Google Alert - Vulnerabilities

=== News - 9 new results for [Vulnerabilities] ===

Oracle's emergency Java patch blocks zero-day exploits, researchers confirm
Computerworld
"If we assume that they heard about [the vulnerabilities] the same time
they went public, then getting a patch out in four days was lightning
quick," said Beardsley. "And if the rumor is true that they've had it for
several months, it's still pretty ...
<http://www.computerworld.com/s/article/9230786/Oracle_s_emergency_Java_patch_blocks_zero_day_exploits_researchers_confirm>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.computerworld.com/s/article/9230786/Oracle_s_emergency_Java_patch_blocks_zero_day_exploits_researchers_confirm&hl=en&geo=us>

Laptop Fingerprint Readers Vulnerable To Password Hacks
InformationWeek
To mitigate the information security vulnerability, she advised anyone with
a laptop that has UPEK Protector Suite installed to ensure that the
"Windows logon feature" in the software is disabled for all accounts on the
machine, which should then clear ...
<http://www.informationweek.com/security/vulnerabilities/laptop-fingerprint-readers-vulnerable-to/240006528>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.informationweek.com/security/vulnerabilities/laptop-fingerprint-readers-vulnerable-to/240006528&hl=en&geo=us>

Secunia Launches Corporate Software Inspector 6.0
Dark Reading
Copenhagen, Denmark – August 30, 2012 - Secunia, the leading provider of
IT security solutions that enable businesses and private individuals to
manage and control vulnerability threats, today announced the general
availability of the next generation ...
<http://www.darkreading.com/vulnerability-management/167901026/security/news/240006533/secunia-launches-corporate-software-inspector-6-0.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.darkreading.com/vulnerability-management/167901026/security/news/240006533/secunia-launches-corporate-software-inspector-6-0.html&hl=en&geo=us>

Java zero-days take SIX MONTHS to patch? SRSLY, Oracle?
Computerworld (blog)
The critical Java vulnerabilities that have security experts cautioning
users to disable Java...Oracle has known about them for months. ... Oracle
very likely could have made patches available...months ago. Instead, it
stuck to its roadmap. As a result ...
<http://blogs.computerworld.com/malware-and-vulnerabilities/20917/java-zero-days-take-six-months-patch-srsly-oracle-itbwcw>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://blogs.computerworld.com/malware-and-vulnerabilities/20917/java-zero-days-take-six-months-patch-srsly-oracle-itbwcw&hl=en&geo=us>

Oracle Issues Security Alert For Severe Java Vulnerability That Gives ...
TechCrunch
The vulnerability means that attackers can access a user's data without the
need for a user name or password. Reading between the lines here and it
appears that victims could fall prey to attackers who could turn the user's
system into a bot for other ...
<http://techcrunch.com/2012/08/30/oracle-issues-security-alert-for-severe-java-vulnerability-that-gives-attackers-control-and-access-to-personal-data/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://techcrunch.com/2012/08/30/oracle-issues-security-alert-for-severe-java-vulnerability-that-gives-attackers-control-and-access-to-personal-data/&hl=en&geo=us>

Oracle issues Java security update fixing dangerous zero-day vulnerabilities
TechTarget
"Due to the severity of these vulnerabilities, the public disclosure of
technical details and the reported exploitation of CVE-2012-4681 'in the
wild,' Oracle strongly recommends that customers apply the updates provided
by this Security Alert as soon ...
<http://searchsecurity.techtarget.com/news/2240162489/Oracle-issues-Java-security-update-fixing-dangerous-zero-day-vulnerabilities>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://searchsecurity.techtarget.com/news/2240162489/Oracle-issues-Java-security-update-fixing-dangerous-zero-day-vulnerabilities&hl=en&geo=us>

Java Zero-Day Malware Attack: 6 Facts
InformationWeek
Attackers, apparently operating from China, chained the two vulnerabilities
together to defeat Java 7 security settings, allowing them to execute
arbitrary code on targeted PCs. But the exploit code has since been added
to attack toolkits and used in ...
<http://www.informationweek.com/security/attacks/java-zero-day-malware-attack-6-facts/240006535>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.informationweek.com/security/attacks/java-zero-day-malware-attack-6-facts/240006535&hl=en&geo=us>

Six Ways to Protect Against the New Actively Exploited Java Vulnerability
PCWorld
Most of the proposed solutions have drawbacks or are applicable only to
certain system configurations and environments. However, the hope is that
in the absence of an official patch from Oracle users will be able to use
one or a combination of them in ...
<http://www.pcworld.com/businesscenter/article/261562/six_ways_to_protect_against_the_new_actively_exploited_java_vulnerability.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.pcworld.com/businesscenter/article/261562/six_ways_to_protect_against_the_new_actively_exploited_java_vulnerability.html&hl=en&geo=us>

Firefox 15 fixes 16 vulnerabilities
Infosecurity Magazine
Mozilla has released version 14 of its Firefox browser with fixes for 15
vulnerabilities, including six critical flaws, and a number of
security-related features. Mozilla working on security fix for tab
thumbnail glitch in Firefox 13. A tab thumbnail ...
<http://www.infosecurity-magazine.com/view/27880/firefox-15-fixes-16-vulnerabilities>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.infosecurity-magazine.com/view/27880/firefox-15-fixes-16-vulnerabilities&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 9 new results for [Vulnerabilities] ===

Oracle knew about zero-day Java vulnerabilities for months, researcher says
Computerworld
While both of those vulnerabilities, one in the ClassFinder class and one
in the MethodFinder class, were found and reported by Security Explorations
in April, the proof-of-concept exploits supplied by the company to Oracle
combined them with other ...
<http://www.computerworld.com/s/article/9230747/Oracle_knew_about_zero_day_Java_vulnerabilities_for_months_researcher_says>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.computerworld.com/s/article/9230747/Oracle_knew_about_zero_day_Java_vulnerabilities_for_months_researcher_says&hl=en&geo=us>

Oracle knew about currently exploited Java vulnerabilities for months ...
InfoWorld
Oracle knew since April about the existence of the two unpatched Java 7
vulnerabilities that are currently being exploited in malware attacks,
according to Adam Gowdiak, the founder and CEO of Polish security firm
Security Explorations. Security ...
<http://www.infoworld.com/d/security/oracle-knew-about-currently-exploited-java-vulnerabilities-months-researcher-says-201294>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.infoworld.com/d/security/oracle-knew-about-currently-exploited-java-vulnerabilities-months-researcher-says-201294&hl=en&geo=us>

Java Zero Day Attack: Second Bug Found
InformationWeek
The discovery of the Java 7 vulnerabilities has led numerous security
experts to recommend that enterprises disable Java in browsers. US-CERT
Tuesday released a security alert noting that "disabling the Java browser
plug-in may prevent a malicious ...
<http://www.informationweek.com/security/vulnerabilities/java-zero-day-attack-second-bug-found/240006431>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.informationweek.com/security/vulnerabilities/java-zero-day-attack-second-bug-found/240006431&hl=en&geo=us>

