content top

Microsoft Security Advisory 2974294

Microsoft Security Advisory 2974294

Microsoft announced a security advisory for the Microsoft Malware Protection Engine on June 17, 2014.  Microsoft states that, “the vulnerability could allow denial of service if the Microsoft Malware Protection Engine scans a specially crafted file. An attacker who successfully exploited this vulnerability could prevent the Microsoft Malware Protection Engine from monitoring affected systems until the specially crafted file is...

Read More

Adobe Security Update

Adobe Security Update

Adobe has announced a new security release for Adobe Flash Player 13.0.0.214 and earlier versions for Windows and Mac.  Adobe Flash Player 11.2.202.359 and earlier version for the Linux platform.  The update addresses various vulnerabilities that could allow an attacker to take control of the system. It is recommended that you update your Adobe Flash player as soon as possible to avoid any potential security issues. The following updates...

Read More

OpenSSL Security Advisory

OpenSSL Security Advisory

The OpenSSL team has issued a security advisory on June 05, 2014 identifying seven vulnerabilities.  Out of those seven the key one to look into is the SSL/TLS MITM vulnerability (CVE-2014-0224). The OpenSSL team state, “An attacker using a carefully crafted handshake can force the use of weak keying material in OpenSSL/TLS clients and servers.  This can be exploited by a Man-in-the-middle (MITM) attack where the attacker can decrypt...

Read More

eBay security breach

eBay security breach

eBay has announced that it will be asking users to change their passwords on their site later on today due to a security breach that was discovered on the popular bidding website. In a posting on the company’s website, eBay said a cyber-attack “compromised a database containing encrypted passwords and other non-financial data.” eBay has stated that they find “no evidence of any unauthorized access to financial or credit card...

Read More

Microsoft Security Bulletins for May 2014

Microsoft Security Bulletins for May 2014

Microsoft released eight security bulletins (MS14-022 – MS14-029) on Tuesday, May 13, 2014.  Also announced was a number of security advisories which will be covered in this blog post.  Affected software includes SharePoint, Office, Internet Explorer, Remote Server Administration Tools, .NET Framework, Windows Shell handler, iSCSI and Adobe Flash.  Microsoft has placed them into three deployment priorities with MS14-029, MS14-024,...

Read More

The importance of using two-factor authentication

The importance of using two-factor authentication

What is two-factor authentication?  Tech Target defines it as, “Two-factor authentication is a security process in which the user provides two means of identification, one of which is typically a physical token, such as a card, and the other of which is typically something memorized, such as a security code. In this context, the two factors involved are sometimes spoken of as something you have and something you know.”  Many websites use...

Read More
content top