Tag Archives: breach

Goodbye Windows XP

It’s nearly time to say goodbye Windows XP. This past April marked the one year count-down to the eventual discontinuation of support for the venerable operating system (technically on April 8, 2014). What does this mean to you? In short, it’s high time you moved on and adopted Windows 7 or Windows 8. Windows XP […]

Oracle closes critical Java vulnerability

Oracle announced today the release of updates for Java versions 5, 6, and 7 to patch a critical java vulnerability actively being exploiting in the wild. The patches were reportedly slated for release in April but the timetable was pushed up in response to a recent report demonstrating the active exploit. This further prolongs the […]

Anti-virus software alone is not enough

“Anti-virus software alone is not enough”… so says the number one antivirus provider Symantec in this post. A rather stunning admission I would say, and something many in the security industry have known for quite some time. The admission comes on the heels of the successful infiltration of the New York Times by Chinese hackers […]

Yet Another Java Zero-Day

Researchers at the respected security firm FireEye have discovered yet another Java zero-day attack that leverages previously unknown vulnerabilities with the latest versions of Java (as of this writing Java v1.6 Update 41 and Java v1.7 Update 15) to install malware. This comes on the heels of a discovery of two other holes (as yet […]

Evernote hack results in forced password change

Evernote is a really cool app. I use it heavily in conjunction with David Allen’s “Getting Things Done” system to organize my day and achieve my goals. I also use it for more mundane tasks such as grocery lists. I use it on my PC, my iPad, and my Android phone – it syncs up […]

Apple also a victim of targeted malware attack

Apple revealed today that they were targeted by the same malware attack leveled against Facebook on February 1st. The earlier comments by Facebook hinted at a working group of high-value targets and Apple now appears to be among them. The attack took advantage of a previously unknown Java zero-day exploit to infect the engineers’ computers […]

Adobe has scheduled an update for last week’s Acrobat zero-day

Adobe announced in a blog post that they will issue updates for version XI, X, and 9 to close the zero-day hole revealed last week. The patch will be released for Windows, Linux, and Macintosh operating systems. All users are advised to install the patch as soon as it becomes available. Thom Infotech encourages Adobe […]

Facebook is apparent victim of a Java zero-day attack

Facebook has confirmed that they were a victim of a targeted attack that leveraged a previously unknown Java vulnerability. The zero-day exploit was used to infect the laptops of several engineers with malware that apparently was used to attempt a full-scale infiltration of the inner sanctum of Facebook. Facebook reported that all of the infected […]

Adobe issues two Flash zero-day patches

Today, a Security Bulletin (APSB13-04) has been posted to address security issues in Adobe Flash Player 11.5.502.146 and earlier versions for Windows and Macintosh, Adobe Flash Player 11.2.202.261 and earlier versions for Linux, Adobe Flash Player 11.1.115.36 and earlier versions for Android 4.x, and Adobe Flash Player 11.1.111.31 and earlier versions for Android 3.x and […]

Oracle releases emergency patches for Java

Oracle has released a sizable number of patches for Java to address 50 vulnerabilities affecting both the browser versions as well as the server. The “Critical Patch Update February 2013” (CPU) for Java had been scheduled for February 19th, but due to one of the vulnerabilities being exploited in the wild, the company brought the […]