Security Protection – Harry Waldron MVP Rotating Header Image

April, 2012:

Facebook – New PrivacyScore app rates privacy risks of popular apps

Facecrooks security highlights a new tool available to assess privacy for popular Facebook apps

http://facecrooks.com/Internet-Safety-Privacy/privacyscore-new-tool-rates-privacy-risk-of-the-most-popular-facebook-apps.html

QUOTE:  Privacyscore, a project conducted by Privacychoice, recently released a Facebook application that rates the privacy risks of the most popular Facebook applications. Pictured below is what you’ll see when you visit the app. Hovering over one of the featured apps, displays their score.

Microsoft – Security Essentials v4 BETA release

As with all BETA products, a good working knowledge of how to work around issues is essential:

Microsoft – Security Essentials v4 BETA release
http://betanews.com/2012/04/25/microsoft-releases-security-essentials-4/

QUOTE: Microsoft has released Security Essentials 4.0, the latest version of its lightweight, straightforward antivirus package. The bulk of the changes this time are under the hood. MSE’s “Automatic Remediation” now does a better job of quarantining threats on its own, for instance, no user intervention required. And Microsoft claims scanning performance and malware detection rates have both improved on the previous build.

Facebook Security – AV Products being promoted for better security

Facebook is now actively promoting AV solutions that include free 6 month trial periods plus products like MSE, AVG, or AVAST that are completely free

Facebook Security Page https://www.facebook.com/security

Facebook Security – AV Products being promoted for better security http://facecrooks.com/Internet-Safety-Privacy/facebook-announces-av-marketplace-free-antivirus-better-platform-security.html

QUOTE: One of the more exciting announcements made in the post is that the security companies mentioned above will be sharing educational materials on the Facebook Security page.

Microsoft SIR Volume 12 release – Huge release of analytical information

Hundreds of pages of data are highlighted in the latest release

Microsoft SIR Volume 12 release – Huge release of analytical information http://blogs.technet.com/b/security/archive/2012/04/25/microsoft-security-intelligence-report-volume-12.aspx

QUOTE: Today we released the latest volume of the Microsoft Security Intelligence Report (SIR) containing a large body of new data and analysis on the threat landscape.  This volume of the SIR includes:

• Latest industry vulnerability disclosure trends and analysis
• Latest data and analysis of global vulnerability exploit activity
• Latest trends and analysis on global malware and potentially unwanted software
• Latest analysis of threat trends in more than 100 countries/regions around the world
• Latest data and insights on how attackers are using spam and other email threats
• Latest global and regional data on malicious websites including phishing sites, malware hosting sites and drive-by download sites

Mobile Security – How can you tell your phone is infected?

A good article documenting the need to review phone bills in detail each month:

Mobile Security – How can you tell your phone is infected? http://securitywatch.pcmag.com/none/296919-how-to-tell-if-your-phone-is-infected

QUOTE:  On a PC the signs are pretty obvious. Your computer slows to a near-screeching halt, your browser re-directs you to random websites, your friends are suddenly calling asking about your career change to become a Viagra distributor (since your email has probably been hacked). Your IT guy can often tell by looking at your process names, as malware authors might name their malicious process ‘svchsot.exe’ to look like a legit one ‘svhost.exe’ (see what I did there?). 

Harder To Tell On a Phone  — According to Kaspersky malware researcher Tim Armstrong, users usually don’t discover something’s wrong until they look at their phone bills and don’t recognize the numbers of text message recipients. Premium rate SMS Trojans are the most common type of mobile malware. This malware disguises itself in a legit-looking app, and secretly sends SMS short codes that bill the caller. Nor will an average user really be able to tell by checking app permissions. Android developers can choose from dozens of permissions, and as Armstrong notes, it’s often impossible to guess which are legitimate and which are warning signs.

FlashBack – New variant attacks both Mac and Windows PCs using Java vulnerability

Both Windows and Mac users are protected if they are up-to-date on security patches.

http://securitywatch.pcmag.com/hacking/297184-new-multi-layer-malware-attack-uses-same-exploit-as-flashback

QUOTE: A malware attack called Flashback infested well over a half-million Macs last week by exploiting a Java vulnerability. All Mac users have since updated to Apple’s recently-released Java update, thereby rendering all Flashback variants powerless. Right. In your dreams! In the real world, hundreds of thousands of Macs remain infested, and a new threat has surfaced that gains entry using the same exploit but goes on to wreak even more havoc.

According to a post by Graham Cluley on Sophos’s Naked Security blog, Sophos researchers determined that this new threat is attacking both Mac and Windows computers through the same Java vulnerability Flashback used. Windows users who permit automatic updates should be safe, as Microsoft patched the vulnerability in mid-February. Windows and Mac users who haven’t updated are vulnerable.

Apple Security – Flashback Removal Tool

ISC highlights recent security update and the creation of a removal tool for the Flashback Trojan attacks circulating in-the-wild. 

