Computer Securitytag:blog.emerson.edu,2009:/Computer_Security//102009-02-03T20:18:08ZTechnology information for the Emerson Community with a focus on security and safe computing practices.Movable Type 4.14Hiatus (and a suggestion)tag:blog.emerson.edu,2009:/Computer_Security//10.37112009-02-03T19:08:51Z2009-02-03T20:18:08ZI think a full-time security administrator should be able to write at least 3 posts every week, if not every day. I've always had a lot of roles to fill, but being a Banner system administrator is really a full...Adam Travis
SANS 'Ouch!' Newsletter. I rely on the SANS Internet Storm Center for updates that are often very technical in nature, but Ouch! is geared toward all users and is only published once a month. You can view the current issue on the web or have it e-mailed to you each month.
]]>
Critical Update for Internet Explorertag:blog.emerson.edu,2008:/Computer_Security//10.35022008-12-18T13:45:02Z2008-12-18T13:52:27ZYesterday, Microsoft released an "Out-of-Band" Security Update to fix a critical vulnerability in Internet Explorer. This vulnerability can be exploited by visiting a maliciously crafted web site, but does not necessarily require a user to download any files or click...Adam Travis
http://www.emerson.edu/helpdesk/services/maintenance/Windows-Maintenance.cfm
]]>
Security Updates for Mac OStag:blog.emerson.edu,2008:/Computer_Security//10.35012008-12-18T13:39:50Z2008-12-18T13:44:52ZApple has released Security Update 2008-008 / Mac OS X v10.5.6 earlier this week. It fixes a number of vulnerabilities, so if you have patched yet, it is time to run Software Update....Adam Travis
Security Update 2008-008 / Mac OS X v10.5.6 earlier this week. It fixes a number of vulnerabilities, so if you have patched yet, it is time to run Software Update.]]>
Is it Patch Tuesday already?tag:blog.emerson.edu,2008:/Computer_Security//10.33672008-12-10T19:50:17Z2008-12-10T19:57:43ZYes, on Tuesday, Microsoft released a number of updates for Windows and Office (including Office for Mac). All of them are critical for your home and office computers, so patch now (if you haven't already). For more information about patching...Adam Travis
Patch Tuesday posting.]]>
Java Updatestag:blog.emerson.edu,2008:/Computer_Security//10.32852008-12-08T16:49:54Z2008-12-08T16:57:15ZSun has just released an update which fixes numerous vulnerabilities in a number of different versions of Java. Some of the vulnerabilities patched are quite serious, such as allowing a remote hacker to execute code on your computer. Java is...Adam Travis
]]>
A big week for software updatestag:blog.emerson.edu,2008:/Computer_Security//10.27112008-11-14T16:26:09Z2008-11-14T16:36:06ZIt has been a big week for software updates. First, Microsoft released three important updates on their Patch Tuesday. A couple of my machines prompted me to run Flash Player updates this week. Mozilla patched a large number of vulnerabilities...Adam Travis
It has been a big week for software updates. First, Microsoft released three important updates on their Patch Tuesday. A couple of my machines prompted me to run Flash Player updates this week. Mozilla patched a large number of vulnerabilities in Firefox (and other products, such as Thunderbird). And Apple has released an update of their Safari web browser for Mac and Windows. Make sure your computers are up to date.
More Reasons to Worry About the Economytag:blog.emerson.edu,2008:/Computer_Security//10.24292008-10-26T14:36:37Z2008-10-26T15:28:11ZThis is a simple idea, but it is still worrisome. Malware writers look for any opportunity they can to attack people. With news of financial markets declining and bank consolidation, security research shows an increase in spam and phishing activity....Adam Travis
security research shows an increase in spam and phishing activity. It's not a new idea; we've seen floods of attacks after any sort of natural disaster or other major news events. This time they are playing to people's fears about their banks and investments.
The advice remains the same. Be very cautious with your e-mail and especially don't click any link in a suspicious message. You should always be able to get to your bank's web site by typing in the URL; you should never have to click a link in a message.
]]>
Emergency Microsoft Patch!tag:blog.emerson.edu,2008:/Computer_Security//10.24082008-10-23T17:59:38Z2008-10-23T18:33:04ZMicrosoft has just released an "Out-of-Band" Security Update to fix a critical vulnerability in a process known as Remote Procedure Call (RPC). This vulnerability could be exploited when one computer connects to a Windows Computer or Server with a commonly...Adam Travis
Microsoft Security Bulletin, "It is possible that this vulnerability could be used in the crafting of a wormable exploit." There are currently limited, small scale attacks happening on the Internet, however, the potential exists for a wide-spread worm attack. For those reasons, Microsoft chose not to wait until the next Patch Tuesday (November 11), but instead to release it immediately, which is a rare step for them.
