October 19, 2009 11:54 PM
Posted by: Ken Harthun
Browsers,
insecure,
Microsoft,
Remote Code Execution,
Security,
VulnerabilitiesWhen I fired up my laptop the other day, I was greeted with this pop-up box:
![]()
October 12, 2009 12:32 AM
Posted by: Ken Harthun
Microsoft Windows,
Security bulletin,
VulnerabilitiesMicrosoft Security Response Center's October 2009 Bulletin Release Advance Notification:
For October we are releasing 13 bulletins...
September 16, 2009 6:38 PM
Posted by: Ken Harthun
Ethical hacking,
Hacking,
Password,
Security,
VulnerabilitiesMy most recent post, Hacker Skills Help Save a Client’s PC, is a real-life practical example of how honing (or developing) your hacking skills can help you better serve your clients. So...
September 8, 2009 11:37 PM
Posted by: Ken Harthun
Critical update,
insecure,
Microsoft Windows,
Networking,
Patch management,
Patch Tuesday,
Remote Code Execution,
Security,
Security bulletin,
Vulnerabilities,
Wireless securityAll of them are critical, but not a single one of them affects Windows 7, scheduled for release on October 22.
The most dangerous flaw covered by this month’s batch of patches is a remote code execution vulnerability in the way that the JScript scripting engine decodes script in Web...
August 16, 2009 9:51 PM
Posted by: Ken Harthun
Attack Surface,
Critical update,
insecure,
Linux,
Opinion,
Security,
VulnerabilitiesLinux proponents often gloat over the seeming lack of security vulnerabilities in the Linux kernel when compared to Microsoft Windows; Windows proponents counter saying that Linux is just enjoying “security through obscurity.” Seems the Windows people may be justified to some degree as...
August 14, 2009 7:18 PM
Posted by: Ken Harthun
Email security,
Exploits,
Gmail,
insecure,
Password,
Secure Computing,
Security,
VulnerabilitiesThere’s a vulnerability affecting Gmail accounts that was recently announced by security researcher Vincente Aguilera Diaz. You can read the posting on the Full Disclosure security list which contains complete...
August 12, 2009 12:39 AM
Posted by: Ken Harthun
Critical update,
Exploits,
Patch management,
Patch Tuesday,
Security,
Security management,
VulnerabilitiesIt’s that day of the month again and this time Microsoft has patched 19 security holes, 15 of which have a “critical” rating. The good news is that none of the vulnerabilities affect Windows 7. As usual, a bunch of the flaws stem from ActiveX controls, probably the worst thing...
August 8, 2009 1:15 PM
Posted by: Ken Harthun
Cyber-vandal,
Exploits,
Hacking,
Password,
Security,
Security management,
SQL Injection,
VulnerabilitiesThis is simply idiocy—or gross negligence—of the highest degree. In the last week, more than a dozen US Representatives’ websites were defaced by hackers who posted digital graffiti on the home pages. The graffiti read, “H4ck3d by 3n_byt3 @ Indonesia H4ck3rs” (see screen shot). There was...
August 7, 2009 6:50 PM
Posted by: Ken Harthun
Attack Surface,
Microsoft Windows,
Secure Computing,
Security,
VulnerabilitiesI’ve heard this phrase bandied about in Linux forums and in the occasional blog post, but it’s something I never considered relative to the security of Windows boxes. There’s an awful lot of research on the subject and it boils down to this: The larger the attack surface, the more...
