Google Alert - Vulnerabilities

=== News - 5 new results for [Vulnerabilities] ===

WCSU Data Vulnerability Could Affect 235000
NBC Connecticut
A computer system vulnerability potentially exposed information, including
Social Security numbers, of about 235,000 people whose records the
university collected, according to a news release from the university. The
affected group includes students ...
<http://www.nbcconnecticut.com/news/local/WCSU-Data-Vulnerability-Could-Affect-235000-181374021.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.nbcconnecticut.com/news/local/WCSU-Data-Vulnerability-Could-Affect-235000-181374021.html&hl=en&geo=us>

PayPal Fixes Trio of Remote-Access Vulnerabilities
Threatpost (blog)
PayPal has repaired three remote-access vulnerabilities found in different
areas of its website, including a cross-site scripting (XSS) flaw on its
PayPal Community Forum. All three flaws were submitted to PayPal's Bug
Bounty Program. Researcher ...
<http://threatpost.com/en_us/blogs/paypal-fixes-trio-remote-access-vulnerabilities-112912>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://threatpost.com/en_us/blogs/paypal-fixes-trio-remote-access-vulnerabilities-112912&hl=en&geo=us>

Power Grid Study Cites "Inherent Vulnerability" to Terrorist Attack,
Natural ...
Signal Magazine
The report on the power transmission system was delayed by government
officials for security reasons. Attention must be paid to the
vulnerabilities inherent in the United States' electric power delivery
system, and soon, according to a newly released ...
<http://www.afcea.org/content/?q=node/10381>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.afcea.org/content/%3Fq%3Dnode/10381&hl=en&geo=us>

US-CERT: Samsung Printer Firmware Contains Backdoor
Dark Reading
According to a vulnerability report made to US-CERT by researcher Neil
Smith, Samsung printers -- as well as some Dell printers manufactured by
Samsung -- contain a "hard-coded SNMP full read-write community string that
remains active even when SNMP ...
<http://www.darkreading.com/vulnerability-management/167901026/security/vulnerabilities/240142864/us-cert-samsung-printer-firmware-contains-backdoor.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.darkreading.com/vulnerability-management/167901026/security/vulnerabilities/240142864/us-cert-samsung-printer-firmware-contains-backdoor.html&hl=en&geo=us>

Solution Path: Threats and Vulnerabilities
InfoWorld
Simply from reading the news, it's clear that global compliance
requirements are increasing and that external threats are becoming more
numerous and capable. At the same time, many enterprise environments are
becoming more complex, with increased ...
<http://www.infoworld.com/d/wp/solution-path-threats-and-vulnerabilities-208066>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.infoworld.com/d/wp/solution-path-threats-and-vulnerabilities-208066&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 5 new results for [Vulnerabilities] ===

Samsung Printers Have Hidden Security Risk
InformationWeek
As a result of the vulnerability, "a remote, unauthenticated attacker could
access an affected device with administrative privileges," according to the
CERT information security advisory. "Secondary impacts include: the ability
to make changes to the ...
<http://www.informationweek.com/security/vulnerabilities/samsung-printers-have-hidden-security-ri/240142715>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.informationweek.com/security/vulnerabilities/samsung-printers-have-hidden-security-ri/240142715&hl=en&geo=us>

Vulnerability and Poverty Reduction Team News - November 2012
Institute of Development Studies
A highlight this month includes the results of a recent study on Women and
War. For generations women have served as peace educators, both in their
families and in their societies. They have proved instrumental in building
bridges rather than walls ...
<http://www.ids.ac.uk/news/vulnerability-and-poverty-reduction-team-news-november-2012>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.ids.ac.uk/news/vulnerability-and-poverty-reduction-team-news-november-2012&hl=en&geo=us>

Pakistan internet registry admits it was hacked, claims it's secure
Inquirer
It said that four user accounts were breached via a vulnerability exploit
late on Friday 23 November. It said that no user data was compromised and
that its servers were not hacked. The vulnerability has been fixed and the
four affected DNS accounts ...
<http://www.theinquirer.net/inquirer/news/2227904/pakistan-internet-registry-admits-it-was-hacked-claims-its-secure>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.theinquirer.net/inquirer/news/2227904/pakistan-internet-registry-admits-it-was-hacked-claims-its-secure&hl=en&geo=us>

Yahoo XSS exploits going for $700
The H
The latest discovery of a cross-site scripting (XSS) vulnerability on Yahoo
is not particularly uncommon, but gives some insight into how exploits for
vulnerabilities are priced. According to security blogger Brian Krebs, an
exploit being sold by an ...
<http://www.h-online.com/security/news/item/Yahoo-XSS-exploits-going-for-700-1758147.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.h-online.com/security/news/item/Yahoo-XSS-exploits-going-for-700-1758147.html&hl=en&geo=us>

Twenty-three zero-day flaws found in Scada systems
SC Magazine UK
Researchers have reportedly found 23 vulnerabilities in industrial control
software, specifically Scada software, that expose machinery to the risk of
either remote code execution or denial-of-service attacks. According to a
blog by Exodus Intelligence ...
<http://www.scmagazineuk.com/twenty-three-zero-day-flaws-found-in-scada-systems/article/270120/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.scmagazineuk.com/twenty-three-zero-day-flaws-found-in-scada-systems/article/270120/&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 5 new results for [Vulnerabilities] ===

New SCADA Vulnerability Reports are Old News
CIO (blog)
Last week ReVuln, an Italian security firm, released a video showing
vulnerabilities in SCADA applications from Siemens, GE and Schneider
Electric, among others. (SCADA software runs systems at utilities,
manufacturing plants and other critical points ...
<http://blogs.cio.com/security/17589/new-scada-vulnerability-reports-are-old-news>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://blogs.cio.com/security/17589/new-scada-vulnerability-reports-are-old-news&hl=en&geo=us>

Pwning printers: Backdoor in Samsung printers via hard-coded admin account
Computerworld (blog)
The latest printer backdoor vulnerability could allow an attacker to take
control of a Samsung printer, as well as some Dell printers manufactured by
Samsung, that were released before October 31, 2012. These printers have a
hardcoded Simple Network ...
<http://blogs.computerworld.com/cybercrime-and-hacking/21398/pwning-printers-backdoor-samsung-printers-hard-coded-admin-account>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://blogs.computerworld.com/cybercrime-and-hacking/21398/pwning-printers-backdoor-samsung-printers-hard-coded-admin-account&hl=en&geo=us>