Hurricane Isaac Highlights Vulnerabilities in the Caribbean
Inter Press Service
HAVANA, Aug 30 2012 (IPS) - The impact of Hurricane Isaac as it made its
way through the Caribbean region highlighted both the fragility of some
countries in the face of extreme meteorological events, which are expected
to become more and more intense, ...
<http://www.ipsnews.net/2012/08/hurricane-isaac-highlights-vulnerabilities-in-the-caribbean/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.ipsnews.net/2012/08/hurricane-isaac-highlights-vulnerabilities-in-the-caribbean/&hl=en&geo=us>

Firefox and Thunderbird 15 fix several security vulnerabilities
The H
Following the release of version 15 of Firefox and Thunderbird, Mozilla has
detailed the security vulnerabilities that have been fixed in both
products. The fixes include seven critical vulnerabilities in Firefox, five
of which are also present in ...
<http://www.h-online.com/security/news/item/Firefox-and-Thunderbird-15-fix-several-security-vulnerabilities-1678259.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.h-online.com/security/news/item/Firefox-and-Thunderbird-15-fix-several-security-vulnerabilities-1678259.html&hl=en&geo=us>

Six ways to protect against the new actively exploited Java vulnerability
Techworld.com
Security researchers have proposed several methods for users to protect
their computers from ongoing attacks that target a new and
yet-to-be-patched vulnerability in all versions of Java Runtime Environment
7. Most of the proposed solutions have ...
<http://features.techworld.com/security/3378335/six-ways-protect-against-new-actively-exploited-java-vulnerability/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://features.techworld.com/security/3378335/six-ways-protect-against-new-actively-exploited-java-vulnerability/&hl=en&geo=us>

New 'Reliable' Java Attack Spreading Fast, Uses Two Zero-Day Bugs
Dark Reading
Initial reports were that the exploit was based on a single zero-day
vulnerability in Java, but Immunity researcher Esteban Guillardoy dug
deeper and discovered that it's actually using two previously unknown flaws
in Java JDK/JRE 7 through Java JDK ...
<http://www.darkreading.com/vulnerability-management/167901026/security/attacks-breaches/240006469/new-reliable-java-attack-spreading-fast-uses-two-zero-day-bugs.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.darkreading.com/vulnerability-management/167901026/security/attacks-breaches/240006469/new-reliable-java-attack-spreading-fast-uses-two-zero-day-bugs.html&hl=en&geo=us>

Java exploit impacts two vulnerabilities, as reports claim it is included
in ...
SC Magazine UK
The reported zero-day exploit in Java impacts two unpatched vulnerabilities
in Java 7 and has been added to the Blackhole exploit kit. Research by
penetration testing company Immunity said that the exploits are taking
advantage of two unpatched ...
<http://www.scmagazineuk.com/java-exploit-impacts-two-vulnerabilities-as-reports-claim-it-is-included-in-the-blackhole-exploit-kit/article/256556/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.scmagazineuk.com/java-exploit-impacts-two-vulnerabilities-as-reports-claim-it-is-included-in-the-blackhole-exploit-kit/article/256556/&hl=en&geo=us>

Java Flaw Puts Millions Of Windows And Mac Users At Risk
Forbes
Note: If you're not interested in reading about security vulnerabilities
and just want to know what to do to be safe, jump to the last paragraph.
Soon after this latest Java vulnerability came to light researchers went on
to create what's known as ...
<http://www.forbes.com/sites/adriankingsleyhughes/2012/08/29/java-flaw-puts-millions-of-windows-and-mac-users-at-risk/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.forbes.com/sites/adriankingsleyhughes/2012/08/29/java-flaw-puts-millions-of-windows-and-mac-users-at-risk/&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 10 new results for [Vulnerabilities] ===

Unpatched Java Vulnerability Exploited in Blackhole-based Attacks
PCWorld
Attacks targeting an unpatched vulnerability in the latest versions of Java
7 have become widespread after an exploit for the new flaw was integrated
into the popular Blackhole attack toolkit, according to security
researchers from antivirus vendor ...
<http://www.pcworld.com/businesscenter/article/261573/unpatched_java_vulnerability_exploited_in_blackholebased_attacks.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.pcworld.com/businesscenter/article/261573/unpatched_java_vulnerability_exploited_in_blackholebased_attacks.html&hl=en&geo=us>

Unpatched Java vulnerability exploited in Blackhole-based attacks
ITworld.com
August 28, 2012, 7:31 PM — Attacks targeting an unpatched vulnerability
in the latest versions of Java 7 have become widespread after an exploit
for the new flaw was integrated into the popular Blackhole attack toolkit,
according to security ...
<http://www.itworld.com/security/292054/unpatched-java-vulnerability-exploited-blackhole-based-attacks>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.itworld.com/security/292054/unpatched-java-vulnerability-exploited-blackhole-based-attacks&hl=en&geo=us>

Newly-Discovered Java 7 Security Vulnerability Poses Risks to Macs
Mac Rumors
News of the vulnerability (CVE-2012-4681) surfaced late last week in a
somewhat sparse blog post by FireEye, which said the exploit seemed to work
against the latest version of Java 7, which is version 1.7, Update 6. This
morning, researchers Andre' M.
<http://www.macrumors.com/2012/08/28/newly-discovered-java-7-security-vulnerability-poses-risks-to-macs/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.macrumors.com/2012/08/28/newly-discovered-java-7-security-vulnerability-poses-risks-to-macs/&hl=en&geo=us>

Unpatched Java vulnerability exploited in targeted attacks, researchers say
CSO
August 27, 2012 — IDG News Service — Attackers are exploiting a new and
unpatched vulnerability that affects the latest version of Java -- Java 7
Update 6 -- in order to infect computers with malware, according to
researchers from security vendor ...
<http://www.csoonline.com/article/714933/unpatched-java-vulnerability-exploited-in-targeted-attacks-researchers-say>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.csoonline.com/article/714933/unpatched-java-vulnerability-exploited-in-targeted-attacks-researchers-say&hl=en&geo=us>

Six Ways to Protect Against the New Actively Exploited Java Vulnerability
CIO
"Click to play" blocks the automatic exploitation of this vulnerability,
but does not prevent users from manually allowing malicious applets to
execute when prompted to take a decision about them. Therefore, the task of
assessing the risk ultimately ...
<http://www.cio.com/article/714970/Six_Ways_to_Protect_Against_the_New_Actively_Exploited_Java_Vulnerability>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.cio.com/article/714970/Six_Ways_to_Protect_Against_the_New_Actively_Exploited_Java_Vulnerability&hl=en&geo=us>

...Forum moves against online vulnerability
The Guardian Nigeria
People do not understand vulnerabilities, specific threats and reporting is
also a problem. To check this menace, some stakeholders are convening
National Information Security Conference to design strategies to ensure
greater cyber security. The forum ...
<http://www.ngrguardiannews.com/index.php?option=com_content&view=article&id=97005:-forum-moves-against-online-vulnerability&catid=55:compulife&Itemid=391>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.ngrguardiannews.com/index.php%3Foption%3Dcom_content%26view%3Darticle%26id%3D97005:-forum-moves-against-online-vulnerability%26catid%3D55:compulife%26Itemid%3D391&hl=en&geo=us>

