If you use Microsoft or Adobe products — as the majority of computer users do—it’s that time again… Patch Day. For November’s Patch Day, Microsoft released a dozen bulletins fixing many flaws in their most popular products. Watch today’s video for the quick highlights about these and Adobe’s updates.
Original release date: November 09, 2015 The US-CERT Cyber Security Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. The NVD is sponsored by the Department of Homeland Security (DHS) National Cybersecurity and Communications Integration Center (NCCIC) / United States Computer Emergency Readiness Team (US-CERT). For modified or updated entries, please visit the NVD , which contains historical vulnerability information
Based on the masks they chose, you could probably guess that Hacktivists, like Anonymous, associate strongly with Guy Fawkes. So it’s not surprising that they also plan hacking campaigns for Guy Fawkes Day, which falls on November 5th every year. Watch today’s episode to hear about two hacktivist campaigns carried out this week, and what we can learn from them
Some happy researchers apparently claimed a one million dollar bounty by finding a remote root jailbreak vulnerability in iOS 9. Yet, as exciting as that might sound, it’s bad news for Apple users because the bounty was offered by a company that doesn’t plan to disclose the flaw to Apple. Watch today’s video to learn more about this news, and why I think companies like Zerodium are bad for security
At a small security conference in Boston, an FBI agent said that they often recommend victims to just pay the ransom associated with ransomware like Crytpowall and Cryptolocker. Watch today’s video to see what I think of this, and to get a small Halloween-themed surprise
As October ends, so does National Cyber Security Awareness month , and I recently had the opportunity to go over to KOMO Radio and talk about what I call the three “Ps” of protecting yourself from cyber crime. To listen in on our conversation, click play below (or download the file [ MP3 ] directly): (Runtime: 2:27 ) Don’t have time right now to listen? Here’s a summary: Patches – Though the numbers change from year to year, experts estimate that around 90% of the exploits bad guys use prey on vulnerabilities that software companies have already fixed
Are you feeling overwhelmed by your normal IT job, but wish you had time to keep up with information security (infosec)?
This week, the media was all over a Fitbit hack that allegedly could transfer malware from an infected Fitbit to a victim computer. However, the research — though interesting — didn’t deliver on this nightmare scenario.
On Tuesday, Oracle released its Quarterly Critical Patch Update or CPU for short. As usual, this release covers a long list of different products, and is too large to summarize in a diary. Oracle patched a total of 154 vulnerabilities.
On Tuesday, Oracle released its Quarterly Critical Patch Update or CPU for short. As usual, this release covers a long list of different products, and is too large to summarize in a diary.