Google Patches High-Risk Vulnerabilities in Chrome
Tom's Hardware Guide
Version 23.0.1271.91 patches vulnerabilities that affect a corrupt
rendering in the Apple OS X driver for Intel GPUs, a buffer underflow in
libxml, as well as a high-risk use-after-free in SVG filters bug.
Additional security fixes cover an out-of ...
<http://www.tomshardware.com/news/google-chrome-browser-security,19363.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.tomshardware.com/news/google-chrome-browser-security,19363.html&hl=en&geo=us>

Thanksgiving SCADA Bug Hunt
Dark Reading
It was the recent uptick in SCADA bug disclosures -- such as those of
vulnerability sellers ReVuln -- that prompted Portnoy's holiday bug hunt.
"We just recently took a shot at finding as many as we could to overlap
with their discoveries and intend to ...
<http://www.darkreading.com/vulnerability-management/167901026/security/vulnerabilities/240142657/thanksgiving-scada-bug-hunt.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.darkreading.com/vulnerability-management/167901026/security/vulnerabilities/240142657/thanksgiving-scada-bug-hunt.html&hl=en&geo=us>

Onity Lock Security Flaw: Hackers Capitalize On Hotel Door Vulnerabilities
Huffington Post Canada
A vulnerability in the technology used for hotel doors appears to be
compromising the security for as many as four million hotel rooms around
the world. Would-be thieves looking to break into hotel rooms need no
longer force their way in, but can now ...
<http://www.huffingtonpost.ca/2012/11/27/onity-lock-security-flaw_n_2197132.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.huffingtonpost.ca/2012/11/27/onity-lock-security-flaw_n_2197132.html&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 6 new results for [Vulnerabilities] ===

Researcher finds over 20 vulnerabilities in SCADA software
Network World
IDG News Service - A security researcher claims that he found 23
vulnerabilities in industrial control software from several vendors after a
different security company last week showcased vulnerabilities in
applications from some of the same ...
<http://www.networkworld.com/news/2012/112612-researcher-finds-over-20-vulnerabilities-264537.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.networkworld.com/news/2012/112612-researcher-finds-over-20-vulnerabilities-264537.html&hl=en&geo=us>

eBay Patches Critical XSS, SQL Holes
Threatpost (blog)
According to a post on xssed.com, a site that archives XSS vulnerabilities,
it could have been executed in listings on Google Chrome and Mozilla
Firefox and used to redirect unsuspecting buyers to other bogus sales.
Attackers would simply have to ...
<http://threatpost.com/en_us/blogs/ebay-patches-critical-xss-sql-holes-112612>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://threatpost.com/en_us/blogs/ebay-patches-critical-xss-sql-holes-112612&hl=en&geo=us>

IU cybersecurity researchers use Homeland Security grant to identify
software ...
The Republic
Researchers from Indiana University's Pervasive Technology Institute are
joining the battle and will serve as collaborating partners on a major
grant from the U.S. Department of Homeland Security to address
vulnerabilities arising during the process of ...
<http://www.therepublic.com/view/story/0cb8f3101ca244eab880e8fc5a0626bd/IN--Exchange-IU-Cybersecurity>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.therepublic.com/view/story/0cb8f3101ca244eab880e8fc5a0626bd/IN--Exchange-IU-Cybersecurity&hl=en&geo=us>

The Rise Of Java Vulnerabilities
TechWeekEurope UK
In addition, we are seeing criminals integrating exploits for new Java
vulnerabilities at a much faster pace than ever before. Attackers are even
re-using exploit code after patches are distributed, and by modifying that
code and applying different ...
<http://www.techweekeurope.co.uk/comment/java-vulnerabilities-webroot-100267>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.techweekeurope.co.uk/comment/java-vulnerabilities-webroot-100267&hl=en&geo=us>

Panorama9 Launches Patch Management For Mac
Dark Reading
Panorama9 makes it easy for IT administrators to track changes and update
vulnerabilities across a mix of devices, applications, and operating
systems. The tool automates all the tedious patch management activities, so
companies can be sure every ...
<http://www.darkreading.com/vulnerability-management/167901026/security/news/240142596/panorama9-launches-patch-management-for-mac.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.darkreading.com/vulnerability-management/167901026/security/news/240142596/panorama9-launches-patch-management-for-mac.html&hl=en&geo=us>

Cyber threats to watch for in 2013
Mineral Wells Index
While only a very small number of U.S. mobile devices show signs of
infection, the explosive proliferation of smartphones will continue to
tempt attackers in exploiting user and technology-based vulnerabilities,
particularly with the browser function ...
<http://mineralwellsindex.com/onlineonly/x1332339691/Cyber-threats-to-watch-for-in-2013>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://mineralwellsindex.com/onlineonly/x1332339691/Cyber-threats-to-watch-for-in-2013&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 2 new results for [Vulnerabilities] ===

ReVuln Demos SCADA Zero Day Vulnerabilities
eSecurity Planet
Security firm ReVuln recently released a video demonstrating zero day
vulnerabilities in SCADA systems from General Electric, Schneider Electric,
Eaton, Siemens and other companies. "According to ReVuln, the
vulnerabilities allow remote code execution, ...
<http://www.esecurityplanet.com/network-security/revuln-demos-scada-zero-day-vulnerabilities.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.esecurityplanet.com/network-security/revuln-demos-scada-zero-day-vulnerabilities.html&hl=en&geo=us>

Facebook Gift Scams: How They Work
InformationWeek
Application Security · Vulnerabilities · End User/Client Security ·
Encryption · Security Administration · Privacy. More Security. Perimeter
Security · Security Reviews · Security Commentary · Storage Security ·
Security Stories · Security Slideshows ...
<http://www.informationweek.com/security/vulnerabilities/facebook-gift-scams-how-they-work/240142403>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.informationweek.com/security/vulnerabilities/facebook-gift-scams-how-they-work/240142403&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 4 new results for [Vulnerabilities] ===

