A few days back, security experts started reporting that an existing vulnerability in Microsoft Internet Explorer had been leveraged in a “Zero Day Exploit”. What does this mean for you? You could open a specially crafted document and become compromised. Microsoft has not released a patch as of this moment so they are advising the use of Microsoft Edge for …
Meltdown and Spectre CPU design flaws – massive security vulnerabilities for your business
The IT big news in 2018 has been about Meltdown and Spectre, two CPU design flaws that affect virtually every modern Intel processor with the exception of the Intel Itanium and Intel Atom prior to 2013. These flaws affect desktop computers, notebook & laptops, tablets, mobile phones, servers and even hosted servers “in the cloud”. What do you have to …
Internet Explorer being actively targeted – Why are you using IE?
This is from our partners at WatchGuard, taken in its entirety from their blog for your reading enjoyment: Advanced Attackers Exploit IE & Flash 0days in the Wild by Corey Nachreiner Over the weekend, Microsoft released a critical security advisory warning customers of a serious new zero day vulnerability in Internet Explorer (IE), which attackers are exploiting in the wild. Around the same time, …
Kevin Mitnick demonstrates a Microsoft Word document exploit
Did you know that most successful computer exploits that we encounter are because the user simply clicked a link, or opened a document without giving it a second thought? I think we’re all guilty of receiving an email from someone we know, or assume we know, then opening the email and following that link. I know I have done it, …
Microsoft FixIt for Word / Office should be applied without hesitation
Yesterday’s Microsoft Security Advisory announced a vulnerability in Microsoft Word which could permit remote code execution. The summary of this advisory simply states that people are being exploited due to a vulnerability. It happens when someone opens, or even previews an RTF in email using Microsoft Word as the email viewer. While Microsoft has not released a full patch at …
Windows users being exploited due to a TIFF issue
You need to be aware of this… Reposting from one of our partner’s blogs… WatchGuard: Attackers Exploiting a Zero Day in Windows, Office, and Lync by Corey Nachreiner Today, Microsoft released a critical security advisory warning customers of a serious new zero day vulnerability that affects Windows, Office, and Lync. In a nutshell, the vulnerability has to do with how certain versions …
Radio Station Website Compromise Leads to Visitor Infection Threat
The US-CERT National Cyber Awareness System sent out a notification yesterday and revised it today, May 21st entitled “TA13-141A: Washington, DC Radio Station Web Site Compromises”. The document outlines that on May 16th US-CERT was informed that two websites www.federalnewsradio-dot-com and www.wtop-dot-com had been compromised and that redirects had been put in place that would send Internet Explorer users to …
Flash! Savior of the Universe! No, not really….
Adobe Flash Player is making more friends (Right up there with JAVA! )… There are active attacks being reported currently for vulnerabilities that affect not only Microsoft Windows but also Apple Mac. You should insure that updates are installed! Should you require assistance applying these critical security updates to your computer or your entire network of computers, please call us …
Microsoft hearts you – Post Valentine’s Day patches are coming your way!
Strap in…. Patches are ‘a comin’ to your Microsoft Windows based computer or Server on February 12, 2013, just in time for Valentine’s Day. See, Microsoft DOES love you. Never doubt. That’s right! For the low, low price of only zero dollars, you will be receiving a number of feature loaded patches, the Microsoft Advance Notification for February 2013 says …
Unpatched critical Java vulnerability in latest patched version of Java?
No, this is not a repeat from the other day, or last month, or well, ever. The Department of Homeland Security’s suggestion to disable Java in your browser, whether you are using a Mac, Linux box or Windows PC is still probably the best route for you to take, but I know you won’t. Here’s the details…. As I warned …