Hotel Keycard Lock Hacker Questions Firmware Fix
InformationWeek
"This isn't something complex; the vulnerability itself is very, very
simple," Brocious said in an interview at Black Hat. "The only thing
preventing people from finding this ... was that [Onity] used simple
obfuscation. And it's very possible that ...
<http://www.informationweek.com/security/management/hotel-keycard-lock-hacker-questions-firm/240006397>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.informationweek.com/security/management/hotel-keycard-lock-hacker-questions-firm/240006397&hl=en&geo=us>

Java Zero-Day Attack Could Hit Enterprises Hard
InformationWeek
The exploited vulnerability exists in all versions of Java 7, and can be
used to exploit not just Windows, but also Apple OS X and Linux systems. "I
have tested the following operating systems: Windows7, Ubuntu 12.04, OSX
10.8.1 [and] I have tested the ...
<http://www.informationweek.com/security/attacks/java-zero-day-attack-could-hit-enterpris/240006341>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.informationweek.com/security/attacks/java-zero-day-attack-could-hit-enterpris/240006341&hl=en&geo=us>

Indusface Crosses 500 Customers Milestone
Moneylife
Enterprises require a combination of daily automated scanning for technical
vulnerabilities and manual scanning for logical vulnerabilities to ensure
total protection for all their applications online. According to Gartner,
"Automation is not always ...
<http://www.moneylife.in/business-wire-news/indusface-crosses-500-customers-milestone/32469.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.moneylife.in/business-wire-news/indusface-crosses-500-customers-milestone/32469.html&hl=en&geo=us>

Unpatched Java vulnerability exploited in targeted attacks
Consumer Tech
... to researchers from security vendor FireEye. So far, the vulnerability
has been exploited in limited targeted attacks, FireEye's senior staff
scientist Atif Mushtaq said in a blog post. "Most of the recent Java
run-time environments i.e., JRE 1.7x ...
<http://www.techcentral.ie/19714/unpatched-java-vulnerability-exploited-in-targeted-attacks>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.techcentral.ie/19714/unpatched-java-vulnerability-exploited-in-targeted-attacks&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 6 new results for [Vulnerabilities] ===

Unpatched Java Vulnerability Exploited in Targeted Attacks, Researchers Say
PCWorld (blog)
Attackers are exploiting a new and unpatched vulnerability that affects the
latest version of Java -- Java 7 Update 6 -- in order to infect computers
with malware, according to researchers from security vendor FireEye.
Similar Articles: Java Patch ...
<http://www.pcworld.com/businesscenter/article/261484/unpatched_java_vulnerability_exploited_in_targeted_attacks_researchers_say.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.pcworld.com/businesscenter/article/261484/unpatched_java_vulnerability_exploited_in_targeted_attacks_researchers_say.html&hl=en&geo=us>

Java zero day vulnerability actively used in targeted attacks
ZDNet
Instead, they would stick to using outdated and already patched
vulnerabilities taking into consideration the fact that end and corporate
users aren't patching their third-party software and browser plugins. Find
out more about Dancho Danchev at his ...
<http://www.zdnet.com/java-zero-day-vulnerability-actively-used-in-targeted-attacks-7000003233/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.zdnet.com/java-zero-day-vulnerability-actively-used-in-targeted-attacks-7000003233/&hl=en&geo=us>

Java Zero-Day Attack Threats Widening, Security Experts Warn
eWeek
The failed attack, which led to the discovery of the vulnerability,
attempted to install Poison Ivy, a well-known rootkit, but also one that
has been used in some nation-state-related attacks. The attack emanated
from servers in China, but experts are ...
<http://www.eweek.com/c/a/Security/Java-ZeroDay-Attack-Threats-Widening-Security-Experts-Warn-772254/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.eweek.com/c/a/Security/Java-ZeroDay-Attack-Threats-Widening-Security-Experts-Warn-772254/&hl=en&geo=us>

Users urged to disable Java as new exploit emerges
Register
A new browser-based exploit for a Java vulnerability that allows attackers
to execute arbitrary code on client systems has been spotted in the wild
– and because of Oracle's Java patch schedule, it may be some time before
a fix becomes widely available.
<http://www.theregister.co.uk/2012/08/27/disable_java_to_block_exploit/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.theregister.co.uk/2012/08/27/disable_java_to_block_exploit/&hl=en&geo=us>

Denim Group Partners With Veracode to Help Enterprises Scale Software ...
Equities.com
By combining Denim Group's expertise in secure application developmen t and
processes with Veracode's application scanning program, Denim Group and
Veracode provide an end-to-end capability to identify and resolve
application-level vulnerabilities in ...
<http://www.equities.com/news/headline-story?dt=2012-08-27&val=417688&cat=tech>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.equities.com/news/headline-story%3Fdt%3D2012-08-27%26val%3D417688%26cat%3Dtech&hl=en&geo=us>

New Java Zero Day Being Used in Targeted Attacks
Threatpost (blog)
The vulnerability is present in Java 7 and doesn't affect earlier versions,
researchers said. There is proof-of-concept exploit code circulating for
the bug, and the folks at Metasploit also have developed a module that
exploits the flaw. They said ...
<http://threatpost.com/en_us/blogs/new-java-zero-day-being-used-targeted-attacks-082712>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://threatpost.com/en_us/blogs/new-java-zero-day-being-used-targeted-attacks-082712&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 2 new results for [Vulnerabilities] ===

2003 blackout shows system vulnerabilities
Delmarva Daily Times
DOVER -- The nation's worst blackout began Aug. 14, 2003, when a stressed,
high-voltage power line in northeastern Ohio sagged into a tree in late
summer afternoon heat. Instantly, tens of thousands of volts surged from
metal to wood, activating an ...
<http://www.delmarvanow.com/article/20120826/NEWS01/208260306/2003-blackout-shows-system-vulnerabilities>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.delmarvanow.com/article/20120826/NEWS01/208260306/2003-blackout-shows-system-vulnerabilities&hl=en&geo=us>

Adobe Releases Second Security Fix For Flash Player Vulnerabilities
Social Barrel
The vulnerabilities consist of memory corruption and integer overflow
errors that could give attackers the ability to execute code remotely on an
exploited target system.
adobe-releases-second-security-fix-for-flash-player-. Another vulnerability
...
<http://socialbarrel.com/adobe-releases-second-security-fix-for-flash-player-vulnerabilities/42512/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://socialbarrel.com/adobe-releases-second-security-fix-for-flash-player-vulnerabilities/42512/&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 7 new results for [Vulnerabilities] ===

TEXT-Fitch:Vietnam banks' vulnerabilities surface; rtg risk rises
Reuters
(The following statement was released by the rating agency). Aug 24 - Fitch
Ratings says recent events in the Vietnamese banking industry highlight its
vulnerabilities to shocks and could put financial stability at risk,
increasing the potential for ...
<http://in.reuters.com/article/2012/08/24/idINWLA231720120824>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://in.reuters.com/article/2012/08/24/idINWLA231720120824&hl=en&geo=us>

