Clik here to view.
Four Windows Bulletins Fix Group Policy, .NET, and iSCSI Flaws
Severity: Medium Summary: These vulnerabilities affect: All current versions of Windows (and related components like .NET Framework) How an attacker exploits them: Multiple vectors of attack, though...
View ArticleClik here to view.
TAO Hijack Routers – WSWiR Episode 107
Tons of Patches, NSA Booby-Trapped Routers, and Alleged Iranian Hackers If you don’t have time to follow all the information security stories popping up each week, you can let our weekly video and blog...
View ArticleClik here to view.
Ebay Pwned – WSWiR Episode 108
Ebay Data Breach, IE8 0Day, and Alleged Chinese Hackers With all the information security (InfoSec) news coming out each week, it’s hard to believe anyone can keep up with it; let alone an already busy...
View ArticleClik here to view.
iPhone Ransom Message – WSWiR Episode 109
Iranian Social Hackers, XP Patch Hack, and iPhone Ransom Notes Did you have time to follow security mailings lists, check out infosec news sites, or find that latest patches this week? If not, don’t...
View ArticleClik here to view.
GOZeus Down – WSWiR Episode 110
NSA Facial Recognition, OpenSSL Patch, and Zeus Takedown It’s that time again. If you have a hankering for the latest InfoSec news, this is the place to get it. You can watch me summarize all of the...
View ArticleClik here to view.
Microsoft Black Tuesday: Seven Security Bulletins Include a Huge IE Update
If there is one day of the month you should really focus on software patching, this is the day. The second Tuesday of the month is both Microsoft and Adobe patch day. If you run a Windows shop, or you...
View ArticleClik here to view.
Humongous IE Patch Fixes 59 Security Issues
Summary: This vulnerability affects: All current versions of Internet Explorer How an attacker exploits it: Mostly by enticing one of your users to visit a web page containing malicious content Impact:...
View ArticleClik here to view.
Windows Updates Fix GDI+, RDP, and TCP Vulnerabilities
Severity: High Summary: These vulnerabilities affect: All current versions of Windows (and related components like XML Core Services) How an attacker exploits them: Multiple vectors of attack,...
View ArticleClik here to view.
TweetDeck XSS – WSWiR Episode 111
Patch Day, P.F. Changs Hack, and TweetDeck XSS This week delivered a lot of infosec news and a ton of software security updates. If you didn’t have time to follow it all, check out our weekly computer...
View ArticleClik here to view.
IE Update Fixes Remote Code Execution and Certificate Issues
Summary: This vulnerability affects: All current versions of Internet Explorer How an attacker exploits it: Mostly by enticing one of your users to visit a web page containing malicious content Impact:...
View ArticleClik here to view.
Windows Updates Mend Critical Journal Vulnerability & More
Severity: High Summary: These vulnerabilities affect: All current versions of Windows (and related components like XML Core Services) How an attacker exploits them: Multiple vectors of attack,...
View ArticleClik here to view.
Microsoft Service Bus DoS Mostly Affects Enterprise Web Developers.
Among this week’s Microsoft security bulletins is one that likely only affects a small subset of Microsoft customers, and thus not worth a full security alert. Microsoft Service Bus is a messaging...
View ArticleClik here to view.
Hardware Malware – WSWiR Episode 112
Tons of Patches, Facebook Botnets, and Infected Hand Scanners After a couple weeks of hiatus, we’re finally back with our weekly security news summary video. If you want to learn about all the week’s...
View ArticleClik here to view.
Weak Passwords are Good? – WSWiR Episode 113
Oracle Patches, Project Zero, and Password Problems Another week, another big batch of InfoSec news. If your IT job is already overwhelming you with tasks, leaving you no time to keep up with computer...
View ArticleClik here to view.
Nine Microsoft Security Bulletins Coming Tomorrow; Two Critical
Is it just me, or are the months flying by this year? It’s already time for yet another Microsoft Patch Day. According to their advanced notification post for August, Microsoft will release nine...
View ArticleClik here to view.
Latest IE Patch Corrects 26 Vulnerabilities
Summary: These vulnerabilities affect: All current versions of Internet Explorer How an attacker exploits it: By enticing one of your users to visit a web page containing malicious content Impact:...
View ArticleClik here to view.
Windows Updates for Media Center, .NET, and LRPC
Severity: Medium Summary: These vulnerabilities affect: All current versions of Windows (and related components like .NET Framework) How an attacker exploits them: Multiple vectors of attack, such as...
View ArticleClik here to view.
SQL Server Update Fixes XSS and DoS Vulnerability
Severity: Medium Summary: These vulnerabilities affect: Most current versions of SQL Server How an attacker exploits it: Various, including enticing someone to click a specially crafted link Impact: In...
View ArticleClik here to view.
Avoid MS14-045; Windows Kernel-mode Drivers Patch
Last week, I covered Microsoft Patch Day and recommend you install all the latest Windows, IE, Office, and server updates. This week, I need to warn you against one of those updates. According to...
View ArticleClik here to view.
Microsoft Black Tuesday: Windows, IE, Lync, and .NET Patches
As you may know, today was Microsoft Patch Day. If you manage a Windows-based network, it’s time to get the latest updates. According to Microsoft’s summary post, the Redmond-based software company...
View Article
