AusCERT - Australia's Leading Computer Emergency Response Team

copyright | disclaimer | privacy | contact

HOME

About AusCERT

Membership

Contact Us

Report Incident

Training

Publications

Sec. Bulletins

Conferences

Certifications

News & Media

Services

National Home

Web Log

Site Map

Site Help

Member login



		AusCERT is the premier Computer Emergency Response Team (CERT) in Australia and a leading CERT in the Asia/Pacific region. AusCERT operates within a worldwide network of information security experts to provide computer incident prevention, response and mitigation strategies for members and assistance to affected parties in Australia. AusCERT operates the Australian government funded Stay Smart Online Alert Service, which is a part of the broader Stay Smart Online government initiative.



		ASB-2010.0040.2 - UPDATE [Win][UNIX/Linux] Squid: Denial of service - Remote/unauthenticated - Squid is susceptible to a denial of service caused by improper handling in DNS requests. (04/02/2010) ASB-2010.0038 - [Win][UNIX/Linux] Apache httpd 1.3.41 and earlier: Execute arbitrary code/commands - Remote/unauthenticated - An integer overflow in Apache httpd 1.3.41 and prior could lead to arbitrary code execution. (02/02/2010) ESB-2010.0072 - ALERT [Win] Internet Explorer: Multiple vulnerabilities - This security update resolves seven privately reported vulnerabilities and one publicly disclosed vulnerability in Internet Explorer. (22/01/2010) ESB-2010.0067 - [Win] CiscoWorks Internetwork Performance Monitor: Administrator compromise - Remote/unauthenticated - (21/01/2010) ESB-2010.0044 - ALERT [Win] Microsoft: Execute arbitrary code/commands - Remote with user interaction - A recently discovered vulnerability in Internet Explorer 6, 7 and 8 may allow remote code execution. This vulnerability is being actively exploited. (15/01/2010) More.. denotes AusCERT member only content.



		Week In Review - Keep patching those vulnerabilities. (05/02/2010) Australia Day Week Strong on Patches - The next holiday is not until around April, so you should probably find someone to update and patch the systems that have patches, and watch out for people attacking your databases. (29/01/2010) A Week Administrators Dread - Multiple zero days released, some even with public exploit code. (22/01/2010) More..



		AusCERT is on Twitter - Follow AusCERT's regular posts on Twitter (18/12/2009) Senate Select Committee enquiry into the National Broadband Network - The Senate Select Committee on the National Broadband Network has conducted an enquiry and invited submissions fr... (30/11/2009) Australian Paliament House of Representatives' cybercrime enquiry - The House of Representatives' Standing Committee on Communications has conducted an enquiry into cybercrime and invited subm... (30/11/2009) Australian government announces new national CERT arrangements for Australia on budget night - (24/11/2009) The risks borne by one are shared by all - web site compromises - The following paper was first published in the Strategic Path Business Data Strategy magazine, eZine and www.BDStrategy.com.au. ... (12/11/2009)



		Protecting your computer from malicious code This paper provides practical advice for protecting the PC desk top environment from malicious code for home users, SMEs or organisations without dedicated IT staff. Choosing good passwords Choosing a good password is a trade off between something that is difficult to guess versus something that is easy to remember. This article provides some simple rules of thumb on choosing good passwords (and good password policies). AusCERT RSS feeds of Security Bulletins This page discusses RSS bulletin feeds available from AusCERT and describes how to set them up. Report a computer security incident We are interested in reports about deliberate acts which harm or are intended to harm computer systems or compromise data within those system or which are otherwise illegal, whether directed towards, or emanating from Australian systems. How to become an AusCERT Member AusCERT is a not-for-profit organisation which relies on member subscriptions to cover its operating costs. By becoming an AusCERT member, your organisation will have access to timely, threat and vulnerability alerts and priority access to incident management services.