SCAN Health settlement points up Medicare's vulnerabilities
Los Angeles Times
A multimillion-dollar settlement reached this week over alleged
overpayments to a Medicare health plan in Long Beach highlights how
vulnerable Medicare is to potential abuse even as changes are underway to
shore up the massive government program.
<http://www.latimes.com/business/la-fi-medicare-loss-risks-20120825,0,1306230.story>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.latimes.com/business/la-fi-medicare-loss-risks-20120825,0,1306230.story&hl=en&geo=us>

Vigorous exercise associated with mental illness vulnerability
News-Medical.net
By Mark Cowen, Senior medwireNews Reporter. Contrary to expectations,
engagement in vigorous exercise is positively associated with the incidence
and prevalence of psychiatric disorders, particularly bipolar II disorder
and alcohol dependence, US ...
<http://www.news-medical.net/news/20120824/Vigorous-exercise-associated-with-mental-illness-vulnerability.aspx>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.news-medical.net/news/20120824/Vigorous-exercise-associated-with-mental-illness-vulnerability.aspx&hl=en&geo=us>

OT, meet IT (please)
GCN.com
At the same time such systems expose the apps to a host of vulnerabilities
that hackers and criminals are intimately familiar with. Administrators are
finding it is becoming increasingly difficult to isolate any IP network
from the Internet. One ...
<http://gcn.com/articles/2012/08/24/industrial-control-systems-ot-vulnerabilities.aspx>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://gcn.com/articles/2012/08/24/industrial-control-systems-ot-vulnerabilities.aspx&hl=en&geo=us>

TS Isaac: Camagüey Readys to Reduce Vulnerabilities
Radio Cadena Agramonet
In order to reduce vulnerabilities, he added that the province started to
pump water to empower its fresh water capacity and there are 62 places
where rainfall is being monitored. In addition, he said that a special
attention will be paid to micro-dams ...
<http://www.cadenagramonte.cu/english/index.php?option=com_content&view=article&id=12075:ts-isaac-camagueey-readys-to-reduce-vulnerabilities&catid=1:camaguey&Itemid=14>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.cadenagramonte.cu/english/index.php%3Foption%3Dcom_content%26view%3Darticle%26id%3D12075:ts-isaac-camagueey-readys-to-reduce-vulnerabilities%26catid%3D1:camaguey%26Itemid%3D14&hl=en&geo=us>

Browser Updates Fix Bugs, Weaknesses
PCWorld
Google released Chrome 21, patching a number of dangerous
PDF-viewer-related bugs. Mozilla tackled more vulnerabilities than usual,
including an interesting drag-and-drop bug, and Apple released Safari 6.0,
sealing multiple potential private ...
<http://www.pcworld.com/article/261414/browser_updates_fix_bugs_weaknesses.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.pcworld.com/article/261414/browser_updates_fix_bugs_weaknesses.html&hl=en&geo=us>

Tony Nicklinson: Can Law Change on Assisted Dying and Protect Vulnerable ...
IBTimes.co.uk
In this post, I attempt to clarify what the vulnerability objection is,
that is, what concerns it raises against the legalisation of assisted
dying, and who the 'vulnerable' are. This post also presents an overview of
the safeguards designed to ensure ...
<http://www.ibtimes.co.uk/articles/377200/20120824/tony-nicklinson-assisted-dying-law-change.htm>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.ibtimes.co.uk/articles/377200/20120824/tony-nicklinson-assisted-dying-law-change.htm&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 9 new results for [Vulnerabilities] ===

Suing software developers over vulnerabilities is a bad move
ZDNet
No matter how much money we lose because hackers are able to exploit
vulnerabilities in software, it's probably not worth using a legal stick on
software companies to force them to write better code. TechRepublic wrote
an article quoting an academic ...
<http://www.zdnet.com/au/suing-software-developers-over-vulnerabilities-is-a-bad-move-7000003117/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.zdnet.com/au/suing-software-developers-over-vulnerabilities-is-a-bad-move-7000003117/&hl=en&geo=us>

Smart Grid CyberSecurity: DHS Reports Vulnerability in RuggedCom's Software
Greentech Media
In December, ICS-CERT notified the industry of vulnerabilities in remote
terminal units (RTUs) built by Schneider Electric's Telvent, which one
security expert told us may have cost utilities dearly in replaced
equipment. It's all part of the process ...
<http://www.greentechmedia.com/articles/read/smart-grid-cybersecurity-dhs-reports-vulnerability-in-ruggedcoms-software/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.greentechmedia.com/articles/read/smart-grid-cybersecurity-dhs-reports-vulnerability-in-ruggedcoms-software/&hl=en&geo=us>

Adobe Flash Player Bug Spreading Via Word Documents in Emails
eWeek
Four of the vulnerabilities are memory corruption issues, while the
remaining two are an integer overflow bug and a cross-domain information
leak vulnerability. According to Adobe, the updates address issues that
could cause a crash and potentially ...
<http://www.eweek.com/c/a/Security/Adobe-Flash-Player-Bug-Spreading-Via-Word-Documents-in-Emails-715689/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.eweek.com/c/a/Security/Adobe-Flash-Player-Bug-Spreading-Via-Word-Documents-in-Emails-715689/&hl=en&geo=us>

iPhone SMS Faces Vulnerability
Mobile bloom News
Recently, a vulnerability in the SMS service on the iPhone was revealed and
brought to the attention of Apple. The flaw in the service allows users to
exploit the messaging facility to send an SMS with the cover of a false
number and this opens up the ...
<http://www.mobilebloom.com/iphone-sms-faces-vulnerability-2/2220373/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.mobilebloom.com/iphone-sms-faces-vulnerability-2/2220373/&hl=en&geo=us>

Changes in DNA methylation might be linked to evolution of humans ...
News-Medical.net
Chimpanzees rarely get cancer, or a variety of other diseases that commonly
arise in humans, but their genomic DNA sequence is nearly identical to
ours. So, what's their secret? Researchers reporting in the September issue
of the American Journal of ...
<http://www.news-medical.net/news/20120824/Changes-in-DNA-methylation-might-be-linked-to-evolution-of-humans-vulnerability-to-diseases.aspx>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.news-medical.net/news/20120824/Changes-in-DNA-methylation-might-be-linked-to-evolution-of-humans-vulnerability-to-diseases.aspx&hl=en&geo=us>

Arizona review finds state computer deficiencies
MyFox Phoenix
PHOENIX (AP) - Auditors report finding numerous problems and shortcomings
that create vulnerabilities for services provided by the main computer
office of Arizona's state government. The Data Center of the Department of
Administration provides support ...
<http://www.myfoxphoenix.com/story/19356206/arizona-review-finds-state-computer-deficiencies>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.myfoxphoenix.com/story/19356206/arizona-review-finds-state-computer-deficiencies&hl=en&geo=us>