Turkey's credit note to rise if external vulnerability reduces [Anadolu
Agency ...
Equities.com
Senior analyst of Moody's has said that upgrading of Turkey's credit note
might be assessed if there were positive. ISTANBUL Senior analyst of
international credit rating agency Moody's, Sarah Carlson, has said that
upgrading of Turkey's credit note ...
<http://www.equities.com/news/headline-story?dt=2012-11-22&val=747900&cat=finance>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.equities.com/news/headline-story%3Fdt%3D2012-11-22%26val%3D747900%26cat%3Dfinance&hl=en&geo=us>

Yahoo Email-Stealing Exploit Fetches $700
Krebs on Security
A zero-day vulnerability in yahoo.com that lets attackers hijack Yahoo!
email accounts and redirect users to malicious Web sites offers a
fascinating glimpse into the underground market for large-scale exploits.
The exploit, being sold for $700 by an ...
<http://krebsonsecurity.com/2012/11/yahoo-email-stealing-exploit-fetches-700/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://krebsonsecurity.com/2012/11/yahoo-email-stealing-exploit-fetches-700/&hl=en&geo=us>

ReVuln claims 0day vulnerabilities for SCADA systems
The H
In a video, vulnerability merchants ReVuln are advertising a 0day
vulnerability for industrial SCADA systems by companies including General
Electric, Rockwell Automation, Schneider Electric and Siemens among others.
The company does not, however, ...
<http://www.h-online.com/security/news/item/ReVuln-claims-0day-vulnerabilities-for-SCADA-systems-1755037.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.h-online.com/security/news/item/ReVuln-claims-0day-vulnerabilities-for-SCADA-systems-1755037.html&hl=en&geo=us>

Public Works plugs holes after audit exposes vulnerability
Vancouver Sun
The department tasked with buying weapons for the federal government and
transmitting sensitive documents to the United States left itself open to
the potential for a serious IT security breach more than two years ago. An
internal audit for Public ...
<http://www.vancouversun.com/Public+Works+plugs+holes+after+audit+exposes+vulnerability/7593728/story.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.vancouversun.com/Public%2BWorks%2Bplugs%2Bholes%2Bafter%2Baudit%2Bexposes%2Bvulnerability/7593728/story.html&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 4 new results for [Vulnerabilities] ===

Security Firm Showcases Vulnerabilities in SCADA Software, Won't Report
them ...
Computerworld India
Malta-based security start-up firm ReVuln claims to be sitting on a
stockpile of vulnerabilities in industrial control software, but prefers to
sell the information to governments and other paying customers instead of
disclosing it to the affected ...
<http://www.computerworld.in/news/security-firm-showcases-vulnerabilities-scada-software-wont-report-them-vendors-42452012>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.computerworld.in/news/security-firm-showcases-vulnerabilities-scada-software-wont-report-them-vendors-42452012&hl=en&geo=us>

Info Security Threat and Vulnerability Manager
The Independent
A rapidly growing international financial services organisation is looking
to hire an Information Security Threat and Vulnerability manager to ensure
business critical information is kept secure from ever changing and
evolving cyber threats. This role ...
<http://ijobs.independent.co.uk/job/23132/info-security-threat-and-vulnerability-manager/?deviceType=Desktop&TrackID=7>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://ijobs.independent.co.uk/job/23132/info-security-threat-and-vulnerability-manager/%3FdeviceType%3DDesktop%26TrackID%3D7&hl=en&geo=us>

Free ebook identifies easy to manage network security vulnerabilities
Help Net Security
The book identifies twelve network security vulnerabilities that are both
easy to manage and that present considerable risk to network security if
left unaddressed. Each chapter identifies a vulnerability that can be
addressed by doing exactly as the ...
<http://www.net-security.org/secworld.php?id=13989>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.net-security.org/secworld.php%3Fid%3D13989&hl=en&geo=us>

Joomla! Security Module Released by Incapsula for Joomla! Versions
1.6-2.5 ...
CMSWire
Older versions of the Joomla! open source CMS are susceptible to takeover
hacking attempts, according to a three month study by website security
service Incapsula. Incapsula has now released an integrated Joomla! module
to stop these dangerous attacks ...
<http://www.cmswire.com/cms/customer-experience/joomla-security-module-released-by-incapsula-for-joomla-versions-1625-vulnerabilities-018380.php>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.cmswire.com/cms/customer-experience/joomla-security-module-released-by-incapsula-for-joomla-versions-1625-vulnerabilities-018380.php&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 6 new results for [Vulnerabilities] ===

Security Firm Showcases Vulnerabilities in SCADA Software, Won't Report
Them ...
CIO
According to by ReVuln, the vulnerabilities it showcased Monday can allow
attackers to remotely execute arbitrary code, download arbitrary files,
execute arbitrary commands, open remote shells or hijack sessions on
systems running the vulnerable SCADA ...
<http://www.cio.com/article/722039/Security_Firm_Showcases_Vulnerabilities_in_SCADA_Software_Won_39_t_Report_Them_to_Vendors?taxonomyId=3089>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.cio.com/article/722039/Security_Firm_Showcases_Vulnerabilities_in_SCADA_Software_Won_39_t_Report_Them_to_Vendors%3FtaxonomyId%3D3089&hl=en&geo=us>

Fixing website vulnerabilities will ensure online retailers reap the
benefits ...
Einnews Portugal
/EINPresswire.com/ IT Governance Ltd, the PCI and information security
experts, is advising ecommerce owners that identifying and fixing website
vulnerabilities is crucial for the operation of their website and
protecting customer's data. An affordable ...
<http://world.einnews.com/pr_news/124175699/fixing-website-vulnerabilities-will-ensure-online-retailers-reap-the-benefits-from-black-friday>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://world.einnews.com/pr_news/124175699/fixing-website-vulnerabilities-will-ensure-online-retailers-reap-the-benefits-from-black-friday&hl=en&geo=us>

USMC finds workaround for cyber vulnerability on F-35 logistics system
Flightglobal
The US Marine Corps (USMC) has found a temporary workaround for certain
cyber-warfare vulnerabilities to the Lockheed Martin F-35 Joint Strike
Fighter's (JSF) autonomic logistics information system (ALIS) while a more
permanent solution is found.
<http://www.flightglobal.com/news/articles/usmc-finds-workaround-for-cyber-vulnerability-on-f-35-logistics-system-379272/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.flightglobal.com/news/articles/usmc-finds-workaround-for-cyber-vulnerability-on-f-35-logistics-system-379272/&hl=en&geo=us>