Given the potential for a worm-like attack, we plan to patch all Windows Servers tomorrow morning. I would highly recommend that all Windows users patch their home systems as soon as possible. For more information on patching and keeping your computer safe, please see: http://www.emerson.edu/helpdesk/services/maintenance/Windows-Maintenance.cfm]]>
Many Microsoft Updatestag:blog.emerson.edu,2008:/Computer_Security//10.23502008-10-15T15:59:36Z2008-10-15T16:02:36ZYesterday Microsoft released a number of critical patches for both servers and desktop computers. I highly recommend patching your Windows computers as soon as possible. We updated Emerson's servers this morning....Adam Travis
Yesterday Microsoft released a number of critical patches for both servers and desktop computers. I highly recommend patching your Windows computers as soon as possible. We updated Emerson's servers this morning.
Catching Uptag:blog.emerson.edu,2008:/Computer_Security//10.21652008-09-25T19:47:18Z2008-09-25T20:14:36ZI know for the me the past month has mostly been a blur, as the start of the school year often will be. So I'm trying to catch up a little on the important security news and I think I...Adam Travis
PATCH EVERYTHING: Windows, MacOS, Firefox, iTunes, Office, QuickTime, Flash Player, Adobe Reader, Java, and any other software you might have. Everything in that list has released security updates recently and you should make sure you are up to date. For help figuring out how to update your software, see this post from about a year ago.
Beware of Scams: Microsoft has been working to cleanup infected computers that are part of bot-nets. So the criminals have been working extra hard to infect new computers. A common means of infection involves setting up malicious web sites and getting people to visit them by sending spam. Especially popular right now are greeting card scams--where it looks like someone sent you an e-card and when you go to view it they infect your computer. Also be weary of any emails with outrageous subject lines that seem like current events, solicitations for victims of recent hurricanes or other storms, or anything about a US financial institution.
Don't use Google Chrome: For those of you who have not heard, Google has released a new web browser, called Chrome. This is still a beta software product, and has already been found to have a number of security vulnerabilities. I will offer the same advice I offered when Apple released Safari for Windows: Don't use beta web browsers on a production machine. Don't install Chrome on any computer that you rely on for day to day work. If you have a test machine (with no important data on it), that is the only place I would consider safe for this browser at this time.
OK, I think that covers the biggest IT security news. I'll try to keep the updates coming a little more frequently.]]>
Patch your Windowstag:blog.emerson.edu,2008:/Computer_Security//10.18022008-07-09T12:39:52Z2008-07-09T12:46:28ZMicrosoft has released a handful of updates as part of this month's Patch Tuesday. There are a few interesting ones, including something related to DNS that affects servers and clients. As usual, I recommend patching as soon as possible. For...Adam Travis
SANS Internet Storm Center.]]>
Patch your Mactag:blog.emerson.edu,2008:/Computer_Security//10.17942008-07-01T12:23:01Z2008-07-01T12:27:47ZI feel like I write this a lot, but it's time to patch your Mac. Apple has released Security Update 2008-004, Mac OS X v10.5.4, and Safari 3.1.2 for Mac OS X v10.4.11. More info at http://support.apple.com/kb/HT1222....Adam Travis
http://support.apple.com/kb/HT1222.
]]>
Mac Securitytag:blog.emerson.edu,2008:/Computer_Security//10.17932008-06-29T19:46:08Z2008-06-29T19:55:52ZOne of the misconceptions I frequently try to change is the idea that Macs can't get viruses. There is no arguing that the number of attacks against MacOS is tiny in comparison to Windows and even Unix/Linux systems. But just...Adam Travis
post from Intego.com as further evidence that Mac users can not be complacent. Good security is not the same thing as perfect security.
]]>
Firefox 3 is here!tag:blog.emerson.edu,2008:/Computer_Security//10.17852008-06-20T13:25:10Z2008-06-20T14:03:41ZFirefox 3 was released on Tuesday as Mozilla attempted to set a world record for most downloads in one day. From what I have heard, it was downloaded more than 8 million times in the first 24 hours. I was...Adam Travis
Release Notes.
For more information and to download Firefox, visit www.mozilla.com.
]]>
Update for Safari on Windowstag:blog.emerson.edu,2008:/Computer_Security//10.17842008-06-20T13:22:57Z2008-06-20T13:25:04ZApple has released a patch for its Safari web browser for Windows. I don't recommend using Safari on Windows at all, but if you do be sure to update. More info at: http://support.apple.com/kb/HT2092....Adam Travis
http://support.apple.com/kb/HT2092.
]]>