Recent Comments

    Blogroll

    Search

    Security Mailer (2019 # 33)

    August 18th, 2019 by

    Security Mailer Volume 19 Number 33

    • Adobe security updates
      • Reader
      • Photoshop CC
      • Flash Player
    • Apple Security Updates
    • Cisco security advisories (some critical)
    • Linux updates
    • EXCEL spreadsheet covering all patches released by Microsoft on Tuesday 8/13/19
      Both XLS and XLSX versions are provided
    • Microsoft
      • updates fix 93 vulnerabilities,
      • security update revisions
      • security advisories
      • General Security reviews last week, covers new Nmap release

    Posted in Newsletters, Updates | No Comments »

    Data Leak at First American Financial Corp – 885 Million records exposed!

    August 13th, 2019 by

    SEC Investigating Data Leak at First American Financial Corp.

    “The U.S. Securities and Exchange Commission (SEC) is investigating a security failure on the Web site of real estate title insurance giant First American Financial Corp. that exposed more than 885 million personal and financial records tied to mortgage deals going back to 2003, KrebsOnSecurity has learned.”

     

    Posted in Identity Theft, Newsletters | No Comments »

    Security Mailer (2019 #32)

    August 11th, 2019 by

    Security Mailer Volume 19 #32

    • Cisco security advisories
    • Linux updates
    • Microsoft security bulletin revised
    • General Security page reviews last week

    Posted in Newsletters, Updates | No Comments »

    Security Mailer (2019 # 31)

    August 4th, 2019 by

    Security Mailer Volume 2019 Number 31

    • Cisco security advisorie
    • Linux update
    • Microsoft advisory update
    • General Security review of last week
      • iOS 0-day exploits released

    Posted in Malware, Newsletters, Updates | No Comments »

    New Malware sets up proxy for more malware

    August 4th, 2019 by

    New Windows malware sets up proxies on your PC to relay malicious traffic

    A new malware strain targeting Windows systems is rearing its ugly head. Named SystemBC, this malware installs a proxy on infected computers.

    The bad news is that SystemBC never comes alone, and usually, the presence of this malware indicates that a computer was also infected by a second threat.

    Posted in Malware | No Comments »

    Comodo hacked (more than once?)

    July 28th, 2019 by

    An exposed password let a hacker access internal Comodo files

    “A hacker gained access to internal files and documents owned by security company and SSL certificate issuer Comodo by using an email address and password mistakenly exposed on the internet”

    “But according to Ursem, he wasn’t the first person to find the exposed email address and password. “This account has already been hacked by somebody else, who has been sending out spam,” he told TechCrunch. He shared a screenshot of a spam email sent out, purporting to offer tax refunds from the French finance ministry.”

    Posted in Uncategorized | No Comments »

    Security Mailer (2019 # 30)

    July 28th, 2019 by

    Security Mailer Volume 2019 Number 30

    • Apple updates everything
    • Browser Pale Moon update;
    • Cisco security advisory
    • Linux updates
    • Microsoft security advisory
    • General Security review of last week

    Posted in Newsletters, Updates | No Comments »

    Servicing stack update for Windows 10, Version 1809

    July 27th, 2019 by

    Servicing stack update for Windows 10, Version 1809: July 22, 2019

    Summary


    This update makes quality improvements to the servicing stack, which is the component that installs Windows updates. Key changes include:

    • Addresses an issue in which an update may not install with certain other updates and upon start up after installation of the other updates, will require a second scan of Windows Update and a second restart to complete installation.

    Microsoft strongly recommends you install the latest servicing stack update (SSU) for your operating system before installing the latest cumulative update (LCU). Installing servicing stack updates (SSU) ensure that you have a robust and reliable servicing stack so that your devices can receive and install Microsoft security fixes.

    Posted in Updates | No Comments »

    Russian meddling in social media and email accounts used by election officials

    July 26th, 2019 by

    The Unsexy Threat to Election Security

    “Much has been written about the need to further secure our elections, from ensuring the integrity of voting machines to combating fake news. But according to a report quietly issued by a California grand jury this week, more attention needs to be paid to securing social media and email accounts used by election officials at the state and local level.”

    Posted in Malware, Newsletters, Security Breeches | No Comments »

    Some HP machines may have a keylogger installed

    July 22nd, 2019 by

    Some HP machines have a keylogger installed with the Audio Driver, here’s how to disable it

    The keylogger, packaged with the Conexant HD Audio Driver Package in version 1.0.0.46 and earlier, has been discovered by researchers. With this audio driver comes a file, MicTray64.exe (or MicTray.exe for non-64-bit users), which has a Scheduled Task to run each time the user logs-on to their machine. Essentially, each time a key on the keyboard is pressed, it records it. The keystrokes are then stored in a plaintext file – definitely not a secure way of storing every key pressed on a machine.

    The keystroke log is stored at C:\users\public\MicTray.log.

    Posted in Malware, Security Breeches | No Comments »

    « Previous Entries