The Business Of Commercial Exploit Development
Dark Reading (blog)
For example, I have traditionally used the term "weaponization" of
vulnerabilities, vendors of protection products often use the term "proof
of concept," while those employed in the production of exploit material
simply refer to it as "product." Most ...
<http://www.darkreading.com/blog/240142392/the-business-of-commercial-exploit-development.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.darkreading.com/blog/240142392/the-business-of-commercial-exploit-development.html&hl=en&geo=us>

eGestalt Aegify Provides Unified IT-GRC, SPM Security
Talkin' Cloud
The product also "can automatically map security vulnerabilities to
compliance mandates using an innovative expert systems approach, thereby
eliminating manual work required and saving significant costs," said Anupam
Sahai, eGestalt's president, in a ...
<http://talkincloud.com/cloud-computing-security/egestalt-aegify-provides-unified-it-grc-spm-security>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://talkincloud.com/cloud-computing-security/egestalt-aegify-provides-unified-it-grc-spm-security&hl=en&geo=us>

Meanwhile, businesses more worried about productivity than security threats
Dark Reading
"From this research, we have found that more than half of the tested
machines have critical vulnerabilities. These vulnerabilities allow
cybercriminals to take remote control of your machine, search your disk
drive for valuable information, monitor all ...
<http://www.darkreading.com/insider-threat/167801100/security/vulnerabilities/240142405/half-of-machines-shopping-on-cyber-monday-likely-contain-vulnerabilities.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.darkreading.com/insider-threat/167801100/security/vulnerabilities/240142405/half-of-machines-shopping-on-cyber-monday-likely-contain-vulnerabilities.html&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 1 new result for [Vulnerabilities] ===

Schmeelk: Grizzlies Exposed Knicks' Vulnerabilities
CBS Local
Schmeelk: Grizzlies Exposed Knicks' Vulnerabilities. Knicks Struggled On
The Boards Against Memphis. November 19, 2012 1:42 PM. View Comments. More
Activity. Facebook Activity. What's this? Add to Timeline - What's This.
Click "Log in" to publish ...
<http://newyork.cbslocal.com/2012/11/19/schmeelk-grizzlies-exposed-knicks-vulnerabilities/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://newyork.cbslocal.com/2012/11/19/schmeelk-grizzlies-exposed-knicks-vulnerabilities/&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 3 new results for [Vulnerabilities] ===

Worcester's aging water system is reliable, but has vulnerabilities
Worcester Telegram
"We know what the vulnerabilities of the system are and we can play the
'what if' game," said Department of Public Works and Parks Commissioner
Robert L. Moylan Jr. "The fact of the matter is that Worcester's system
is reliable." On Monday, a 30-inch ...
<http://www.telegram.com/article/20121118/NEWS/111189738/-1/NEWS06>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.telegram.com/article/20121118/NEWS/111189738/-1/NEWS06&hl=en&geo=us>

Researcher gains admin access to Kaseya, ManageEngine
iT News
A security researcher has found zero day vulnerabilities granting
administrative access to managed service provider (MSP) platforms used by
the likes of Ferrari, the US Air Force and government agencies. The flaws
existed in enterprise managed services ...
<http://www.itnews.com.au/News/323377,researcher-gains-admin-access-to-kaseya-manageengine.aspx>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.itnews.com.au/News/323377,researcher-gains-admin-access-to-kaseya-manageengine.aspx&hl=en&geo=us>

Trend Micro Deep Security 9 Solves Organizations' Patching Challenge
MENAFN.COM
Vendors in general are unable to keep pace with the number of
vulnerabilities and threats: industry sources report that just 58% of the
vulnerabilities disclosed in 2011 had vendor patches available on the same
day, and 36% still had no patch available ...
<http://www.menafn.com/menafn/1093580391/Trend-Micro-Deep-Security-9-Solves-Organizations-Patching-Challenge>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.menafn.com/menafn/1093580391/Trend-Micro-Deep-Security-9-Solves-Organizations-Patching-Challenge&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 1 new result for [Vulnerabilities] ===

Increased vulnerability to terrorism
Financial Express Bangladesh
It was good to know that the US Federal Bureau of Investigation (FBI) and
the New York City Police Department (NYPD) were jointly able to foil
recently a terror attack in NYC with the help of a reportedly successful
sting operation. The attack could ...
<http://www.thefinancialexpress-bd.com/index.php?ref=MjBfMTFfMThfMTJfMV82XzE1MDI4MA==>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.thefinancialexpress-bd.com/index.php%3Fref%3DMjBfMTFfMThfMTJfMV82XzE1MDI4MA%3D%3D&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 3 new results for [Vulnerabilities] ===

Killer Apps: Dozens of cyber vulnerabilities found at Department of
Energy ...
Foreign Policy (blog)
At a time when senior defense officials are sounding the alarms about the
potential for a devastating cyber attack against America's critical
infrastructure, the U.S. Department of Energy's inspector general (IG) has
found dozens of unaddressed cyber ...
<http://killerapps.foreignpolicy.com/posts/2012/11/16/dozens_of_cyber_vulnerabilities_found_at_department_of_energy_facilities>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://killerapps.foreignpolicy.com/posts/2012/11/16/dozens_of_cyber_vulnerabilities_found_at_department_of_energy_facilities&hl=en&geo=us>

VMware Security Update Fixes DoS, Other Vulnerabilities
Threatpost (blog)
Virtualization software maker VMware shipped a security update for its
vSphere API yesterday that resolved a denial of service vulnerability in
ESX and ESXi, as well as adding a number of open source security updates to
the ESX Service Console. The ...
<http://threatpost.com/en_us/blogs/vmware-security-update-fixes-dos-other-vulnerabilities-111612>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://threatpost.com/en_us/blogs/vmware-security-update-fixes-dos-other-vulnerabilities-111612&hl=en&geo=us>

