Archive | Editorial Articles RSS feed for this section

WatchGuard Security Week in Review: Episode 18

May 18, 2012 by Corey Nachreiner 0 Comments

AusCERT 2012, QuickTime Updates, and a New Zeus Variant

This week’s “on the road” edition of WatchGuard Security Week in Review comes to you from the sunny Gold Coast of Australia, where I’ve spent the week learning about the latest mobile attacks, cloud threats, and SCADA security issues with the vibrant Australian security community. In this week’s video podcast, I quickly summarize a few of the presentations I saw at AusCERT this year.

Of course, normal security news continued marching along despite my little jaunt to the land down under. So I also cover this week’s important software updates, some new malware variants, and a potentially catastrophic antivirus update mistake. If you’re ready to catch up on the week’s most interesting security stories, check out the video below.

If you’d like to read the original sources for many of these stories, be sure to check out the Reference section. Also, make sure to post any feedback or questions in the comments section below, and share this podcast with your friends if you like it. Cheers!

(Episode Runtime: 5:35)

Direct YouTube Link: http://www.youtube.com/watch?v=KI9astTaRjU

Episode References:

— Corey Nachreiner, CISSP (@SecAdept)

Editorial Articles, Security Updates
, , , , , , , , , , , , , , ,

WatchGuard Security Week in Review: Episode 17

May 11, 2012 by Corey Nachreiner 0 Comments

Twitter Hacks, Gas Pipeline Cyber Attacks, and FBI Wiretaps

Though the primary theme for this week was, “patch, patch, patch,” I saw many other interesting, non-update related security stories in the news as well. This week’s vlog packs all those stories into a brisk eight and a half minutes. Topics include:

  • Highlights on Microsoft, Adobe, and Apple security updates
  • FBI lobbying for online wiretaps
  • Warnings of Gas Pipeline Cyber Attacks
  • Some new Geo-aware malware
  • A seemingly big Twitter breach
  • Some hacker arrests

For details on all these stories, and a few security tips along the way, check out the latest WatchGuard Security Week in Review video below.

As always, if you don’t have time for a video but want to check out individual stories later, you can find links to all the issues I cover in the ”Reference” section at the end of this post. You can also let us know what you think about this video series in the comments section.

Finally, I’m attending AusCERT next week; a security conference in Australia. Though I plan to release an episode next week, I will either post it significantly earlier or later than normal, due to the time zone difference. So keep your eyes peeled for next week’s episode, but don’t expect it at the regular time.

(Episode Runtime: 8:31)

Direct YouTube Link: http://www.youtube.com/watch?v=guqTuUatEwc

Episode References:

— Corey Nachreiner, CISSP (@SecAdept)

Editorial Articles, Security Updates
, , , , , , , , , , , , , , , ,

Microsoft Black Tuesday: May Brings Windows, Office and .NET Patches

May 8, 2012 by Corey Nachreiner 1 Comment

Microsoft has offered its May security updates to the masses. As expected, the theme this month seems to revolve around Office document parsing vulnerabilities. If you use Office in your network, you will want to apply these updates as soon as possible.

In their May security bulletin summary, Microsoft highlights seven security bulletins that fix 23 vulnerabilities in four primary products, including:

  • Windows
  • Office
  •  .NET Framework
  • Silverlight

They rate three of these bulletins as Critical, which typically means remote attackers can exploit them to gain control of affected computers.

The two most serious flaws appear to be a vulnerability in Word (MS12-029) involving the way it handles Rich Text Files (RTF), and ten flaws that affect Office, Windows, the .NET Framework, and Silverlight (MS12-034); many of which also have to do with how these products handle documents or fonts. I would apply these updates in the same order Microsoft recommends in their summary post.

I’ll share more details about these issues, and how to fix them, in consolidated alerts I’ll post here shortly.

[UPDATE] I mistakenly published an unfinished version of this post as I was writing it. This may have resulted in you receiving an email containing the incomplete post. I apologize for the confusion this may have caused, and the extra email.  — Corey Nachreiner, CISSP (@SecAdept)

Editorial Articles
, , , , , , , , , ,

WatchGuard Security Week in Review: Episode 16

May 4, 2012 by Corey Nachreiner 1 Comment

Lots of New Malware, Microsoft Patch Day, and Oracle Updates

This week’s security summary podcast includes information about Microsoft’s upcoming Patch Day, stories about three interesting new malware variants, and updates to a few stories from previous episodes. Watch the video below for the details.

