windows – Page 52 – Computer Security Articles

Credit to Author: Woody Leonhard| Date: Sat, 15 Jul 2017 13:16:00 -0700

I just received word from Gunter Born that Microsoft has pulled three of its Outlook patches:

KB 4011042 – July 5, 2017, update for Outlook 2010
KB 3191849 – June 27, 2017, update for Outlook 2013
KB 3213654 – June 30, 2017, update for Outlook 2016

As I mentioned last week, Microsoft still hasn’t fixed any of the Office 2007 bugs it introduced in the June security patches.

To read this article in full or to leave a comment, please click here

ComputerWorld Independent

Restricting Firefox to TLS version 1.2 makes browsing safer

July 13, 2017 admin Android, internet, MacOS, Security, software, windows

Credit to Author: Michael Horowitz| Date: Thu, 13 Jul 2017 19:43:00 -0700

Although its common to think of a secure website as the opposite of an insecure one, the choice is not, in fact, binary. For a website to be truly secure, there are about a dozen or so ducks that all need to be lined up in a row.

Seeing HTTPS does not mean that the security is well done, secure websites exist in many shades of gray. Since web browsers don’t offer a dozen visual indicators, many sites that are not particularly secure appear, to all but the most techie nerds, to be secure nonetheless. Browser vendors have dumbed things down for non-techies.

Last September, I took Apple to task for not having all their ducks in a row, writing that some of their security oversights allowed Apple websites to leak passwords.

To read this article in full or to leave a comment, please click here

ComputerWorld Independent

Kill it! Kill Windows XP now!

July 10, 2017 admin Security, windows

Credit to Author: Steven J. Vaughan-Nichols| Date: Mon, 10 Jul 2017 04:20:00 -0700

The headline — “HMS Queen Elizabeth is ‘running outdated Windows XP’, raising cyber attack fears” — was startling, but wrong. The United Kingdom’s newest aircraft carrier wasn’t running Windows XP. But some of the contractors that built the warship were.

The U.S. Navy, meanwhile, has been purchasing Windows XP support, at least through this year, so odds are our military still has XP systems running to this very day.

To read this article in full or to leave a comment, please click here

ComputerWorld Independent

With Patch Tuesday imminent, make sure you have Automatic Update turned off

July 10, 2017 admin Security, windows

Credit to Author: Woody Leonhard| Date: Mon, 10 Jul 2017 04:17:00 -0700

In case you hadn’t noticed, Microsoft has had a tough time with patches this year. From a total lack of patches in February (except for a late IE patch), to yanked and reissued botched patches that followed, to a jumble of problems with Windows and Office patches — including seven admitted bugs in last month’s Office patches — Microsoft has proved itself adept at Jack-in-the-box patching. You don’t have to join the legions of unpaid patch beta testers.

To read this article in full or to leave a comment, please click here

ComputerWorld Independent

Microsoft releases 15 Office patches for July, but some June bugs still stink

July 6, 2017 admin Security, windows

Credit to Author: Woody Leonhard| Date: Thu, 06 Jul 2017 07:23:00 -0700

On Patch Wednesday of this week, Microsoft said it released 14 non-security Office updates, covering such fascinating topics as improved Dutch translations in Word 2013, Danish translations in Access, and Finnish and Swedish translations in Excel. Typical first Tuesday stuff.

Microsoft neglected to mention that it also shipped a fix for the bugs introduced by last month’s patches to Outlook 2010. Dubbed KB 4011042, the neglected fix appears to be a non-security patch that fixes bugs created by a security patch — a red flag for many advanced patchers.

To read this article in full or to leave a comment, please click here

ComputerWorld Independent

The ancient Microsoft networking protocol at the core of the latest global malware attack

July 6, 2017 admin malware, Security, windows

Credit to Author: Preston Gralla| Date: Thu, 06 Jul 2017 03:20:00 -0700

Another day, another global malware attack made possible by a Microsoft security hole. Once again, attackers used hacking tools developed by the U.S. National Security Agency (NSA), which were stolen and subsequently released by a group called Shadow Brokers.

This time around, though, the late-June attack apparently wasn’t ransomware with which the attackers hoped to make a killing. Instead, as The New York Times noted, it was likely an attack by Russia on Ukraine on the eve of a holiday celebrating the Ukrainian constitution, which was written after Ukraine broke away from Russia. According to the Times, the attack froze “computers in Ukrainian hospitals, supermarkets, and even the systems for radiation monitoring at the old Chernobyl nuclear plant.” After that, it spread worldwide. The rest of the world was nothing more than collateral damage.

To read this article in full or to leave a comment, please click here

ComputerWorld Independent

Microsoft, please stop doing things for our own good

June 27, 2017 admin Security, windows

Credit to Author: Steven J. Vaughan-Nichols| Date: Tue, 27 Jun 2017 08:22:00 -0700

For over 20 years, Microsoft stomped on its competitors and then defended itself against the resulting antitrust lawsuits. But with desktop Windows waning in importance and its desktop software rivals largely gone, Microsoft seemed to have turned a new leaf. Or had it?

In the one software sphere left where it still has rivals — antivirus and security software — Microsoft is up to its old anti-competitive tricks. Late last year, Eugene Kaspersky, founder of the eponymous antivirus company, said, “When you upgrade to Windows 10, Microsoft automatically and without any warning deactivates all ‘incompatible’ security software and in its place installs… you guessed it — its own Defender antivirus. But what did it expect when independent developers were given all of one week before the release of the new version of the OS to make their software compatible?”

To read this article in full or to leave a comment, please click here

MalwareBytes Security

Solution Corner: Malwarebytes Incident Response

June 22, 2017 admin Adware, cloud, cyberthreats, forensics, Incident Response, Mac OS, malware, Malwarebytes Incident Response, Malwarebytes news, Product updates, PUP, Security, threat hunting, windows

Credit to Author: Dana Torgersen| Date: Thu, 22 Jun 2017 19:40:41 +0000

Unless you’ve been stuck at a fiery music festival, I don’t need to tell you the threat landscape is constantly evolving and that threats have become increasingly sophisticated at evading detection. Recent Malwarebytes Labs reports, including the 2017 State of Malware shine a light on just how fast these threats continue to spread around the…

Categories:

Tags: adware cloud cyberthreats forensics Incident Response Mac OS malware Malwarebytes Incident Response PUP security threat hunting windows

(Read more…)

The post Solution Corner: Malwarebytes Incident Response appeared first on Malwarebytes Labs.