International Student Competition 'CyberSecurity For The Next Generation ...
Dark Reading
Woburn, MA – August 22, 2012 – Kaspersky Lab, a leading developer of
secure content and threat management solutions, announces the start of the
regional stage of its international student competition 'CyberSecurity for
the Next Generation 2013'. The ...
<http://www.darkreading.com/vulnerability-management/167901026/security/news/240006140/international-student-competition-cybersecurity-for-the-next-generation-kicks-off-in-north-america-with-call-for-papers.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.darkreading.com/vulnerability-management/167901026/security/news/240006140/international-student-competition-cybersecurity-for-the-next-generation-kicks-off-in-north-america-with-call-for-papers.html&hl=en&geo=us>

nCircle Named to Inc.500|5000 for Sixth Consecutive Year
Equities.com
nCircle's solutions combine the broadest discovery and deepest assessment
of networks and their operating systems, applications, vulnerabilities and
configurations with advanced analytics to help enterprises reduce security
risk and achieve compliance.
<http://www.equities.com/news/headline-story?dt=2012-08-23&val=408871&cat=hcare>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.equities.com/news/headline-story%3Fdt%3D2012-08-23%26val%3D408871%26cat%3Dhcare&hl=en&geo=us>

Stick to limited IPv6 deployments, businesses warned
ZDNet
Heuse said outstanding vulnerabilities in IPv6 provide vectors for
man-in-the-middle attacks, password sniffing and packet tampering. However,
the protocol's uptake by users — particularly in Asia — mean there is
no alternative to rolling it out for ...
<http://www.zdnet.com/stick-to-limited-ipv6-deployments-businesses-warned-7000003055/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.zdnet.com/stick-to-limited-ipv6-deployments-businesses-warned-7000003055/&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 8 new results for [Vulnerabilities] ===

Siemens works to fix vulnerability in critical control networks
Computerworld
Computerworld - Siemens is working on a fix for a remotely exploitable
vulnerability in network routers and switches from subsidiary RuggedCom
that are widely deployed in refineries, power substations and other
critical infrastructure networks in the U ...
<http://www.computerworld.com/s/article/9230519/Siemens_works_to_fix_vulnerability_in_critical_control_networks>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.computerworld.com/s/article/9230519/Siemens_works_to_fix_vulnerability_in_critical_control_networks&hl=en&geo=us>

DHS investigates reported vulnerabilities in Siemens RuggedCom Tech
CSO (blog)
DHS investigates reported vulnerabilities in Siemens RuggedCom Tech. DHS is
taking the findings of researcher Justin W. Clarke seriously, investigating
his claim that Siemens RuggedCom products could be exploited to attack
critical infrastructure.
<http://blogs.csoonline.com/critical-infrastructure/2324/dhs-investigates-reported-vulnerabilities-siemens-ruggedcom-tech>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://blogs.csoonline.com/critical-infrastructure/2324/dhs-investigates-reported-vulnerabilities-siemens-ruggedcom-tech&hl=en&geo=us>

Adobe releases patches for critical Flash, AIR vulnerabilities
bit-tech.net
Affecting users of Windows, Macintosh, Linux, Chrome OS and Android, the
flaws include four memory corruption vulnerabilities, an integer overflow
vulnerability, and a cross-domain information leakage issue. The result is
a storm of flaws which can ...
<http://www.bit-tech.net/news/bits/2012/08/22/adobe-flash-air-vulns/1>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.bit-tech.net/news/bits/2012/08/22/adobe-flash-air-vulns/1&hl=en&geo=us>

EPA's widespread IT vulnerabilities stem from insufficient security
plans ...
FierceGovernmentIT
Security control weaknesses "pervade" the Environmental Protection Agency's
networks due to the agency's inability to fully document and implement a
comprehensive information security program, finds the Government
Accountability Office. The agency ...
<http://www.fiercegovernmentit.com/story/epas-widespread-it-vulnerabilities-stem-insufficient-security-plans-says-ga/2012-08-22>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.fiercegovernmentit.com/story/epas-widespread-it-vulnerabilities-stem-insufficient-security-plans-says-ga/2012-08-22&hl=en&geo=us>

ICS-CERT issues alert on power plant control system
Government Security News
The vulnerability in the Rugged Operating System, made by Siemens
subsidiary RuggedCom, was found by researcher Justin Clarke of Cylance
Inc., according to an Aug. 21 bulletin from DHS' Industrial Control
Systems, Cyber Emergency Response Team ...
<http://www.gsnmagazine.com/node/27063?c=cyber_security>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.gsnmagazine.com/node/27063%3Fc%3Dcyber_security&hl=en&geo=us>

Shanghai vulnerable to extreme flooding – study
EcoSeed
In this new study, nine cities built on river deltas around the world were
assessed to calculate their flood vulnerability. In addition to Shanghai
these were, Dhaka. Bangladesh; Casablanca, Morocco; Calcutta, India; Buenos
Aires, Argentina; Osaka ...
<http://www.ecoseed.org/politics/15469-shanghai-vulnerable-to-extreme-flooding-study>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.ecoseed.org/politics/15469-shanghai-vulnerable-to-extreme-flooding-study&hl=en&geo=us>

Adobe releases six critical patches for Flash, AIR
Macworld UK
The patches address four memory corruption vulnerabilities --
CVE-2012-4163, CVE-2012-4164, CVE-2012-4165 and CVE-2012-4166 -- and an
integer overflow vulnerability, CVE-2012-4167. Also fixed is a cross-domain
information leak vulnerability, ...
<http://www.macworld.co.uk/macsoftware/news/?newsid=3377279&pagtype=allchandate>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.macworld.co.uk/macsoftware/news/%3Fnewsid%3D3377279%26pagtype%3Dallchandate&hl=en&geo=us>

Adobe Flash Player update patches six critical holes
The H
... problems exist in Flash Player 11.3.300.271 and earlier versions on
Windows, Macintosh and Linux, and in the Android versions 11.1.115.11
(Android 4.0) and 11.1.111.10 (Android 3.x and 2.x) and earlier. All six
vulnerabilities were rated critical ...
<http://www.h-online.com/security/news/item/Adobe-Flash-Player-update-patches-six-critical-holes-1672359.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.h-online.com/security/news/item/Adobe-Flash-Player-update-patches-six-critical-holes-1672359.html&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 7 new results for [Vulnerabilities] ===

Flash Player vulnerable again a week after patching
ZDNet
Flash Player vulnerable again a week after patching. Summary: Despite
releasing a patch to mitigate vulnerabilities in Adobe Flash Player last
week, the company has had to release another patch today, in response to
six new vulnerabilities. Michael Lee ...
<http://www.zdnet.com/au/flash-player-vulnerable-again-a-week-after-patching-7000002965/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.zdnet.com/au/flash-player-vulnerable-again-a-week-after-patching-7000002965/&hl=en&geo=us>

Samsung tailors security for enterprise mobility push
ZDNet
One year on, it plans to dispel security concerns over the influx of
consumer-grade devices entering the workplace and vulnerabilities on the
Android platform by customizing their security offerings according to
industry verticals and work processes ...
<http://www.zdnet.com/samsung-tailors-security-for-enterprise-mobility-push-7000002928/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.zdnet.com/samsung-tailors-security-for-enterprise-mobility-push-7000002928/&hl=en&geo=us>