Cybersecurity Stalls in Senate, Obama Could Issue Executive Order
Computerworld New Zealand
"You could put all the mandates in the world on businesses, and it will not
do anything about the software vulnerabilities, the hardware
vulnerabilities in their systems. It will not do anything about the social
engineering vulnerabilities of the human ...
<http://computerworld.co.nz/news.nsf/security/cybersecurity-stalls-in-senate-obama-could-issue-executive-order>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://computerworld.co.nz/news.nsf/security/cybersecurity-stalls-in-senate-obama-could-issue-executive-order&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 4 new results for [Vulnerabilities] ===

NRC Report on Electricity Grid Vulnerability
Lawfare (blog)
The NRC has issued a Report on vulnerability in the U.S. electric power
delivery system. (A downloadable copy can be found here.) I have only
skimmed the Report, but it covers vulnerabilities not only from
cyber-operations, but also from physical ...
<http://www.lawfareblog.com/2012/11/nrc-report-on-electricity-grid-vulnerability/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.lawfareblog.com/2012/11/nrc-report-on-electricity-grid-vulnerability/&hl=en&geo=us>

ArmorHub's Web Security Service Scans For Vulnerabilities & Malware,
Works ...
TechCrunch
ArmorHub is today launching a web security service targeting startups,
small-to-medium sized businesses, and most importantly, the layperson who
knows that website security is something to be concerned about, but doesn't
know how to monitor their site ...
<http://techcrunch.com/2012/11/15/armorhubs-web-security-service-scans-for-vulnerabilities-malware-works-for-great-for-startups-as-well-as-your-dad/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://techcrunch.com/2012/11/15/armorhubs-web-security-service-scans-for-vulnerabilities-malware-works-for-great-for-startups-as-well-as-your-dad/&hl=en&geo=us>

Fidelity Invests In Secure Software Development
Dark Reading
Microsoft got the ball rolling on secure software development for the
commercial world, and now many of the world's largest enterprises are
picking it up and running with it, forcing many software vendors to catch
up or lose the game. Fidelity ...
<http://www.darkreading.com/vulnerability-management/167901026/security/application-security/240142182/fidelity-invests-in-secure-software-development.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.darkreading.com/vulnerability-management/167901026/security/application-security/240142182/fidelity-invests-in-secure-software-development.html&hl=en&geo=us>

Security report: Enterprises place reckless trust in third-party
software ...
ZDNet
Summary: Veracode's Supplemental to their State of Software Security Report
shows most dangerous security flaws in existence are among the most
prevalent vulnerabilities in third-party vendor applications - while few
enterprises have vendor application ...
<http://www.zdnet.com/security-report-enterprises-place-reckless-trust-in-third-party-software-suppliers-7000007425/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.zdnet.com/security-report-enterprises-place-reckless-trust-in-third-party-software-suppliers-7000007425/&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 8 new results for [Vulnerabilities] ===

Skype Deals With Account Hijacking Exploit
InformationWeek
That finally led Skype Wednesday to acknowledge the security vulnerability
and begin working on a fix. "Early this morning we were notified of user
concerns surrounding the security of the password reset feature on our
website. This issue affected some ...
<http://www.informationweek.com/security/vulnerabilities/skype-deals-with-account-hijacking-explo/240134937>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.informationweek.com/security/vulnerabilities/skype-deals-with-account-hijacking-explo/240134937&hl=en&geo=us>

Analysts: Patch Microsoft IE Drive-By Vulnerability First
Sci-Tech Today
Despite the release of Windows 8 in late October, security researcher
Andrew Storms noted that three of Tuesday's bulletins already affect it.
Much of the core operating system is reused from version to version, even
in new releases, and all software ...
<http://www.sci-tech-today.com/news/Patch-Microsoft-IE-9-Vulnerability-First/story.xhtml?story_id=032003KN9F6O>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.sci-tech-today.com/news/Patch-Microsoft-IE-9-Vulnerability-First/story.xhtml%3Fstory_id%3D032003KN9F6O&hl=en&geo=us>

GFI Launches VIPRE 6.0 For Business
Dark Reading
Clearwater, Fla. – November 13, 2012 – GFI Software&trade today
launched the latest edition of VIPRE Business, which for the first time
provides small and medium-sized businesses (SMBs) with access to a single
solution for antivirus, patch management ...
<http://www.darkreading.com/vulnerability-management/167901026/security/news/240135007/gfi-launches-vipre-6-0-for-business.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.darkreading.com/vulnerability-management/167901026/security/news/240135007/gfi-launches-vipre-6-0-for-business.html&hl=en&geo=us>

MS plugs 'highly exploitable' IE 9 hole in November Patch Tuesday
Register
Vulnerability management firm Qualys rates the Internet Explorer update
(MS12-071) as easily the most urgent. Left unpatched, the set of four flaws
easily lend themselves to exploitation through drive-by download style
attacks. Microsoft rates its ...
<http://www.theregister.co.uk/2012/11/14/nov_patch_tuesday/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.theregister.co.uk/2012/11/14/nov_patch_tuesday/&hl=en&geo=us>

Microsoft Updates Windows 8, Internet Explorer 9 in Patch Tuesday
PC Magazine
Microsoft fixed 19 vulnerabilities in November's Patch Tuesday update, four
in Internet Explorer 9, and three in all versions of the Windows operating
system, including the brand-new Windows 8. The company released six
bulletins, four of which have ...
<http://securitywatch.pcmag.com/none/304971-microsoft-updates-windows-8-internet-explorer-9-in-patch-tuesday>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://securitywatch.pcmag.com/none/304971-microsoft-updates-windows-8-internet-explorer-9-in-patch-tuesday&hl=en&geo=us>

tool kits fuel cyber arms race
Sydney Morning Herald
Security researchers and consultants, including Linn, use such hacking
tools to identify vulnerabilities and help organisations patch them.
Bad-guy hackers, known as black hats, and cyberwarriors use similar illicit
kits to spy on, steal from and wreak ...
<http://www.smh.com.au/it-pro/security-it/free-hacking-tool-kits-fuel-cyber-arms-race-20121114-29bvb.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.smh.com.au/it-pro/security-it/free-hacking-tool-kits-fuel-cyber-arms-race-20121114-29bvb.html&hl=en&geo=us>

