PREVIOUS GNEWS "This is Gary Gnu... and the no gnews is good gnews show. The ONLY tv gnews show guar-an-TEED-- to contain NO gnews what-so-ever."

Slides:



Advertisements
Similar presentations
Operating System Customization
Advertisements

PREVIOUS GNEWS. 7 Patches – 3 Critical – 23 CVEs Affected – RDP, IE, Lync, Windows Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS
PREVIOUS GNEWS. 11 Patches – 5 Critical Affecting most everything Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS IE, Remote Execution.
. 15 Patches / 32 Vulns – 9 Critical Affecting most everything Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS Windows.
PREVIOUS GNEWS. 13 Patches – 5 Critical Affecting Windows (pretty much all of them) Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS
3 Patches – x bugs addressed Affecting Kernel, SChannel, DNS/WINS Other updates, MSRT, Defender Definitions, Junk Mail Filter 3 Security Patches - 1 Critical,
PREVIOUS GNEWS. 4 Patches – 9 bugs addressed Affecting Windows, SQL, Exchange (OWA) Other updates, MSRT, Defender Definitions, Junk Mail Filter 8 Security.
PREVIOUS GNEWS. Oct - 8 Patches – 3 Critical - 24 CVEs MS Cumulative Security Update for Internet Explorer MS NET Framework, Remote Code.
Lesson 14-Desktop Protection. Overview Protect against malicious code. Use the Internet. Protect against physical tampering.
SP2 Mikael Nystrom. Agenda Översikt Installation.
PREVIOUS GNEWS "This is Gary Gnu... and the no gnews is good gnews show. The ONLY tv gnews show guar-an-TEED-- to contain NO gnews what-so-ever."
Security and Risk Management. Who Am I Matthew Strahan from Content Security Principal Security Consultant I look young, but I’ve been doing this for.
PREVIOUS GNEWS. Apr 4 Patches – 2 Critical – 11 CVEs MS Microsoft Word and Office Web Apps, Remote Code MS Cumulative Security Update.
Technology Coordinators Training. Confidential Copyright © 2007 Pearson Education, Inc. and/or one or more of its direct or indirect affiliates. All rights.
Apple Vs. Microsoft By Brichrandlyn. Apple!!! Apple Inc  Formerly Apple Computer Inc  Known for Ipods, Iphones and Ipad  Established on April 1, 1976.
Module 2 Part I Introduction To Windows Operating Systems Intro & History Introduction To Windows Operating Systems Intro & History.
Component 4: Introduction to Information and Computer Science Unit 8: Security Lecture 2 This material was developed by Oregon Health & Science University,
PREVIOUS GNEWS. 6 Patches – 1 Critical – 22 CVEs Affected – IE. Kernel, Print, Office MS Cumulative Security Update for Internet Explorer MS
PREVIOUS GNEWS. 7 Patches – x bugs addressed Affecting Word, Outlook, Publisher, Jet DB Engine, IE, Windows Other updates, MSRT, Defender Definitions,
PREVIOUS GNEWS. Patches – 1 Critical Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS DNS Server, DoS –MS Kernal Mode Driver,
© British Telecommunications plc BT Managed Services Innovate
PREVIOUS GNEWS. 7 Patches – 3 Critical – 23 CVEs Affected – Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS Microsoft Word, Remote.
PREVIOUS GNEWS. 7 Patches – 3 Critical – 20 CVEs Affected – IE, Kernel, Visio, Silverlight Sarepoint,….. Other updates, MSRT, Defender Definitions, Junk.
PREVIOUS GNEWS. 2 Patches / 3 Vulns – 1 Critical Affecting Windows XP, Vista, 7, 2003, 2008 Other updates, MSRT, Defender Definitions, Junk Mail Filter.
PREVIOUS GNEWS. 4 Patches – 12 bugs addressed Affecting Office, Visual Studio, BizTalk Other updates, MSRT, Defender Definitions, Junk Mail Filter 4 Security.
C HAPTER 2 Introduction to Windows XP Professional.
Previous Gnews. 13 Patches – 8 Critical, Affects pretty much everything Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS SMBv2.
PREVIOUS GNEWS. July - 6 Patches – 2 Critical - 27 CVEs MS Cumulative Security Update for IE, Remote Code MS – Windows Journal, Remote Code.
PREVIOUS GNEWS. 8 Patches – 3 Critical – 19+ CVEs Affected – GDI, Hyper-V, Outlook, Office, IE, Activex, and more MS Cumulative Security Update.
PREVIOUS GNEWS. 7 Patches – 1 Critical Affecting server builds and powerpoint Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS Windows.
PREVIOUS GNEWS. 6 Patches – 4 Critical – 19 CVEs Affected – Kernel, SQL, Kerberos, Word, HTML, SharePoint Other updates, MSRT, Defender Definitions, Junk.
P  e  i  Gne . 6 Patches, 12 bugs – 3 Critical, Affects Windows, Office Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS
CSE 4481 Computer Security Lab Mark Shtern. INTRODUCTION.
PREVIOUS GNEWS. 6 Patches – 4 Critical – 11 CVEs Affected – SQL, Visual Basic, Visual Foxpro, more… Other updates, MSRT, Defender Definitions, Junk Mail.