5 Systems You're Forgetting To Patch
Dark Reading
But even as that progress has been made, there are a whole rag-tag class of
systems—many of them extremely critical—that frequently run unpatched
and ridden with vulnerabilities. Some of them lay exposed because vendors
are slow putting out patches, ...
<http://www.darkreading.com/vulnerability-management/167901026/security/news/240005971/5-systems-you-re-forgetting-to-patch.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.darkreading.com/vulnerability-management/167901026/security/news/240005971/5-systems-you-re-forgetting-to-patch.html&hl=en&geo=us>

Hackers, FAA Disagree Over ADS-B Vulnerability
Aviation International News
The ADS-B system that is the cornerstone of the FAA's NextGen ATC
modernization plan is at risk of serious security breaches, according to
Brad Haines (aka RenderMan), a hacker and network security consultant who
is worried about ADS-B vulnerabilities.
<http://www.ainonline.com/aviation-news/ainalerts/2012-08-21/hackers-faa-disagree-over-ads-b-vulnerability>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.ainonline.com/aviation-news/ainalerts/2012-08-21/hackers-faa-disagree-over-ads-b-vulnerability&hl=en&geo=us>

Cenzic Forms Strategic Alliance with Checkmarx
Sacramento Bee
According to recent research, over 90% of websites are susceptible to
attack and hackers can easily exploit website vulnerabilities as has been
evidenced in recent password breaches, bank intrusions and the like. From
Cenzic's own research, the bulk of ...
<http://www.sacbee.com/2012/08/21/4743901/cenzic-forms-strategic-alliance.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.sacbee.com/2012/08/21/4743901/cenzic-forms-strategic-alliance.html&hl=en&geo=us>

Study Exposes Consumer Data Vulnerabilities
Vertical Systems Reseller (blog)
Study Exposes Consumer Data Vulnerabilities. For solution providers looking
to expand into the CRM security market, here's some interesting news. More
than 65 percent of businesses don't protect their customers' private data
from unauthorized employees ...
<http://vsr.edgl.com/reseller-news/Study-Exposes-Consumer-Data-Vulnerabilities81793?googleid=81793>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://vsr.edgl.com/reseller-news/Study-Exposes-Consumer-Data-Vulnerabilities81793%3Fgoogleid%3D81793&hl=en&geo=us>

Tesco to be investigated by the ICO
Infosecurity Magazine
The last week has seen multiple XSS vulnerabilities found almost anywhere
and everywhere on the internet, lending early weight to predictions for
2012. WordPress 3.3 has XSS vulnerability, say Indian researchers. Indian
researchers Aditya Modha and ...
<http://www.infosecurity-magazine.com/view/27702/tesco-to-be-investigated-by-the-ico>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.infosecurity-magazine.com/view/27702/tesco-to-be-investigated-by-the-ico&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 2 new results for [Vulnerabilities] ===

Don't Trust That Text Message: Tool Simplifies iOS SMS-Spoofing
Dark Reading
But the vulnerability isn't in the smartphone itself, says Errata Security
CTO David Maynor; rather, it's in the network transporting the SMS
messages. And there are already services available, such as SMSGang's Spoof
SMS Service, that provide spoofing ...
<http://www.darkreading.com/mobile-security/167901113/security/vulnerabilities/240005872/don-t-trust-that-text-message-tool-simplifies-ios-sms-spoofing.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.darkreading.com/mobile-security/167901113/security/vulnerabilities/240005872/don-t-trust-that-text-message-tool-simplifies-ios-sms-spoofing.html&hl=en&geo=us>

Researchers claim that Adobe failed to patch Reader vulnerabilities last
week
SC Magazine UK
Adobe missed dozens of vulnerabilities in Reader on last week's Patch
Tuesday, according to Google engineers who reported the flaws. Sixteen
vulnerabilities still affected the Windows and Mac OS X versions, while 31
critical and 'trivially exploitable ...
<http://www.scmagazineuk.com/researchers-claim-that-adobe-failed-to-patch-reader-vulnerabilities-last-week/article/255231/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.scmagazineuk.com/researchers-claim-that-adobe-failed-to-patch-reader-vulnerabilities-last-week/article/255231/&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 2 new results for [Vulnerabilities] ===

Mitzi Perdue: Credit cards present many vulnerabilities
Delmarva Daily Times
As useful as credit cards are, they come with a host of vulnerabilities.
We'll get to Moses's suggestions on how to protect yourself in a moment,
but first, here's another one of the vulnerabilities. Let's say there's a
teenager who wants to get his or ...
<http://www.delmarvanow.com/article/20120819/NEWS01/208190320/Mitzi-Perdue-Credit-cards-present-many-vulnerabilities>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.delmarvanow.com/article/20120819/NEWS01/208190320/Mitzi-Perdue-Credit-cards-present-many-vulnerabilities&hl=en&geo=us>

Newest Hacker Target: Larger Systems That Run Everything Else
Heritage.org (blog)
About a month ago, a pair of security researchers discovered
vulnerabilities in a popular online control system, the Niagara Framework
(NF). This vulnerability would have allowed hackers to breach the networks
using NF and steal passwords and user ...
<http://blog.heritage.org/2012/08/19/newest-hacker-target-larger-systems-that-run-everything-else/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://blog.heritage.org/2012/08/19/newest-hacker-target-larger-systems-that-run-everything-else/&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 1 new result for [Vulnerabilities] ===

We must move from vulnerability to preparedness
The News Journal
The political realm is the only place where there is an ongoing debate
whether climate change is real. There is a global consensus among climate
scientists and every peer reviewed scientific analysis reaches the same
conclusion: global temperatures are ...
<http://www.delawareonline.com/article/20120819/OPINION07/308190008/We-must-move-from-vulnerability-preparedness?odyssey=mod%7Cnewswell%7Ctext%7COpinion%7Cp>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.delawareonline.com/article/20120819/OPINION07/308190008/We-must-move-from-vulnerability-preparedness%3Fodyssey%3Dmod%257Cnewswell%257Ctext%257COpinion%257Cp&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 8 new results for [Vulnerabilities] ===

Google Ups Bug Bounties Amid Booming Exploit Market
InformationWeek
Google's base reward for a vulnerability disclosure is $500, but the
company says it typically pays out $1000 and even $10000 or more for
particularly impressive bug finds. Security researchers Arthur Gerkis and
Aki Helin are among those who have ...
<http://www.informationweek.com/security/management/google-ups-bug-bounties-amid-booming-exp/240005721>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.informationweek.com/security/management/google-ups-bug-bounties-amid-booming-exp/240005721&hl=en&geo=us>

Malware wars heat up: Shamoon steals, wipes and leaves PCs unbootable
Computerworld (blog)
"Why would someone invest time to prepare a campaign, send a
spear-phishing email with a malicious document attached and waste a 0-day
vulnerability in order to silently install a sophisticated malware?"
Seculert asked. But Symantec reported this ...
<http://blogs.computerworld.com/malware-and-vulnerabilities/20851/malware-wars-heat-shamoon-steals-wipes-and-leaves-pcs-unbootable>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://blogs.computerworld.com/malware-and-vulnerabilities/20851/malware-wars-heat-shamoon-steals-wipes-and-leaves-pcs-unbootable&hl=en&geo=us>