Skype account hijacking vulnerability required only an email address
Infosecurity Magazine
A vulnerability that allows hackers to track the location of Skype users
was disclosed to the company by a researcher over a year and a half ago,
but the company has done nothing about it. Skype subject to "persistent"
cross-site scripting ...
<http://www.infosecurity-magazine.com/view/29345/skype-account-hijacking-vulnerability-required-only-an-email-address/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.infosecurity-magazine.com/view/29345/skype-account-hijacking-vulnerability-required-only-an-email-address/&hl=en&geo=us>

Cybersecurity weaknesses persist in Energy unclassified systems
FierceGovernmentIT
In the public version of an annually required report (.pdf), auditors say
they identified 38 different types of vulnerabilities in unclassified
systems, a decrease from the 56 they found in fiscal 2011. But, 16 of the
extant vulnerabilities were carry ...
<http://www.fiercegovernmentit.com/story/cybersecurity-weaknesses-persist-energy-unclassified-systems/2012-11-14>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.fiercegovernmentit.com/story/cybersecurity-weaknesses-persist-energy-unclassified-systems/2012-11-14&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 10 new results for [Vulnerabilities] ===

Imperva and Acunetix Partner to Virtually Patch Web Vulnerabilities
Reuters
"Many Imperva customers use Acunetix WVS to uncover Web vulnerabilities,"
said Imperva CTO, Amichai Shulman. "We believe that the interoperability of
the SecureSphere WAF with Acunetix WVS will allow our customers to mitigate
those vulnerabilities ...
<http://www.reuters.com/article/2012/11/14/idUS43252+14-Nov-2012+HUG20121114>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.reuters.com/article/2012/11/14/idUS43252%2B14-Nov-2012%2BHUG20121114&hl=en&geo=us>

Police vulnerabilities exposed in Baragoi
ntvkenya
In the wake of the shocking police massacre in the north, police
vulnerabilities and ill preparedness for conflict situations has been
exposed. None other than the police chief himself admits that the force's
equipment is outdated and poses a security ...
<http://www.youtube.com/watch?v=po_21_kKTi4&feature=youtube_gdata>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.youtube.com/watch%3Fv%3Dpo_21_kKTi4%26feature%3Dyoutube_gdata&hl=en&geo=us>

Former Orbitz Security Chief Lands $5.25M For Risk I/O, A "Vulnerability ...
TechCrunch
Today, the Chicago-based company is supporting the growth of its so-called
"vulnerability intelligence platform" with a fresh round of venture
funding, as Risk I/O announced this morning that it has closed a $5.25
million series A funding round. The ...
<http://techcrunch.com/2012/11/13/former-orbitz-security-chief-lands-5-25m-for-risk-io-a-vulnerability-intelligence-platform/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://techcrunch.com/2012/11/13/former-orbitz-security-chief-lands-5-25m-for-risk-io-a-vulnerability-intelligence-platform/&hl=en&geo=us>

Microsoft patches critical flaws in Windows 8, Windows RT
Computerworld
Computerworld - Microsoft today patched 19 vulnerabilities in Windows,
Internet Explorer 9 (IE9), Excel and the .Net development framework,
including four flaws in the just-released Windows 8 and its tablet spin-off
Windows RT. Of Tuesday's six ...
<http://www.computerworld.com/s/article/9233585/Microsoft_patches_critical_flaws_in_Windows_8_Windows_RT>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.computerworld.com/s/article/9233585/Microsoft_patches_critical_flaws_in_Windows_8_Windows_RT&hl=en&geo=us>

It's Microsoft Patch Tuesday: November 2012
TechRepublic (blog)
MS12-072/KB2727528 - Vulnerabilities in Windows Shell Could Allow Remote
Code Execution (All supported versions of Windows except Server Core
installations, Itanium-based Server 2008/2008 R2 installations, and Windows
RT devices): This critical ...
<http://www.techrepublic.com/blog/window-on-windows/its-microsoft-patch-tuesday-november-2012/6897>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.techrepublic.com/blog/window-on-windows/its-microsoft-patch-tuesday-november-2012/6897&hl=en&geo=us>

VMware Security Blog: The Three Step Approach to Vulnerability Management
DABCC.com
I spend the majority of my time researching and talking about current
threats and vulnerabilities and their subsequent countermeasures. There are
many essential components of an IT policy for these and most people have a
good handle on two of the three ...
<http://www.dabcc.com/article.aspx?id=22661>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.dabcc.com/article.aspx%3Fid%3D22661&hl=en&geo=us>

FSOC Approves Proposal to Recommend Money Fund Reforms to SEC
Crane Data LLC
The Financial Stability Oversight Council issued a "Proposed
Recommendations Regarding Money Market Mutual Fund Reform" says, "Reforms
to address the structural vulnerabilities of money market mutual funds
("MMFs" or "funds") are essential to ...
<http://cranedata.com/archives/all-articles/4248/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://cranedata.com/archives/all-articles/4248/&hl=en&geo=us>

Aberdeen Group Reports on "The Virtues of Virtual Patching"-- Trend
Micro ...
Sacramento Bee
This server security platform uses virtual patching to protect physical,
virtual, and cloud servers and virtual desktops from known vulnerabilities
and zero-day exploits without expensive emergency patching. Deep Security
leverages both agentless and ...
<http://www.sacbee.com/2012/11/13/4981542/aberdeen-group-reports-on-the.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.sacbee.com/2012/11/13/4981542/aberdeen-group-reports-on-the.html&hl=en&geo=us>

German office for IT security tests vulnerability of Windows systems
The H
The German Federal Office for Information Security (BSI) previously
recommended that users should keep their Windows systems up to date, should
ideally use Google Chrome and should avoid using Java at all if possible.
The efficacy of these simple ...
<http://www.h-online.com/security/news/item/German-office-for-IT-security-tests-vulnerability-of-Windows-systems-1749013.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.h-online.com/security/news/item/German-office-for-IT-security-tests-vulnerability-of-Windows-systems-1749013.html&hl=en&geo=us>

Microsoft Security Bulletins For November 2012 Released
Ghacks Technology News
MS12-071 Cumulative Security Update for Internet Explorer (2761451) –
This security update resolves three privately reported vulnerabilities in
Internet Explorer. The vulnerabilities could allow remote code execution if
a user views a specially crafted ...
<http://www.ghacks.net/2012/11/13/microsoft-security-bulletins-for-november-2012-released/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.ghacks.net/2012/11/13/microsoft-security-bulletins-for-november-2012-released/&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 7 new results for [Vulnerabilities] ===