Apple Security – Flashback Removal Tool http://isc.sans.edu/diary.html?storyid=12991

QUOTE:  Earlier in the week Apple released a Java update which included software to remove the Flashback Trojan from OS X Lion machines running Java.  The Flashback Trojan removal tool is now also available for OS X Lion machines not running Java. This Flashback malware removal tool is available through the OS X Software Update tool, or from Apple’s download site

Oracle – Critical security advisory for April 2012

DBAs and security teams should apply these patches promptly as numerous products were updated

http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html

QUOTE: Affected Products and Versions Patch Availability

Oracle Database 11g Release 2, versions 11.2.0.2, 11.2.0.3 Database
Oracle Database 11g Release 1, version 11.1.0.7 Database
Oracle Database 10g Release 2, versions 10.2.0.3, 10.2.0.4, 10.2.0.5 Database
Oracle Application Server 10g Release 3, version 10.1.3.5.0 Fusion Middleware
Oracle BI Publisher, versions 10.1.3.4.1, 10.1.3.4.2 Fusion Middleware
Oracle DB UM Connector for Oracle Identity Manager, Version 9.1.0.4 Fusion Middleware
Oracle Identity Manager 11g, versions 11.1.1.3, 11.1.1.5 Fusion Middleware
Oracle JDeveloper, version 10.1.3.5.0 Fusion Middleware
Oracle JRockit versions, R28.2.2 and earlier, R27.7.1 and earlier Fusion Middleware
Oracle Outside In Technology, versions 8.3.5, 8.3.7 Fusion Middleware
Oracle WebCenter Forms Recognition, version 10.1.3.5 Fusion Middleware
Enterprise Manager Grid Control 11g Release 1, version 11.1.0.1 Enterprise Manager
Enterprise Manager Grid Control 10g Release 1, version 10.2.0.5 Enterprise Manager
Oracle E-Business Suite Release 12, versions 12.0.4, 12.0.6, 12.1.1, 12.1.2, 12.1.3 E-Business Suite
Oracle E-Business Suite Release 11i, version 11.5.10.2 E-Business Suite
Oracle Agile, version 6.0.0 Supply Chain
Oracle AutoVue version 20.0.2 Supply Chain
Oracle PeopleSoft Enterprise CRM, version 9.1 PeopleSoft
Oracle PeopleSoft Enterprise HCM, version 9.1 PeopleSoft
Oracle PeopleSoft Enterprise HRMS, versions 8.9, 9.0, 9.1 PeopleSoft
Oracle PeopleSoft Enterprise FCSM, versions 9.0, 9.1 PeopleSoft
Oracle PeopleSoft Enterprise PeopleTools, versions 8.50, 8.51, 8.52 PeopleSoft
Oracle PeopleSoft Enterprise Portal version 9.1 PeopleSoft
Oracle PeopleSoft Enterprise SCM, versions 9.0, 9.1 PeopleSoft
Oracle Siebel Life Sciences, versions 8.0.0, 8.1.1, 8.2.2 Health Sciences
Oracle FLEXCUBE Direct Banking, versions 5.0.2, 5.3.0-5.3.4, 6.0.1, 6.2.0 Contact Oracle Customer Support
Oracle FLEXCUBE Universal Banking, versions 10.0.0-10.5.0, 11.0.0-11.4.0 Contact Oracle Customer Support
Primavera P6 Enterprise Project Portfolio Management, versions 6.2.1, 8.0, 8.1, 8.2 Primavera
Oracle Sun Product Suite Oracle Sun Product Suite
Oracle MySQL Server, versions 5.1, 5.5

Sysinternals – April 2012 Product Releases

This excellent set of Windows utilities was recently updated

ISC: Sysinternals – April 2012 Product Releases http://isc.sans.edu/diary.html?storyid=13006
http://blogs.technet.com/b/sysinternals/archive/2012/04/17/updates-notmyfault-procmon-v-3-01-testlimit-v-5-2-mark-s-webcasts-and-windows-internals-6th-edition-part-1.aspx

QUOTE:    Among the release are updates to the following:

• NotMyFault
• Process Monitor v3.01
• TestLimit v5.2
• Webcasts from Mark R.
• Windows Internals 6th Ed. Part 1

Word Press 3.3.2 security release

The ISC documents an important security release:

Word Press 3.3.2 security release http://isc.sans.edu/diary/WordPress+Release+Security+Update/13024
http://core.trac.wordpress.org/log/branches/3.3?rev=20552&stop_rev=20087
http://wordpress.org/news/2012/04/wordpress-3-3-2/
http://Pluploadwordpress.org/download/

QUOTE: WordPress released a security update (version 3.3.2) that fixes 3 external libraries (Plupload, SWFUpload and SWFObject) as well as privilege escalation and cross-site script (XSS) issues as well as 5 other bugs. Change log posted here. The advisory is posted here and you can download the update here.

Network-wide options by YD - Freelance Wordpress Developer