Antivirus Suites Struggle to Defend Against Recent Exploit-based Attacks
CIO
The firm looked at the ability of 13 antivirus suites to defend unpatched
systems against attacks exploiting vulnerabilities in Microsoft's XML Core
Services (CVE-2012-1889) and in Internet Explorer 8.0 (CVE-2012-1875), both
made public in June ...
<http://www.cio.com/article/714014/Antivirus_Suites_Struggle_to_Defend_Against_Recent_Exploit_based_Attacks>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.cio.com/article/714014/Antivirus_Suites_Struggle_to_Defend_Against_Recent_Exploit_based_Attacks&hl=en&geo=us>

Google Ups Ante for Chrome Bug Hunters
CIO Today
The Chromium Vulnerability Rewards Program continues to cover
vulnerabilities in Adobe Flash as well as other well-known software such as
the Linux kernel, various open-source libraries and daemons, X windows, and
so on. Bugs are an unpleasant fact of ...
<http://www.cio-today.com/story.xhtml?story_id=10100C7G083F>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.cio-today.com/story.xhtml%3Fstory_id%3D10100C7G083F&hl=en&geo=us>

Rapid7 Receives Highest Possible Rating of 'Strong Positive' in Leading ...
Virtual-Strategy Magazine
Nexpose proactively supports the entire vulnerability management lifecycle,
including discovery, assessment and mitigation of security threats,
including vulnerabilities, misconfigurations and malware kits. This gives
organizations immediate insight ...
<http://www.virtual-strategy.com/2012/08/17/rapid7-receives-highest-possible-rating-strong-positive-leading-analyst-firm%E2%80%99s-vulnerabil>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.virtual-strategy.com/2012/08/17/rapid7-receives-highest-possible-rating-strong-positive-leading-analyst-firm%25E2%2580%2599s-vulnerabil&hl=en&geo=us>

Google warning of missing Adobe Reader patches for Chrome
Techworld.com
Adobe released a new version of Reader on Tuesday that fixed about 20
vulnerabilities in the Mac and Windows versions of the product. Despite the
large number of flaws addressed in the patches, a number of serious
vulnerabilities remained untouched, ...
<http://news.techworld.com/applications/3376607/google-warning-of-missing-adobe-reader-patches-for-chrome/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://news.techworld.com/applications/3376607/google-warning-of-missing-adobe-reader-patches-for-chrome/&hl=en&geo=us>

As Bug Bounty Programs Mature, Still More Room For Growth
Threatpost (blog)
Google's recent announcements that the company is doubling some of the
rewards in its Chromium Vulnerability Reward Program and will also be
committing up to $2 million for another round of the Pwnium contest in a
couple of months brought a round of ...
<http://threatpost.com/en_us/blogs/bug-bounty-programs-mature-still-more-room-growth-081712>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://threatpost.com/en_us/blogs/bug-bounty-programs-mature-still-more-room-growth-081712&hl=en&geo=us>

Real-time monitoring now accomplished much more easily
Crain's Cleveland Business (blog)
You really need all this information to keep on top of vulnerabilities; you
just need to be able to look at it in such a way that what's most important
will be obvious so that you can take the needed steps to make your data
more secure. Note: A very ...
<http://www.crainscleveland.com/article/20120817/BLOGS05/308179999>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.crainscleveland.com/article/20120817/BLOGS05/308179999&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 8 new results for [Vulnerabilities] ===

Irene Showed Vulnerabilities And Value Of Mobile Home Parks
Vermont Public Radio
Every Irene flood survivor has their own story about when they first
realized this was no ordinary storm. For Red Gallagher, who lives at
Weston's mobile home park in Berlin, the moment came when he saw the Dog
River spread like a rising tide over the ...
<http://www.vpr.net/news_detail/95561/irene-showed-vulnerabilities-value-mobile-home-par/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.vpr.net/news_detail/95561/irene-showed-vulnerabilities-value-mobile-home-par/&hl=en&geo=us>

Google raises ante for next Chrome hacking contest to $2M
Computerworld
For what Google calls a "full Chrome exploit" -- one that successfully
hacks Chrome on Windows 7 using only vulnerabilities in Chrome itself --
Google will pay $60000 -- the same amount it handed out at the first
Pwnium. A partial exploit that uses one ...
<http://www.computerworld.com/s/article/9230338/Google_raises_ante_for_next_Chrome_hacking_contest_to_2M?taxonomyId=82>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.computerworld.com/s/article/9230338/Google_raises_ante_for_next_Chrome_hacking_contest_to_2M%3FtaxonomyId%3D82&hl=en&geo=us>

Paydirt: Vulnerabilities found to foil popular DDoS toolkit
SC Magazine Australia
Thanks to a string of simple coding vulnerabilities, it was possible to
access the C&C database and server-side configuration files with open
source pen testing tools, anti-DDoS vendor Prolexic said. "With this
information, it is possible to access the ...
<http://www.scmagazine.com.au/News/312341,paydirt-vulnerabilities-found-to-foil-popular-ddos-toolkit.aspx>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.scmagazine.com.au/News/312341,paydirt-vulnerabilities-found-to-foil-popular-ddos-toolkit.aspx&hl=en&geo=us>

Google researchers expose unpatched flaws in Adobe Reader
InfoWorld
Two Google security researchers have accused Adobe of failing to fix
various reported vulnerabilities in Adobe Reader in a timely manner and are
using the delay as justification to publicize details behind the security
holes. The duo also has ...
<http://www.infoworld.com/t/application-security/google-researchers-expose-unpatched-flaws-in-adobe-reader-200280>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.infoworld.com/t/application-security/google-researchers-expose-unpatched-flaws-in-adobe-reader-200280&hl=en&geo=us>

Google Boosts Chromium Vulnerability Rewards
eSecurity Planet
Google will add the bonuses to the base payments -- which range from $500
to $3133 -- for bugs that are 'particularly exploitable,' found in the more
bug-free sections of Chrome's code, and for vulnerabilities that affect
more than just the browser ...
<http://www.esecurityplanet.com/browser-security/google-boosts-chromium-vulnerability-rewards.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.esecurityplanet.com/browser-security/google-boosts-chromium-vulnerability-rewards.html&hl=en&geo=us>

Tridium patches control systems bug after a year
Register
The announcement of the vulnerabilities comes nearly synchronously with the
announcement of the patch – and ounce again highlights the slack security
attitudes endemic in the industrial control segment. According to the
researchers that turned up the ...
<http://www.theregister.co.uk/2012/08/16/tridium_issues_patch/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.theregister.co.uk/2012/08/16/tridium_issues_patch/&hl=en&geo=us>

CYCLOPS Gene Points To Vulnerability in Cancer
CSICON
... including the way that individual genes express themselves in cancer's
basic mechanism. This will allow us to understand cancer's vulnerabilities
from a genetic level. More information can be found at the Dana-Farber
Cancer Institute. (via Science ...
<http://www.csicon.org/cyclops-gene-points-to-vulnerability-in-cancer/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.csicon.org/cyclops-gene-points-to-vulnerability-in-cancer/&hl=en&geo=us>