Microsoft Releasing Security Fixes for Windows 8 Tuesday
CNBC.com (blog)
While the company said the security updates are part of its monthly patch
cycle, the security fixes were announced just days after a security company
reported it had found multiple vulnerabilities in Windows 8 and in Internet
Explorer. On Oct. 30 ...
<http://www.cnbc.com/id/49789626>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.cnbc.com/id/49789626&hl=en&geo=us>

New report warns of SCADA CYBERGEDDON*
Register
While the most basic datum – the number of vulnerabilities announced –
isn't surprising (98 in 2012 compared to 64 in 2011, and only 11 in 2010),
The Register would note that nobody paid serious attention to SCADA and
industrial control security until ...
<http://www.theregister.co.uk/2012/11/12/scada_vulnerability_study/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.theregister.co.uk/2012/11/12/scada_vulnerability_study/&hl=en&geo=us>

Cyber criminals exploit vulnerabilities in old browsers: report
Computer Business Review
According to the anti-virus application developer, majority of the cyber
attacks are carried out through by exploiting vulnerabilities in the web
browser applications themselves, or outdated plug-ins within the browser. A
study conducted by Kaspersky ...
<http://security.cbronline.com/news/cyber-criminals-exploit-vulnerabilities-in-old-browsers-report-121112>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://security.cbronline.com/news/cyber-criminals-exploit-vulnerabilities-in-old-browsers-report-121112&hl=en&geo=us>

"Critical vulnerabilities" found in Call of Duty: Modern Warfare 3,
CryEngine 3
PC Gamer Magazine
If you thought the biggest thing you had to worry about in Modern Warfare 3
was a knife in the back while you were camped out sniping, you might have
to think again. At the Power of Community security conference in Seoul, two
researchers appear to have ...
<http://www.pcgamer.com/2012/11/12/critical-vulnerabilities-found-in-call-of-duty-modern-warfare-3-cryengine-3/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.pcgamer.com/2012/11/12/critical-vulnerabilities-found-in-call-of-duty-modern-warfare-3-cryengine-3/&hl=en&geo=us>

Report highlighting SCADA insecurities alarmist, says ICS expert
TechTarget
The authors contend that for each of the bugs disclosed over the last two
years, they "searched for generally available methods of exploiting the
[vulnerabilities] and provided an expert evaluation of the related
risks." Joel Langill, a recognized ...
<http://searchsecurity.techtarget.com/news/2240171014/Report-highlighting-SCADA-insecurities-alarmist-says-ICS-expert>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://searchsecurity.techtarget.com/news/2240171014/Report-highlighting-SCADA-insecurities-alarmist-says-ICS-expert&hl=en&geo=us>

Cisco Systems, Inc. (NASDAQ:CSCO) warns IronPort Customers about Sophos ...
Property Mentor
Cisco Systems, Inc. (NASDAQ:CSCO) has issued warnings to customers about
critical vulnerabilities in the Sophos antivirus engine found in its Cisco
IronPort email and Web security appliances. Cisco said Friday in a security
advisory that Cisco IronPort ...
<http://www.propertymentorgroup.com/cisco-systems-inc-nasdaqcsco-warns-ironport-customers-about-sophos-flaws/124789/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.propertymentorgroup.com/cisco-systems-inc-nasdaqcsco-warns-ironport-customers-about-sophos-flaws/124789/&hl=en&geo=us>

Windows 8, RT: 'Critical' Fixes Coming This Week
Infopackets
The "critical" fixes will address remote code execution vulnerabilities
that, theoretically, could allow a hacker to install malware and execute
system functions secretly on a victim's computer. (Source: pcworld.com).
These fixes affect both 32- and 64 ...
<http://www.infopackets.com/news/business/microsoft/2012/20121112_windows_8_rt_critical_fixes_coming_this_week.htm>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.infopackets.com/news/business/microsoft/2012/20121112_windows_8_rt_critical_fixes_coming_this_week.htm&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 3 new results for [Vulnerabilities] ===

Cisco Recommends McAfee Switch for IronPort Customers Hit by Sophos Flaws
Computerworld India
Cisco Systems has warned customers about critical vulnerabilities in the
Sophos antivirus engine included in its Cisco IronPort email and Web
security appliances. "Cisco IronPort Email Security Appliances (ESA) and
Cisco IronPort Web Security ...
<http://www.computerworld.in/news/cisco-recommends-mcafee-switch-ironport-customers-hit-sophos-flaws-38822012>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.computerworld.in/news/cisco-recommends-mcafee-switch-ironport-customers-hit-sophos-flaws-38822012&hl=en&geo=us>

Windows 8, RT Set To Get First Major Security Patch On Tuesday
Mobile & Apps
Microsoft's monthly patch ritual called Patch Tuesday will now include
fixes for Windows 8 and RT vulnerabilities, as well as for various security
issues in versions of Windows XP, Vista, and 7. The security update will
also address issues in various ...
<http://www.mobilenapps.com/articles/5053/20121111/windows-8-rt-set-first-major-security.htm>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.mobilenapps.com/articles/5053/20121111/windows-8-rt-set-first-major-security.htm&hl=en&geo=us>

Microsoft Windows 8, RT fixes will be rolled out on November 13th
The Droid Guy
The purpose of the roll out would be to address the vulnerabilities of
these systems as well as provide updates to Windows XP, Vista, and 7.
Reports also suggest the .NET Framework would be getting a bump together
with Windows Server, Office and ...
<http://thedroidguy.com/2012/11/microsoft-windows-8-rt-fixes-will-be-rolled-out-on-november-13th/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://thedroidguy.com/2012/11/microsoft-windows-8-rt-fixes-will-be-rolled-out-on-november-13th/&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 2 new results for [Vulnerabilities] ===

Windows 8, RT Get First Security Fixes
InformationWeek
Windows 8 and Windows RT, released just two weeks ago, are about to receive
their first security makeover. Microsoft on Thursday said that it plans to
release its first security patches for Windows 8 and Windows RT as part of
its monthly patch cycle ...
<http://www.informationweek.com/security/vulnerabilities/windows-8-rt-get-first-security-fixes/240077527>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.informationweek.com/security/vulnerabilities/windows-8-rt-get-first-security-fixes/240077527&hl=en&geo=us>

Windows 8 security patches to be released
PCWorld (blog)
The bulletin was issued days after a security company in the business of
selling zero-day vulnerabilities, Vupen, announced that it had found
multiple vulnerabilities in Windows 8 and Internet Explorer 10. Three
"critical" fixes for both the 32-bit and ...
<http://www.pcworld.com/article/2013770/windows-8-security-patches-to-be-released.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.pcworld.com/article/2013770/windows-8-security-patches-to-be-released.html&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail

Google Alert - Vulnerabilities

=== News - 9 new results for [Vulnerabilities] ===

Researchers find vulnerability in Call of Duty: Modern Warfare 3
Computerworld
Vulnerabilities in games pose particular opportunities for hackers and even
other gamemakers, who may be interested in trying to steal a competitor's
players, Ferrante said. Shutting down a competing game could be
particularly lucrative for another ...
<http://www.computerworld.com/s/article/9233416/Researchers_find_vulnerability_in_i_Call_of_Duty_Modern_Warfare_3_i_>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.computerworld.com/s/article/9233416/Researchers_find_vulnerability_in_i_Call_of_Duty_Modern_Warfare_3_i_&hl=en&geo=us>

Cisco recommends McAfee switch for IronPort customers hit by Sophos flaws
Computerworld
Cisco rated the severity of the vulnerabilities at 9.7 out of 10 on the
CVSS (Common Vulnerability Scoring System) scale. This means that the flaws
can be attacked from the network, have a low complexity access level and
can completely compromise the ...
<http://www.computerworld.com/s/article/9233422/Cisco_recommends_McAfee_switch_for_IronPort_customers_hit_by_Sophos_flaws?taxonomyId=86>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.computerworld.com/s/article/9233422/Cisco_recommends_McAfee_switch_for_IronPort_customers_hit_by_Sophos_flaws%3FtaxonomyId%3D86&hl=en&geo=us>

Technology to Better Protect Mobile Devices to be Presented at IEEE
Homeland ...
Sacramento Bee
9, 2012 -- /PRNewswire-USNewswire/ -- ARM-based processors commonly found
in smartphones and tablet computers can contain security vulnerabilities
that make mobile devices more susceptible to hacking. Researchers from
University of California, ...
<http://www.sacbee.com/2012/11/09/4974462/technology-to-better-protect-mobile.html>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.sacbee.com/2012/11/09/4974462/technology-to-better-protect-mobile.html&hl=en&geo=us>

Patch Tuesday to fix vulnerabilities in Windows 8 and Surface
IT PRO
Listed as important, the vulnerability allows remote code execution if a
victim opens a malicious Office document. This bulletin is listed as
important because the attacker can't force the user to open a document;
they would have to be socially ...
<http://www.itpro.co.uk/644047/patch-tuesday-to-fix-vulnerabilities-in-windows-8-and-surface>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.itpro.co.uk/644047/patch-tuesday-to-fix-vulnerabilities-in-windows-8-and-surface&hl=en&geo=us>

Stuxnet issues rumble on as vulnerabilities remain
PC Pro
The company claims the ICS and SCADA software that controls industrial
hardware is riddled with problems, and the specific WinCC software attacked
in Iran still contains multiple vulnerabilities. For the first 8 months of
2012, 98 new vulnerabilities ...
<http://www.pcpro.co.uk/news/security/378046/stuxnet-issues-rumble-on-as-vulnerabilities-remain>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.pcpro.co.uk/news/security/378046/stuxnet-issues-rumble-on-as-vulnerabilities-remain&hl=en&geo=us>

Adobe Reader X Flaw 'Being Sold On Black Market For $50k'
TechWeekEurope UK
Cyber crooks are thought to be selling a zero-day vulnerability in Adobe
Reader X and packaging it up in the most prevalent exploit kit in the world
– Blackhole. Russian firm Group-IB claimed to have confirmed the Adobe
Reader flaw earlier this week ...
<http://www.techweekeurope.co.uk/news/adobe-reader-x-vulnerability-98721>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.techweekeurope.co.uk/news/adobe-reader-x-vulnerability-98721&hl=en&geo=us>

Microsoft warns of first critical Windows 8, RT security flaws
ZDNet
The latest vulnerabilities include three critical security vulnerabilities
for Windows 8, and one critical security vulnerability for the
Surface-based Windows RT operating system. These flaws are considered
"critical" and could allow remote code ...
<http://www.zdnet.com/microsoft-warns-of-first-critical-windows-8-rt-security-flaws-7000007175/>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.zdnet.com/microsoft-warns-of-first-critical-windows-8-rt-security-flaws-7000007175/&hl=en&geo=us>

Updated SkyBox risk and compliance management solutions
Help Net Security
Both products are available for customer download, as is Risk Control 6.5
with Vulnerability Detector, a next-generation solution for vulnerability
management that detects network vulnerabilities in an automated and
non-disruptive manner, without an ...
<http://www.net-security.org/secworld.php?id=13925>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.net-security.org/secworld.php%3Fid%3D13925&hl=en&geo=us>

3 critical updates for Windows 8 on Patch Tuesday
FierceCIO
November's Patch Tuesday contains a total of six bulletins that rectify a
total of 19 vulnerabilities. Four of these bulletins are tagged as
critical, with the final one flagged as important. Three of these critical
vulnerabilities affect all versions ...
<http://www.fiercecio.com/techwatch/story/3-critical-updates-windows-8-patch-tuesday/2012-11-09>
See all stories on this topic:
<http://news.google.com/news/story?ncl=http://www.fiercecio.com/techwatch/story/3-critical-updates-windows-8-patch-tuesday/2012-11-09&hl=en&geo=us>

This once a day Google Alert is brought to you by Google.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Delete this Google Alert:
http://www.google.com/alerts/remove?hl=en&gl=us&source=alertsmail&s=AB2Xq4h73uDuUaTj8-CUHcryQFnZut4U2bzcgRg

Create another Google Alert:
http://www.google.com/alerts?hl=en&gl=us&source=alertsmail

Sign in to manage your alerts:
http://www.google.com/alerts/manage?hl=en&gl=us&source=alertsmail