If you’d prefer to read, see the “Reference” section for links to all these security stories. I’ve seen a few late-breaking stories since I shot this week’s video, so be sure to check out those updates below. Also, don’t forget to share your thoughts or feedback in the comments section. (Episode Runtime: 8:37)

Direct YouTube Link: http://www.youtube.com/watch?v=guqTuUatEwc

Episode References:

— Corey Nachreiner, CISSP (@SecAdept)

Editorial Articles, Security Updates
, , , , , , , , , , , , , ,

Radio Free Security: April 2012 Episode

April 30, 2012 by Corey Nachreiner 1 Comment

Securing Your Servers in The Matrix

Radio Free Security (RFS) is a monthly audio podcast dedicated to spreading knowledge about network and information security, and to keeping busy IT administrators apprised of the latest security threats they face online.  Here’s what to expect in April’s episode:

  • April’s Security Spotlight [3:35 - 42:05] - Virtualization, as we know it today,  is like The Matrix for operating systems (OS). Your OS thinks it is running on a “real” computer but it is actually in a “faked” environment, under the control of a higher (or should I say hyper) power. While OS virtualization offers many new solutions, it also presents new security challenges. In this month’s episode, I chat with WatchGuard’s Director of Product Management, Roger Klorese, about the history of virtualization, its security implications, and some solutions to those potential problems. We also discuss two upcoming virtual security solutions from WatchGuard.
  • Security Story of the Month [43:00 - 1:23:10] - I join two new co-hosts, Christian and Chris, to discuss April’s biggest security stories. We talk about about scary new cyber legislation, a big data breach, and a nasty Mac botnet. Which story should most concern you? Find out during this roundtable discussion.

You can always find the latest episode of Radio Free Security at:

Or just listen to April’s episode using the player below [runtime: 1:25:00].

— Corey Nachreiner, CISSP (@SecAdept)

Editorial Articles
, , , , , , , , , , ,

WatchGuard Security Week in Review: Episode 15

April 27, 2012 by Corey Nachreiner 1 Comment

Major US Cyber Legislation, VMware Source Code Leak, and Hotmail Hacks

This week’s security news round-up video is full of scary Cyber legislation, major network and organization breaches, and a couple of important security updates. If you’re too busy to follow the barrage of security news every day, let WatchGuard’s Security Week in review video summarize it for you.

Would you rather read? No problem. You’ll find links to all these stories in the reference section.

By the way, this week’s stories continued to develop as I produced this episode. Unfortunately, I had to sneak in a quick video update about the CISPA bill during production. I won’t give it all away, but I can say CISPA is one step closer to reality. Watch below for details. (Episode Runtime: 6:54)

Direct YouTube Link: http://www.youtube.com/watch?v=euZUKfEvZvY

Episode References:

— Corey Nachreiner, CISSP (@SecAdept)

Editorial Articles, Security Updates
, , , , , , , , , , , , , ,

WatchGuard Security Week in Review: Episode 14

April 19, 2012 by Corey Nachreiner 2 Comments

Oracle CPU Update, Another Mac Trojan, and 20,000 Infected Websites

This week I’ve been traveling in Denmark and Finland, speaking at various security events, which make this week’s WatchGuard Security Week in Review an “on the road” edition. In this very short episode, I quickly cover this week’s big Oracle Critical Patch Update (CPU), yet another mac trojan, and a story about Google warning web administrators about web site infections. Check out the video below for the quick highlights

You’ll find links to the stories in this episode below. Feel free to share thoughts and suggestions in the comments section, and share these videos with your friends. I’ll be back next week with a more regular length episode. (Episode Runtime: 3:50)

Direct YouTube Link: http://www.youtube.com/watch?v=Ss1wKkWqRDI

Episode References:

— Corey Nachreiner, CISSP (@SecAdept)

Editorial Articles, Security Updates
, , , , , , , , , , , , , ,

WatchGuard Security Week in Review: Episode 13

April 13, 2012 by Corey Nachreiner 3 Comments

Flashback Follow-up, Lots of Patches, and MBR Ransomware

In this week’s video, I follow up on Flashback developments, cover the various security updates that came out this week, and warn you about two new interesting malware variants that change their targets or techniques. There’s a lot to learn, so check out this week’s WatchGuard Security Week in Review video below.

For those not interested in video, I share links to all this week’s stories in the Reference section. I had originally intended to cover a few government-related news items in this week’s video, too. However, I decided to cut them due to time. If you’re interested in the new U.S. cyber security act and an interesting new Stuxnet development, I’ve included extra links to those stories as well.

As always, I’d love to hear how to improve these videos, so feel free to leave comments and pass these videos on to your friends and co-workers. (Episode Runtime: 5:57)

Direct YouTube Link: http://www.youtube.com/watch?v=4AXyWowjmeg

Episode References:

— Corey Nachreiner, CISSP (@SecAdept)

Editorial Articles, Security Updates
, , , , , , , , , , , , , ,

Microsoft Black Tuesday: Critical Windows, Office, and IE Updates

April 10, 2012 by Corey Nachreiner 2 Comments

Microsoft has posted their April Patch Day security bulletins, which fix many serious flaws. If you run a Microsoft shop, it’s time to test and deploy these updates.

Microsoft’s April Security Bulletin summary, describes six security bulletins, which fix 11 vulnerabilities in many of their products. Affected products include:

  • Windows, and components that ship with it
  • Internet Explorer (IE)
  • The .NET Framework
  • Microsoft Office and other related products
    • Works
    • SQL Server
    • BizTalk Server
    • Commerce Server
    • Visual FoxPro
    • Visual Basic
  • Forefront Unified Access Gateway (UAG).

They rate four of these bulletins as Critical, which typically means remote attackers can exploit them to gain control of your affected computers.

April MS Patch Day Summary

In their summary post, Microsoft lists these bulletins in order of their severity. I typically agree with Microsoft severity classifications, and recommend you apply the updates in that order. However, there is one exception this month. According to Microsoft, attackers are exploiting the flaws from the fourth bulletin (MS12-027) in “limited targeted” attacks. For that reason, I believe that bulletin, along with the IE one, poses the most risk. I’d recommend applying the IE and “Common Controls” updates before the other Critical ones.

I’ll post more detailed alerts about most of these Microsoft bulletins shortly. However, I do not plan on posting an alert about the Forefront UAG bulletin. This product is similar to one we offer, so I suspect many of our customers don’t use it. That said, if you do use Microsoft Forefront UAG, you should refer to Microsoft’s bulletin (MS12-026) and apply the appropriate updates.

In semi-related news, Adobe shares the second Tuesday of the month as their official patch day. Today, Adobe also released a security update for Reader and Acrobat. I plan to post an alert about these Reader flaws after the Microsoft ones. If you’d like a head start on the Reader update, feel free to follow the link above now, for details. — Corey Nachreiner, CISSP (@SecAdept)

Editorial Articles
, , , , , , ,

WatchGuard Security Week in Review: Episode 12

April 6, 2012 by Corey Nachreiner 2 Comments

April Brings a Major Data Breach, a Mac Botnet, and New Mobile Malware

This week’s video podcast covers a major credit card data breach, a spreading Mac botnet, new Android malware, and much more. If you use a Mac, run Microsoft software, or have a mobile device, don’t miss this episode of WatchGuard Security Week in Review.

If you’re a reader, or just don’t want to listen to little ol’ me, check out the links to all these stories below. Don’t forget, I’m always looking for your suggestions or feedback to make this podcast better. Don’t be shy about leaving your thoughts in the comments section of this post, and feel free to share these videos with your friends and coworkers. (Episode Runtime: 8:52)

Direct YouTube Link: http://www.youtube.com/watch?v=ITrUELOftVA

Episode References:

— Corey Nachreiner, CISSP (@SecAdept)

Editorial Articles, Security Updates
, , , , , , , , , , , , , ,
Older Entries

Follow

Get every new post delivered to your Inbox.

Join 6,939 other followers