PREVIOUS GNEWS Patch Tuesday 6 Patches 4 Critical
- Slides: 10
PREVIOUS GNEWS
Patch • • Tuesday 6 Patches – 4 Critical – 11 CVEs Affected – SQL, Visual Basic, Visual Foxpro, more… – – – MS 12 -023 Security Update for Internet Explorer, Remote Code Execution MS 12 -024 Windows, Remote Code Execution MS 12 -025. NET Framework, Remote Code Execution MS 12 -026 Forefront Unified Access Gateway (UAG), Information Disclosure MS 12 -027 Windows Common Controls, Remote Code Execution MS 12 -028 Microsoft Office, Remote Code Execution Other updates, MSRT, Defender Definitions, Junk Mail Filter
Holes / Patches • Oracle, 17 April • Adobe – APSB 12 -07 Adobe Flash Player – APSB 12 -08 Adobe Reader and Acrobat – Silent Update Option • Apple, – Java for OS X Lion 2012 -002 – Java for OS X 10. 6 Update 7 • Cisco – – telnet buffer overflow Webex buffer overflow TLS man-in-the-middle IOS, multiple vulns
Hacking • Mac Flashback • Zeus Takedown lead by MS – Not all go down, 147 of 156 gone, 6 dead, 3 still active • Two attacks for Modicon Quantum programmable logic controller • Puerto Rico leading the charge in Smart Meter hacking – Optical port $150 in parts – Strong Magnets (think geek? / HDs? ? ) • HP laserjet bug affects 50 product lines – Remote firmware update • Drexel Researchers recover PII off xbox • Working Po. C for MS 12 -020, RDP • FB Dead Friend Attack
Corp. • project glass the beginning of the end • RIM launches Mobile Fusion to manage tablets, android, i. OS, etc • TIBCO to acquire Logic • Avira mobile malware detection tool • pirate bay cloud in the clouds (thank you greece) • Symantec buys Nukona (mobile ecm) • Dell buys Sonic. Wall
Legal • FOIA denied – Electronic Privacy Information Center requested info on NSA / Google deal • French p 2 p law – Reduces piracy, no effect on music sales • ARM Security Standards
Papers • Verizon report • IBM report • Lancop report • HITB Quarterly
random • Hackers now selling credit reports
CON Events ITSEC Southwest http: //www. infosecsouthwest. com/
All images scavenged without permission