Antivirus suites struggle to defend against recent exploit-based attacks
Consumer Tech
Tech4Biz | 17 Aug 2012 : Many antivirus suites are incapable of effectively
blocking malware attacks against two recent and serious Microsoft
vulnerabilities despite the fact that real exploits have been circulating
since June, testing organisation NSS ...
<http://www.techcentral.ie/19638/antivirus-suites-struggle-to-defend-against-recent-exploit-based-attacks>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.techcentral.ie/19638/antivirus-suites-struggle-to-defend-against-recent-exploit-based-attacks&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 10 new results for [Vulnerabilities] ===

Serious Vulnerabilities Remain in Reader After Huge Patch Release ...
Threatpost (blog)
Adobe patched a huge number of flaws in its Reader software on Windows and
Mac OS X on Tuesday, many of which were reported to the company by members
of Google's internal security team, which had set up a long-term fuzzing
program to look for ...
<http://threatpost.com/en_us/blogs/serious-vulnerabilities-remain-reader-after-huge-patch-release-researchers-say-081512>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://threatpost.com/en_us/blogs/serious-vulnerabilities-remain-reader-after-huge-patch-release-researchers-say-081512&hl=en&geo=us>

Security vendor exposes vulnerabilities in DDoS rootkit
Computerworld
The company's vulnerability report specifically details flaws in the
command & control component of the Dirt Jumper DDoS toolkit that has been
associated with DDoS attacks recently. The flaws allow "counter-attackers
to obtain access to the Command and ...
<http://www.computerworld.com/s/article/9230288/Security_vendor_exposes_vulnerabilities_in_DDoS_rootkit?taxonomyId=82>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.computerworld.com/s/article/9230288/Security_vendor_exposes_vulnerabilities_in_DDoS_rootkit%3FtaxonomyId%3D82&hl=en&geo=us>

Google Declares Chromium 'Stronger' As Bug Reports Drop Off
PC Magazine
On Tuesday, Google announced it had increased its bug bounty offering to
security researchers after a seeing a "significant drop-off" in reported
vulnerabilities in Chromium. Instead of a base reward of $1000, users can
receive $2000 for well-reported ...
<http://securitywatch.pcmag.com/none/301537-google-declares-chromium-stronger-as-bug-reports-drop-off>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://securitywatch.pcmag.com/none/301537-google-declares-chromium-stronger-as-bug-reports-drop-off&hl=en&geo=us>

Microsoft Closes Oracle Outside In Security Holes With Critical Patch
Dark Reading
In Microsoft Exchange Server 2007 and 2010, the vulnerabilities make it
possible under certain circumstances for an attacker to use the
vulnerabilities to take control of the server process that is parsing a
specially crafted file. An attacker could ...
<http://www.darkreading.com/vulnerability-management/167901026/security/client-security/240005620/microsoft-closes-oracle-outside-in-security-holes-with-critical-patch.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.darkreading.com/vulnerability-management/167901026/security/client-security/240005620/microsoft-closes-oracle-outside-in-security-holes-with-critical-patch.html&hl=en&geo=us>

Tridium issues fixes for online control system
Washington Post
The disclosure of the vulnerabilities came amid public debate about the
security of computer systems that increasingly control buildings,
manufacturing, power grids and other parts of the nation's critical
infrastructure that are linked to cyberspace ...
<http://www.washingtonpost.com/investigations/tridium-issues-fixes-for-online-control-system/2012/08/15/678ea3c2-e6e8-11e1-936a-b801f1abab19_story.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.washingtonpost.com/investigations/tridium-issues-fixes-for-online-control-system/2012/08/15/678ea3c2-e6e8-11e1-936a-b801f1abab19_story.html&hl=en&geo=us>

NSS Labs Tests Top Consumer Anti-Virus Products For Protection Against
New ...
Dark Reading
AUSTIN, Texas – August 15, 2012 - NSS Labs, Inc., the leader in
test-based research and analysis of information security products, today
released the report, "Can Consumer AV Products Protect Against Critical
Microsoft Vulnerabilities?" where the ...
<http://www.darkreading.com/vulnerability-management/167901026/security/news/240005636/nss-labs-tests-top-consumer-anti-virus-products-for-protection-against-new-critical-microsoft-vulnerabilities.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.darkreading.com/vulnerability-management/167901026/security/news/240005636/nss-labs-tests-top-consumer-anti-virus-products-for-protection-against-new-critical-microsoft-vulnerabilities.html&hl=en&geo=us>

Palo Alto Networks discovers vulnerabilities in Windows print spooler
MENAFN.COM
Palo Alto Networks discovers vulnerabilities in Windows print spooler. Aug
15, 2012 (TELECOMWORLDWIRE via COMTEX) -- Network security company Palo
Alto Networks PANW said that its Threat Research Team was credited with
identifying two critical ...
<http://www.menafn.com/menafn/2dc569b7-6795-48ef-8abe-67f605a567c0/Palo-Alto-Networks-discovers-vulnerabilities-Windows-print-spooler?src=main>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.menafn.com/menafn/2dc569b7-6795-48ef-8abe-67f605a567c0/Palo-Alto-Networks-discovers-vulnerabilities-Windows-print-spooler%3Fsrc%3Dmain&hl=en&geo=us>

Extreme Heat, Drought Show Vulnerability of Nuclear Power Plants
Inside Climate News
Will 2012 go down as the year that left the idea of nuclear energy
expansion in the hot, dry dust? Nuclear energy might be an important weapon
in the battle against climate change, some scientists have argued, because
it doesn't emit greenhouse gases.
<http://insideclimatenews.org/news/20120815/nuclear-power-plants-energy-nrc-drought-weather-heat-water>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://insideclimatenews.org/news/20120815/nuclear-power-plants-energy-nrc-drought-weather-heat-water&hl=en&geo=us>

Adobe misses serious bugs in Reader
SC Magazine Australia
Following the Patch Tuesday release, the researchers published details of
the unpatched vulnerabilities to help users mitigate security risks, and
have been in contact with Adobe's Product Security Response Team to help
develop patches. They said eight ...
<http://www.scmagazine.com.au/News/312148,adobe-misses-serious-bugs-in-reader.aspx>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.scmagazine.com.au/News/312148,adobe-misses-serious-bugs-in-reader.aspx&hl=en&geo=us>

StillSecure's Safe Access(R) Network Access Control Solution Provides
Total ...
Broadcast Newsroom
The USCYBERCOM website is the official source for all IAV definitions and
is the central hub from which all DoD IAV updates are shared across the DoD
for ongoing IT security operations and vulnerabilities. "With this new
fully-integrated IAV offering ...
<http://acquisition.broadcastnewsroom.com/article/StillSecures-Safe-Access(R)-Network-Access-Control-Solution-Provides-Total-IAV-Integration--2149729>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://acquisition.broadcastnewsroom.com/article/StillSecures-Safe-Access(R)-Network-Access-Control-Solution-Provides-Total-IAV-Integration--2149729&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail