A critical vulnerability (CVE-2016-1019) exists in Adobe Flash Player 21.0.0.197 and earlier versions for Windows, Macintosh, Linux, and Chrome OS. The vulnerability allows an attacker to send booby-trapped content to a browser’s Flash plug-in that may cause the browser to crash, and will also hand over control to the hacker in the process. This type […]
Trend Micro has found two critical flaws (heap corruption remote code execution vulnerabilities) in Apple’s PC version of QuickTime that could allow hackers to take over computers. Rather than putting out a fix, Apple recently advised that it will no longer support QuickTime for Windows, and provided the following instructions for removal: https://support.apple.com/en-us/HT205771 The U.S. […]
Badlock is a recently-announced security bug in Windows and Samba. Though few details have been released, it is thought to affect Server Message Block (SMB), the protocol used to read and write files over a local network. Please note that machines running Linux and OS X may provide services through Samba. Staff that administer those […]
To watch the SANS video of the month for expert tips on creating strong passphrases/passwords, using two factor authentication, and keeping your passwords safe, please visit: http://securingthehuman.sans.org/resources/votm *Please note that this video will only be available to view during April 2016.