The creativity and resourcefulness of the criminal underground never ceases to amaze me. Granted, these guys have nothing else to do but sit around and come up with new scams, but still, some of these things are truly inspired. Have a look at this Google AdWords phishing scam that has been showing up in recent [...] read more »
Tools are available to automate VoIP attacks, but the threat remains low until VoIP communications is more pervasive in the workplace.
Microsoft patched dangerous holes in implementations of Active Directory on Windows 2000 Server and memory allocation issues with its Host Integration Server.
Attackers could take complete control of machines running versions of Microsoft Office, the software giant warned Tuesday. Four critical updates were released to fix 12 flaws.
Attackers could exploit Windows TCP/IP, LSASS flaws to hijack targeted computers and do a variety of damage, Microsoft warned Tuesday. Windows Vista is affected.
A couple weeks back, Windows expert Scott Dunn warned that the repair feature in Windows XP was knocked out of alignment when Microsoft silently deployed a batch of new support files for Windows Update (WU) in July and August. As a result, those who rely on XP’s repair function were unable to install 80 Microsoft [...] read more »
On the heels of Microsoft's October security update, vulnerability management experts are urging Windows administrators to deploy the Internet Explorer (IE) and RPC patches first.
Of the six security updates Microsoft released Tuesday, experts expressed the most concern about a critical glitch in the .NET Framework that could leave client machines and Web servers open to attack.
On the heels of our report of a possible new Microsoft Office zero-day yesterday comes news that there’s exploit code for some of the flaws Microsoft patched Tuesday.Here’s an email alert I got from Symantec on the latest exploit activity:“The DeepSight ThreatCon is currently at Level 2. Two exploits targeting the Microsoft Internet Explorer Speech [...] read more »
Microsoft fixed 15 flaws in a variety of products Tuesday, including Windows XP, Vista and Internet Explorer 7. Attackers could exploit the most serious flaws for remote code execution.
Microsoft issued patches to plug 19 holes, including a critical zero-day DNS Server Service flaw as part of its monthly Patch Tuesday bulletin.
Get SecGeeks Feeds in your email:
add me on gtalk: secg33k@gmail.com
