Information Security

Seven Steps for Making Identity Protection Part of Your Routine

Original release date: December 07, 2015 The Internal Revenue Service (IRS) has released the third in a series of tips intended to increase public awareness of how to protect personal and financial data online and at home. A new tip will be available released each Monday through the start of the tax season in January, Read more about Seven Steps for Making Identity Protection Part of Your Routine[…]

OpenSSL Patches Multiple Vulnerabilities

Original release date: December 03, 2015 OpenSSL has released updates patching four vulnerabilities. Exploitation of one of these vulnerabilities could allow an attacker to cause a cause a Denial of Service condition. Updates available include: OpenSSL 1.0.2e for 1.0.2 users OpenSSL 1.0.1q for 1.0.1 users OpenSSL 1.0.0t for 1.0.0 users OpenSSL 0.9.8zh for 0.9.8 users Read more about OpenSSL Patches Multiple Vulnerabilities[…]

IRS Releases First in a Series of Tax Security Tips

Original release date: November 27, 2015 The Internal Revenue Service (IRS) has released the first in a series of tips intended to increase public awareness of how to protect personal and financial data online and at home. A new tip will be available each Monday through the start of the tax season in January, and Read more about IRS Releases First in a Series of Tax Security Tips[…]

US-CERT Alerts Users to Holiday Phishing Scams and Malware Campaigns

Original release date: November 25, 2015 US-CERT reminds users to remain vigilant when browsing or shopping online this holiday season. E-cards from unknown senders may contain malicious links. Fake advertisements or shipping notifications may deliver infected attachments. Spoofed e-mail messages and fraudulent posts on social networking sites may request support for phony causes. To avoid Read more about US-CERT Alerts Users to Holiday Phishing Scams and Malware Campaigns[…]

Dell Computers Contain CA Root Certificate Vulnerability

Original release date: November 24, 2015 Dell consumer personal computers using the preinstalled certificate authority (CA) root certificate (eDellRoot) contain a critical vulnerability. This preinstalled root certificate resides on newer Dell laptops and desktops. Exploitation of the vulnerability could allow a remote attacker to read all encrypted web browser traffic (HTTPS), successfully impersonate (spoof) any Read more about Dell Computers Contain CA Root Certificate Vulnerability[…]

VMware Releases Security Updates

Original release date: November 19, 2015 VMware has released security updates to address a vulnerability in vCenter, vCloud Director, and Horizon View. Exploitation of this vulnerability may allow an attacker to obtain sensitive information. Users and administrators are encouraged to review VMware Security Advisory VMSA-2015-0008 and apply the necessary updates. This product is provided subject Read more about VMware Releases Security Updates[…]

Information Security

Adobe Releases Security Updates for ColdFusion, LiveCycle Data Services, and Adobe Premiere Clip

Original release date: November 17, 2015 Adobe has released security updates to address multiple vulnerabilities in ColdFusion, LiveCycle Data Services, and Adobe Premiere Clip. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. Users and administrators are encouraged to review Adobe Security Bulletins for ColdFusion, LiveCycle Read more about Adobe Releases Security Updates for ColdFusion, LiveCycle Data Services, and Adobe Premiere Clip[…]

Apache Commons Collections Java Library Vulnerability

Original release date: November 13, 2015 US-CERT is aware of a deserialization vulnerability in the Apache Commons Collections (ACC) Java library. Java applications that either directly use ACC, or contain ACC in their classpath, may be vulnerable to arbitrary code execution. US-CERT encourages users and administrators to review Vulnerability Note VU#576313 for more information and Read more about Apache Commons Collections Java Library Vulnerability[…]

Google Releases Security Updates for Chrome and Chrome OS

Original release date: November 11, 2015 Google has released security updates to address vulnerabilities in Chrome and Chrome OS. Exploitation of one of these vulnerabilities may allow a remote attacker to take control of an affected system. Updates available include: Chrome 46.0.2490.86 for Windows, Mac and Linux Chrome 46.0.2490.82 for all OS devices Users and Read more about Google Releases Security Updates for Chrome and Chrome OS[…]