COMPUTER & NETWORK SECURITY

The Art of Security, Magnificent.

C-NSECURITY.COM

Security News - November 10, 2008

Patch Tuesday heads up: Critical Windows, Office fixes coming

Microsoft is planning a small Patch Tuesday this month — just two bulletins affecting Windows and Office users.  Make sure you go to the Windows Update Site and get them. 

CNET Download.com not so ’spyware-free’

We have all visited CNET's download area to get some software.  It is a great site, but now I am thinking twice about trusting the words spyware-free.  Well I am more cautious about it now then before.  I never trust anything that is like that.

 

Koobface Facebook worm still spreading

This goes back to the old saying, Do not believe everything you click on while surfing.  I mean how come people are still not web savvy enough not to click everything.

Rigged PDFs exploiting just-patched Adobe Reader flaw 

Just three days after Adobe shipped a patch with fixes for a critical Adobe Reader vulnerability, hackers are using booby-trapped PDF files to fire exploits against Windows users.

 

Highly critical’ vulnerabilities in VLC media player

A pair of “highly critical” vulnerabilities in the cross-platform VLC Media Player could put millions of users at risk of remote code execution attacks, according to a warning from security researchers.  I guess I will not be using VLC until an updated version comes out.

 

States Ramp Up Data Security Laws

Its is about damn time that states and the government, take a new look on the laws that govern how breaches in data security should be handled.

 

Apps More Vulnerable than OS, Report Says

While the Windows platform has become much more resistant to malware attacks, Microsoft-based applications have now become the focus of vulnerabilities, according to research firm Ovum.  Yes, I have been saying this for a long time.  Since the days at Best Buy when Mac nerds would come in and try to argue with me about how secure OSX is.

 

Hackers Target China, Microsoft Says

Chinese computer users are the major targets of online attackers, according to the Microsoft Security Intelligence Report released last week.  The report revealed that the most common system locale for victims of browser-based exploits was Chinese, accounting for 47 percent of all incidents, followed by US English with 23 percent of incidents, in the first half of this year.

Thousands Hit in Broad Web Hack

Hackers have launched a massive Web hacking campaign, putting malicious links on as many as 10,000 servers, security vendor Kaspersky Lab warned Friday.

 

Once Thought Safe, WPA Wi-Fi Encryption Is Cracked

Security researchers say they've developed a way to partially crack the Wi-Fi Protected Access (WPA) encryption standard used to protect data on many wireless networks.  I guess I will have to change to some other form of Wi-Fi protection.  Maybe turn on my fake wireless system and have people use that one...

GNU Enscript 'src/psgen.c' Stack Based Buffer Overflow Vulnerability

If you are running any version of Linux that is listen on the page.  Patch yourself up right away.  For all that thought I never talked about Linux vulnerabilities, oh hush...

 

 

 

 

 

 

 

 

Previous

The title of the article is the link to the actually article.  Just an FYI.

 

C-NSECURITY.COM Copyright © 2008