilities than Windows'
Talkback Plus, there's no analysis of how many of these vulnerabilities remain unpatched. The same vulnerability is being counted multiple times. Can't reporters do MATH? Geez, they're supposed to be skeptical and question everything.
About: Linux and Unix 'had more vulnerabilities than Windows'
[January 5, 2006, 21:03]
ENTRY THROUGH USB
Talkback Patching vulnerabilities as they emerge is a fundamental step in your defence against malware. Also note that applications are just as vulnerable as the operating systems they run on, and 60% of all exploited vulnerabilities are due to insecure...
About: Downadup heading for April Fool's mayhem
[March 16, 2009, 16:21 by lumension]
Patch It, Patch It, Patch It Right Now
Talkback These vulnerabilities are also confirmed as remote code execution so they could, in theory, allow unfettered access to sensitive databases and therefore need to be treated very seriously. The IE issue impacts multiple versions across multiple...
About: Microsoft to issue 11 Patch Tuesday fixes
[October 10, 2008, 16:46 by lumension]
The Internet Is Doomed (& I feel Fine)
Blog The problem is that we now run around like headless chickens, applying emergency security updates and patching everything except the kitchen sink in response to identified threats and vulnerabilities.
[June 29, 2008, 14:01 in Social Networking by Christian Harris]
Linux servers 'attacked more often'
Talkback MICROSOFT IIS VULNERABILITIES Symantec has documented several high-severity vulnerabilities affecting it. Their characteristics render these vulnerabilities attractive targets for future blended threats.
About: Linux servers 'attacked more often'
[February 20, 2004, 19:14]
Even though it is a lighter load - keep in mind you have to implement them.
Talkback Listed as critical, it directly impacts Windows 2000 and requires a restart.â-ª MS09-065 resolves several vulnerabilities in the Windows kernel and replaces the previously released bulletin MS09-025.
About: Microsoft patches critical hole in Windows kernel
[November 11, 2009, 16:19 by lumension]
Other enterprise software patches expected for next week.....
Talkback Since the beginning of the year, we’ve been worrying about Adobe vulnerabilities (see recent blog post). Other than the Microsoft PowerPoint patch we were waiting for, Adobe is releasing additional patches to address the current Adobe Reader issues...
About: Microsoft to issue patch for critical PowerPoint hole
[May 8, 2009, 11:22 by lumension]
BUSY PATCH TUESDAY!!
Talkback Organisations should also pay close attention to the details listed in Bulletins 7 and 9, two important vulnerabilities, to determine how critical they are within their business environments. Vulnerabilities involving spoofing and elevation of...
About: Microsoft to fix zero-day SMB, IIS holes
[October 13, 2009, 17:17 by lumension]
Do we need visibility into open source?
Blog The searchlight seems to be shining on open source software more than ever right now asking for visibility into form and function to ensure vulnerabilities and instabilities are avoided. Palamida’s study says that these are the factors to question...
[March 4, 2008, 8:56 in by Adrian Bridgwater]
NERC gets Aurora slap on the wrist
Blog In a Statement on Electric Grid Cyber Vulnerabilities made to the subcommittee last Wednesday, Langevin said: In addition, physical security at multiple locations did not sufficiently protect critical control systems.
[May 28, 2008, 16:49 in News Blog by Tom Espiner]
Cloud Computing & The Impact On Digital Forensic Investigations
Blog CLOIDIFIN is a research project that will highlight the vulnerabilities of the cloud and the impact it will have on the digital forensic investigation that could ensue following a crime, policy contravention or data compromise episode.
[March 6, 2009, 7:34 in Sentry Posts by Bigsey]
Nokia admits multiple Bluetooth security holes
Talkback Since the manufacturers of wireless technologies seem uninterested in correcting product design vulnerabilities, it may be necessary for consumers to step in and take measures to ensure their privacy is protected.
About: Nokia admits multiple Bluetooth security holes
[April 24, 2004, 20:10]