PREVIOUS GNEWS. Oct - ? Patches – ? Critical - ? CVEs Come Back Next Week Other updates, MSRT, Defender Definitions, Junk Mail Filter Patch Tuesday.
PREVIOUS GNEWS. 4 Patches – x bugs addressed Affecting Windows, SQL, Office, Visual Studio,.Net Other updates, MSRT, Defender Definitions, Junk Mail Filter.
. 6 Patches, 15 bug – 3 Critical, Affects 2000, XP, Srv 2003 / 8, Vista, Office Other updates, MSRT, Defender Definitions, Junk Mail Filter.
PREVIOUS GNEWS. Advanced Notification on Thursday Patch Tuesday.
. Next Week Yo! Patch Tuesday Java Multiple advisories and updates Openssl DoS in ASN1_STRING_print_ex() cisco ios DoS in Cisco Tunneling.
PREVIOUS GNEWS. –MS Microsoft XML Core Services, Remote Execution –MS Cumulative Security Update for Internet Explorer –MS Microsoft.
PREVIOUS GNEWS. Jan 4 Patches – 0 Critical – 6 CVEs 9 Patches – 4 Critical – 31+ CVEs MS Microsoft XML Core Services, Info Disclosure MS
PREVIOUS GNEWS. 7 Patches – 6 Critical – 35 CVEs Affected –.NET, GDI+, IE, Defender, DirectShow MS NET Framework and Silverlight, Remote Code.
PREVIOUS GNEWS. try again next week Patch Tuesday.
PREVIOUS GNEWS. 16 Patches / 49 Vulns – 4 Critical Affecting most everything Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS Cumulative.
Previous Gnews. 5 Patches – x bugs addressed Other updates, MSRT, Defender Definitions, Junk Mail Filter 5 Security Patches - 5 Critical –MS – JScript.
PREVIOU S GNEWS. May 7 Patches – 2 Critical - 70 CVEs MS Remote Desktop, Allow Tampering MS TCP Protocol, DoS MS Microsoft Lync.
PREVIOUS GNEWS A Hacker is You!. 1 Patches – 1 bugs addressed Affecting Windows (pretty much all of them) Other updates, MSRT, Defender Definitions, Junk.
PREVIOUS GNEWS. 4 Patches / 5 Vulns – 3 Critical Affecting Winodow (all of them), Office, IE, SharePoint,.net Other updates, MSRT, Defender Definitions,
PREVIOUS GNEWS. Aug - 4 Patches – 1 Critical - 42 CVEs MS – IE Cumulative Security Update, Remote Code MS –.NET Framework, DoS MS –
Chapter 12: How Private are Web Interactions?. Why we care? How much of your personal info was released to the Internet each time you view a Web page?
PREVIOUS GNEWS. 2 Patches – 2 Important Affecting Windows Movie Maker, Office Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS –
PREVIOUS GNEWS. 2 Patches – 2 Critical Affecting VB and Mail Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS – Visual Basic for.
IT Computer Security JEOPARDY RouterModesWANEncapsulationWANServicesRouterBasicsRouterCommands RouterModesWANEncapsulationWANServicesRouterBasicsRouterCommands.
PREVIOUS GNEWS. 3 Patches – 4 Critical – 53+ CVEs Affected – Kernel, AD, SharePoint, Office, and more MS Microsoft SharePoint Server, Remote Code.
Previous Gnews. Patch Tuesday April – 8 Patches (5 high/critical), Windows, Excel, ISA, IE, HTTP Services MS thru MS May – 1 Patch (critical)
Vista Licensing Information University of Pennsylvania Office of Software Licensing Mary A. Griffin November 13, 2006.
PREVIOUS GNEWS. 2 Patches – bugs addressed Affecting Windows (all versions) Other updates, MSRT, Defender Definitions, Junk Mail Filter Patch Tuesday.
Previous Gnews. Other updates, MSRT, Defender Definitions, Junk Mail Filter 10 Security Patches - 6 Critical, 3 Important, 1 Moderate –MS Active.
PREVIOUS GNEWS. Aug - 9 Patches – 1 Critical - 37 CVEs MS Windows Media Center, Remote Code MS – SQL Server, Privilege Escalation MS
LO2 Understand the key components used in networking.
Previous Gnews. Other updates, MSRT, Defender Definitions, Junk Mail Filter Out of Band Patchs –MS – IE Cumulative Security Update / Activex –MS
Securing a Host Computer BY STEPHEN GOSNER. Definition of a Host  Host  In networking, a host is any device that has an IP address.  Hosts include.
Page ADP Technology Training. 2 Page2 Confidential Copyright © 2007 Pearson Education, Inc. and/or one or more of its direct or indirect affiliates. All.
Citrix 1Y0-201 Managing Citrix XenDesktop 7.6 Solutions Study Material Question Answer
PREVIOUS GNEWS. 8 Patches – 6 Critical – 19+ CVEs Affected – Kernel, AD, Exchange, Unicode, ICMP MS Security Update for Internet Explorer, Remote.
All images scavenged without permission
All images scavenged without permission
Connecting Remotely Winter 2014.
Implementing Client Security on Windows 2000 and Windows XP Level 150
All images scavenged without permission
Presentation transcript:

PREVIOUS GNEWS "This is Gary Gnu... and the no gnews is good gnews show. The ONLY tv gnews show guar-an-TEED-- to contain NO gnews what-so-ever."

