AusCERT - AusCERT Week in Review for 18th January 2013

AusCERT Week in Review for 18th January 2013

Date: 18 January 2013
Original URL: http://www.auscert.org.au/render.html?cid=7066&it=16858

Greetings,

Over time, various forms of network connected information technology have made their ways into our day to day lives in various forms. Often it's chosen, as when buying a computer, laptop, tablet or smartphone. On other occasions it seems to come along for the ride, like in cars for example (pardon the pun), or home appliances. The "connect all things to the Internet" attitude is included in a concept called the "Internet of Things".

Respected security researcher Troy Hunt recently considered the security implications of our homes and things within like lights, locks, thermostats and garage doors chatting away on the Internet. They promise to provide us with wonderful new levels of convenience, but are most unlikely to be "totally secure". Not content with customised versions of PleaseRobMe.com for your home, Troy also delves into security concerns within medical devices, cars and even wall ovens. This is a highly recommended read.

For the average person, their "Smart TV" is likely to be the first appliance that's hacked. Better that than a pacemaker, but wouldn't it be nice if due to good design these perplexing problems are avoided all together. :)

Research is currently under way by the US Army and others into ways of using electromagnetic waves to infiltrate sealed networks. The capabilities being sought would make it possible to extract data from and injecting data into sealed cable networks. According to The H Security, "relevant technology already exists and is sufficiently light and compact to be carried by a single individual. There are, however, still significant range and bandwidth limitations." Something new for people defending networks to consider.

Melbourne will be host to the next AusCERT Security on the Move, being held on 14 March 2013 at the Intercontinental Melbourne The Rialto, 495 Collins Street. Presenters include Malcolm Shore, Allex Tilley, and our own Graham Ingram & Angus Gardner.

Presenting at one of the AusCERT Information Security Conferences is a great experience, and looks rather good in a CV too! While the CFP for AusCERT2013 is still open, time is running away with only two weekends left to submit your presentation proposal. The more technical and cutting edge, the better! The CFP closes on the 31st January 2013. Get to it!

So if you've not already attended to them, here are my top 5 patches/actions for the week:

1) ESB-2013.0076 - ALERT [Win] Microsoft Internet Explorer: Execute arbitrary code/commands - Remote with user interaction

So important that Microsoft released this patch out-of-band. Deploy now!

2) ASB-2012.0169.2 - UPDATED ALERT [Win][VMware ESX][RedHat][Solaris][AIX] [SUSE] Novell eDirectory: Multiple vulnerabilities

With exploit code for a remote root compromise in the wild, if you rely on eDirectory as core infrastructure, this update is a requirement!

3) ASB-2013.0006 - ALERT [Win][UNIX/Linux][Mobile] JDK and JRE 7 Update 10 and earlier: Execute arbitrary code/commands - Remote with user interaction

With CVE-2013-0422 getting plenty of malicious attention, deploying this update is a serious priority.

4) ASB-2013.0007 - ALERT [Win][UNIX/Linux] Oracle Products: Multiple vulnerabilities

Like the Death Star of updates. Enormous, and capable of doing some real damage if not attended to.

5) ESB-2013.0083 - ALERT [Win][UNIX/Linux] Adobe ColdFusion: Multiple vulnerabilities

ColdFusion vulnerabilities have been actively abused in the not too distant past, and there are some beauties that need fixing with this patch.

Stay safe,
Marco