Tagged: feeds

TA14-329A: Regin Malware 0

TA14-329A: Regin Malware

Original release date: November 25, 2014 Systems Affected Microsoft Windows NT, 2000, XP, Vista, and 7 Overview On November 24, 2014, Symantec released a report on Regin, a sophisticated backdoor Trojan used to conduct intelligence-gathering campaigns. At this time, the Regin campaign has not been identified targeting any organizations within the United States.

TA14-323A: Microsoft Windows Kerberos KDC Remote Privilege Escalation Vulnerability 0

TA14-323A: Microsoft Windows Kerberos KDC Remote Privilege Escalation Vulnerability

Original release date: November 19, 2014 Systems Affected Microsoft Windows Vista, 7, 8, and 8.1 Microsoft Server 2003, Server 2008, Server 2008 R2, Server 2012, and Server 2012 R2 Overview A remote escalation of privilege vulnerability exists in implementations of Kerberos Key Distribution Center (KDC) in Microsoft Windows which could allow a remote attacker to take control of a vulnerable system. [ 1 ] Description The Microsoft Windows Kerberos KDC fails to properly check service tickets for valid signatures, which can allow aspects of the service ticket to be forged

Apple Releases Security Updates for iOS, OS X Yosemite, and Apple TV 0

Apple Releases Security Updates for iOS, OS X Yosemite, and Apple TV

Original release date: November 17, 2014 Apple released security updates for iOS devices, OS X Yosemite and Apple TV to address multiple vulnerabilities, one of which could allow remote attackers to execute arbitrary commands. Updates available include: iOS 8.1.1 for iPhone 4s and later, iPod touch 5th generation and later, and iPad 2 and later OS X Yosemite v10.10.1 for Macintosh Apple TV 7.0.2 for Apple TV 3rd generation and later US-CERT encourages users and administrators to review Apple security updates HT6590 , HT6572 and HT6592 , and apply the necessary updates.

TA14-318A: Microsoft Windows OLE Automation Array Remote Code Execution Vulnerability 0

TA14-318A: Microsoft Windows OLE Automation Array Remote Code Execution Vulnerability

Original release date: November 14, 2014 Systems Affected Microsoft Windows Vista, 7, 8, 8.1, RT, and RT 8.1 Microsoft Server 2003, Server 2008, Server 2008 R2, Server 2012, and Server 2012 R2 Overview A vulnerability in Microsoft Windows Object Linking and Embedding (OLE) could allow remote code execution if a user views a specially-crafted web page in Internet Explorer. [1] Description The Microsoft Windows OLE OleAut32.dll library provides the SafeArrayRedim function that allows resizing of SAFEARRAY objects in memory. [2] In certain circumstances, this library does not properly check sizes of arrays when an error occurs.

IC3 Releases “Tech Support” Themed Scam Alert 0

IC3 Releases “Tech Support” Themed Scam Alert

Original release date: November 13, 2014 The Internet Crime Complaint Center (IC3), a partnership between the Federal Bureau of Investigation (FBI) and the National White Collar Crime Center (NW3C) to combat Internet crime, has released a Scam Alert advising the public of an ongoing telephone scam in which callers purport to be an employee of a major software company in order to defraud a targeted victim.  Users and administrators are encouraged to review the IC3 Scam Alert for more details, and refer to the Avoiding Social Engineering and Phishing Attacks Cyber Security Tip for information on social engineering attacks. This product is provided subject to this Notification and this Privacy & Use policy.

TA14-317A: Apple iOS "Masque Attack" Technique 0

TA14-317A: Apple iOS "Masque Attack" Technique

Original release date: November 13, 2014 Systems Affected iOS devices running iOS 7.1.1, 7.1.2, 8.0, 8.1, and 8.1.1 beta. Overview A technique labeled “Masque Attack” allows an attacker to substitute malware for a legitimate iOS app under a limited set of circumstances. Description Masque Attack was discovered and described by FireEye mobile security researchers