Krebs on Security has made contact with crimeware kit developers and salespeople who say that they have a Firefox and Chrome for Mac OSX webkit. ‘Weyland-Yutani’ Crime Kit Targets Macs for Bots
So, yet again we wonder if our Macs need protection. At best most of us are careful about social engineering scams. At worst these are very clever attackers who can take advantage of users who feel too secure.
Continue reading Russian Scriptor Targeting Macs?
October 2010 has had record numbers of updates in core programs from Windows to OSX, in Adobe Products and in Java (now owned and managed by Oracle.) Firefox, Opera, RealPlayer, you name it, Security Vulnerabilities is the new black…now white.
Security Vulnerabilities was a code word, of course. It was a nice way of saying, “A bad guy could create an object in the code of a site that would tickle a hole in the software on your computer, and make it – your computer – do one or more things.” Continue reading Update Everything Month~! Software Vulnerability Records
Charles Flynn Reports: Security Updates Abound
Please let us know if you see updates that we should inform the community about. This is what we have had recently:
Let’s take a look at those patches in Firefox 3.5.3, since 3.5 was released:
Security Advisories for Firefox 3.5
Impact key: [The circles and arrows looks prettier on the original site – link above – Ed]
Continue reading Current Security Updates – 09/09
22 August 2009 | A bug in the Firewall Services Module (FWSM) software allows Cisco routers and switches to be disabled by a series of crafted ICMP packets. Catalyst 6500 series switches and Cisco 7600 series routers equipped with a Firewall Services Module are affected. All FWSM software versions 2.x, 3.x and 4.x without the specific fix for this bug are vulnerable. In a security advisory, Cisco states that processing ICMP packets can lead a processor to use all available execution threads, with the result that the system will not forward any further packets. The FSWM itself is then no longer available remotely and, if configured for failover operation, the failover may also fail.
Continue reading Deadly pings for Cisco routers and switches