0 WE DON’T NEED NO STINKING PATCHES! 4 Patches originally expected –0 Security –4 Non-Security related updates, Malicious Tool Update 4 Patches, –Reliability update, corrects issue with Stop 0x1a (mem mgt) and Stop 0x0a5 (IRQL not less or equal) –Patch for Media Format 11 SDK, DRM subscriptions between hardware devices –Junk Mail Filter Update –Malicious Software Removal Tool Update

Books Windows PowerShell in Action was written –Bruce Payette The Oracle Hacker's Handbook: Hacking and Defending Oracle –David Litchfield Microsoft Vista for IT Security Professionals –Anthony Piltzecker Kismet Hacking –Brad Haines, Frank Thornton

Holes Stefan Esser Launches Month Of PHP Bugs –Formerly of Zend now heading the PHP Hardening Project Day one was a rehash of five (5) known but previously unpatched bugs Is tossing out the occasional “bonus” bug 21 total bugs as of March 13th 11 released with code, 10 labeled as no code required.

DATA LOSS Texas A&M –System hacked, School changes all 96,000 passwords University of Idaho –Web site post includes 2,700 employee records Census Bureau –Web site post 5x between Oct 2006 and Feb 2007 includes 302 housholds Speedmark (texas marketing firm) –Stolen laptop with employee and contractor data Stop and Shop Supermarket (new england) –Card Reader Hack Kiaser Medical Center (california) –Stolen laptop with 22,000 patient records

Holes II Cisco Network Analysis Module (patch available) –Spoof SNMP, take over switch via NAM FireFox locations.hostname DOM Bypass (patch available) –10 other fixes, includes password manage, sslv2 Apple Patches four (4) more MOAB vulns –Disk image file, user notification center, ichat (x2) Apple Security Update release March 13 th –30 patches, reported to fix 45 holes Snort Exploit post to milw0rm.com (patch available) Windows RealDirectoryChangesW information leak –Sub directory access where user has access to parent directory

Games X-Box Hypervisor Hacked –Allows arbitrary code and alternate OS –Requires Physical Access

Holes III Citrix Presentation Server Client (patch available) –Improper handling of ICA connection through proxy may allow arbitrary code GnuPG –attacker can add arbitrary content to encrypted and/or signed s Ktorrent (patch available) Google Desktop, allows data theft via javascript Apache multiple Injection vulnerabilities Another Office / Word 0-day

Corp. Hell SourceFire IPO hits the markets –Trades start at $15.45 and spikes to $18.50 –Originally expected to open between $12 and $14 Cisco and Apple settle over iPhone. Cisco acquires XML vendor Reactivity

Papers 2 nd (another) Paper on TOR vulnerabilities OWASP releases testing guide NIST release new security docs – , IDS/IPS, wireless security Computer Investigation Guide for Windows

Film Die Hard 4: Live Free Or Die –Semi retired alcoholic cop is throwing it part time for DHS Star Trek prequeal is set to stun X-mas 2008 –Matt Damon, Adrien Brody and Gary Sinise will play Kirk, Spock, and Scotty, respectively

WTF?! RadarSync.com – posting Vista drivers not made available by Windows MS Release list of “official” support Apps for Vista “Not Sure” added to Windows Genuine Advantage categories Estonia may be first to allow on-line voting Konami pulls slots machine after detection of subliminal jackpot image No MS Security Patches for March.

Updates Nessus Beta 3.2 Nikto 1.36 Clam AV 0.90 WS Fuzzer AxMan ReactOS Process Monitor v1.1 AccessChk v3.0 Fierce Domain Scanner Helios Lite, Rootkit Detection Future Releases –Longhorn Server might be seen in 2007 –Torment, H.D.Moores’s answer to TOR based (anti-)kiddie porn

Legal FBI and MPAA hired to train Swedish Police Anti-Child Porn Bill H..R 837, Lamar Smith (R-TX) –Calls for requirement of ISPs to be able to track users DoD, Drink or Die warez leader charged with copyright infringement Fair Use Act, Bouche (D-VA) and Doolittle (R-CA) to update the DMCA DMCA charges against Musilx64 for the AACS decrypt utility ‘BackupHDDVD’ MS vs Iowa Anti-Trust YouTube.com identifies users for FOX

CON BlackHat DC –RFID Demo was pulled, –Rehash of Apple WiFi Drivers Future Cons –ShmooCon, 23 – 25 March 2007 – Washington D.C (sold out) –CanSecWest, 18 – 20 April 2007 – Vancouver CA –DallasCon – 11 – 12 May 2007 – Dallas, TX –BlackHat – 28 July thru 2 Aug 2007 – Las Vegas, NV –DefCon – 3 – 5 August 2007 – Las Vegas, NV

All images scavenged without permission

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.