Response & Remediation Archives - Page 8 of 9

Firefox 32.0 fixes holes, shakes out some old SSL certs, introduces certificate pinning

Michelle Drolet

by Paul Ducklin on September 3, 2014 Yesterday was Firefox’s most recent Fortytwosday(updates come out every 42 days, on Tuesdays, in a nod to Douglas Adams), bringing us to Firefox 32.0. For those who like to keep their feature set behind the leading edge, yet stay on top of security fixes, there’s also ESR 24.8 and ESR 31.1. ESR is short for Extended Support Release;

3 Minute 12 Second Read

Towerwall Security/Malware Alert Vol 13.72

Michelle Drolet

When an international law enforcement action earlier this month knocked out theGameover botnet, one happy consequence was the takedown of the servers that the CryptoLocker ransomware needed in order to do its dirty work. Well, any celebration over CryptoLocker’s demise is certainly premature – encrypting ransomware is alive and well. With many victims paying up, ransomware is a

3 Minute 56 Second Read

CryptoLocker ransomware – learn what it is and how to prevent it

A new ransomware program, known as Cryptolocker, was identified recently. Ransomware can freeze your computer and ask you to pay a fee, but this malicious ransomware does more than just that. (You can use a anti-virus tool to remove the virus.) Cryptolocker is different from other ransomware due to the fact that it allows your

0 Minute 45 Second Read

Towerwall Heartbleed Vulnerability Alert

Michelle Drolet

Good Afternoon: The IT infrastructure your organization may use for day-to-day business may be vulnerable because of the Heartbleed vulnerability. Sophos a Towerwall partner has prepared a podcast of the Heartbleed vulnerability, which addresses who is likely affected, workarounds and an offer to help determine if you are vulnerable. http://nakedsecurity.sophos.com/2014/04/10/sscc-142-heartbleed-explained-patches-evaluated-apple-chastised-podcast/ If you think you may

0 Minute 40 Second Read

Patch Tuesday wrap-up, March 2014 – critical fixes from Microsoft and Adobe

Michelle Drolet

by Paul Ducklin on March 12, 2014 We already wrote about Microsoft’s March 2014 patches, noting that, as usually happens, there was an All-Points Bulletin for Internet Explorer coming up. Microsoft doesn’t call them APBs, of course – they are Cumulative Security Updates, with one bulletin covering all the numerous versions, bitnesses and CPU flavors of Redmond’s IE browser.

1 Minute 51 Second Read

Towerwall Information Security/Malware Alert Vol 13.67 – Notorious "Gameover" malware gets itself a kernel-mode rootkit…

Michelle Drolet

Zeus, also known as Zbot, is a malware family that we have written about many times on Naked Security. We’ve covered it as plain old Zbot. We’ve covered the Citadel variant, which appeared when the original Zbot code was leaked online. We’ve even written about the time it pretended to be a Microsoft fix for CryptoLocker, a completely different

4 Minute 43 Second Read

Internet Explorer, .NET, IPv6 and Shockwave top the February 2014 Patch Tuesday list

Michelle Drolet

For today’s Patch Tuesday, Microsoft released seven bulletins (a surprise after only announcing five last week) and Adobe released one. There are four critical advisories, to me the most important of which is MS14-010 affecting Internet Explorer versions 6 through 10. This patch fixes 24 vulnerabilities, one of which has been publicly disclosed. Considering that

1 Minute 29 Second Read

Towerwall Security Patch Alert Vol 13.63

Michelle Drolet

Patch Tuesday January 2014 – Microsoft, Adobe and Oracle by Chester Wisniewski As expected Microsoft delivered four patches on patch Tuesday covering Windows XP, 2003, 7, 2008 R2, Word and Dynamics. All four patches are rated important, the first time in memory that none of the fixes were critical. The Word fix applies to all

1 Minute 27 Second Read

Four Steps to Respond & Recover from Sophisticated Security Attacks

Michelle Drolet

Great information in SC Magazine’s latest whitepaper report, ‘Four steps to respond and recover from sophisticated security attacks’, it discusses the four proactive steps that you can – and should – take now to help keep your organization safe. Click here to view more details: http://bit.ly/131uu2J As we all know, cyber-attacks are becoming more sophisticated

0 Minute 37 Second Read

Trust Your Third-Party Applications? Think Again….

Michelle Drolet

Don’t assume those third-party apps you buy are fully secure. Despite the promise of cloud computing, companies are still buying software. And it is more cost effective to buy an application and plug it into your system than it is to develop anew. How many third-party applications has your company bought off the shelf? How

3 Minute 27 Second Read

Our Cybersecurity Solutions

Virtual Security Officer

We Advise

Industries

Trends & Threats

Knowledge Hub

Our Company

Solutions: Response & Remediation

Firefox 32.0 fixes holes, shakes out some old SSL certs, introduces certificate pinning

Towerwall Security/Malware Alert Vol 13.72

CryptoLocker ransomware – learn what it is and how to prevent it

Towerwall Heartbleed Vulnerability Alert

Patch Tuesday wrap-up, March 2014 – critical fixes from Microsoft and Adobe

Towerwall Information Security/Malware Alert Vol 13.67 – Notorious "Gameover" malware gets itself a kernel-mode rootkit…

Towerwall Security Patch Alert Vol 13.63

Trust Your Third-Party Applications? Think Again….

Talk with us now about:

Your security needs.

Call 774.204.0700

Email Us