Oracle dropped a bomb today on DBAs everywhere: the January 2012 CPU addresses 79 vulnerabilities! Affected Oracle products range from the 10g and 11g releases of Oracle Database, to WebLogic, VirtualBox, and even MySQL. One of the Oracle Database patches fixes a vulnerability that is remotely exploitable without authentication. In other words, PATCH NOW! (After testing, of course.)Read more
Over the past month, TRUE NSM analysts have observed a significant increase in the number of corporate web users being attacked by the Blackhole Exploit Kit. The rate of incidents reported involving this malware is now close to two per day. The Blackhole exploit kit targets vulnerabilities in out-of-date Java and Adobe Reader software. A cursory examination of a few of the deobfuscated Javascript files delivered to users by Blackhole also shows evidence that Adobe Flash is being targeted and perhaps even a few Microsoft vulnerabilities by way of the Windows Media Player ActiveX control.Read more
It looks like the main anti-malware vendors are choosing sides and going head-to-head on the relationship between Duqu and Stuxnet. So far, the fight is Symantec and Kaspersky, who say Duqu is related to Stuxnet, vs. SecureWorks and Bitdefender, who say they are not related at all.Read more
In my previous two blog posts, we looked at the insights and interesting findings contained within the latest Microsoft Security Intelligence Report. The report is now getting some press in the tech community, and one article in particular caught my attention. A report published by H Security notes, with some surprise, that “users are responsible for nearly half of all infections.” This doesn’t surprise me at all, though.Read more
In yesterday’s article I detailed some interesting results from the latest Microsoft Security Intelligence Report from the Key Findings Summary. I’ve now made it through several more sections and wish to highlight some more interesting data.Read more
