| |
 |
 |
 |
|
|
|
|
Welcome to the AusCERT web log, where AusCERT will informally discuss current activity and interesting developments in the area of information security, Internet security and computer network attacks.
This is a channel for the timely release of unstructured information which may not be suited to our standard bulletins or other publications. A trade off of providing timely information is that it may be unverified or contain inaccuracies. However, if the accuracy of information changes or new information comes to light about an issue, we will always endeavour to update our web log.
We welcome comments and corrections of any of the information contained in the blog. Please contact auscert@auscert.org.au to provide feedback.
ProFTPD, Plesk, Samba and notmuch else
- A quick look at some of the more interesting (or amusing) vulnerabilities for the week.
(24/02/2012)
Called and owned (but which way around)?
- A quick look at a good capture and analysis of a Comantra scam call.
(21/02/2012)
AusCERT week in Review for 17th February 2012
- Lots of major patches released, AusCERT conferences, and badgers badgers badgers...
(17/02/2012)
AusCERT Week in Review 10th February 2012
- AusCERT week in review 10/02/12
(10/02/2012)
AusCERT week in Review for 3rd February 2012
- When a smaller Vulnerability becomes a big one in PHP. Also, patches for the Mozilla family, Apache, Apple OS X Lion and make me a sandwich.
(03/02/2012)
AusCERT Week in Review 27th January 2012
- AusCERT week in review 27/01/12
(27/01/2012)
AusCERT week in Review for 20th January 2012
- AusCERT week in Review for 20th January 2012
(20/01/2012)
AusCERT Week in Review for 13th January 2012
- Microsoft black Tuesday, Cisco WPS brute force response, Wireshark release, and phish slapping
(13/01/2012)
Recent phishing emails from US-CERT addresses.
- Recent phishing emails from US-CERT addresses.
(11/01/2012)
AusCERT Week in Review for 6th January 2012
- Root compromise of krb5, Microsoft out-of-band bulletin, wordpress XSS, HP firmware update, and latest scam emails
(06/01/2012)
Is your PC infected?
- AusCERT has received malicious email messages relating to a scamware operation. At best this is credit card phishing, at worst could include data stealing malware and ransomware.
(06/01/2012)
AusCERT Week in Review for 23rd December 2012
- Week in review - week ending 23rd Dec
(23/12/2011)
Potential BSOD vulnerability in Windows 7
- Unofficial reports of a BSOD vulnerability in Windows 7 (64 bit version) are currently circulating
(21/12/2011)
New attacks in the wild expose users browser history.
- A new JavaScript attack allows sites to access browsing history of a visitor.
(21/12/2011)
AusCERT Week in Review for 16th December 2011
- Among the more exciting news this week, Angus Gardner joins AusCERT and Microsoft patches Duqu bug...
(16/12/2011)
All I want for Christmas is for MS to have a Package Management System
- For Christmas I'd like a humble, impartial, well designed, all encompassing, open and extensible Package Manager, for Microsoft Windows.
(09/12/2011)
Printers, the backdoor to your network
- Time has a habit of passing, and printers tend to be overlooked in the security equation.
(02/12/2011)
Welcome to Olivia, More Soccer and a week of patches
- I would like to welcome a new Information Security Analyst to join the AusCERT coordination centre team: Olivia Swann.
(25/11/2011)
BIND, Adobe, iTunes and a Heart Attack
- BIND needs patching for a DoS vulnerability. Adobe and Apple released some patches this week.
(18/11/2011)
AusCERT Week in Review for 11th November 2011
- The last week's worth of bulletins, alerts and advisories.
(11/11/2011)
Duqu, NJStar and other sources of interest
- The fun this week has among other things, graced us with a zero day vulnerability having it's way with the Windows kernel on behalf of malware called Duqu...
(04/11/2011)
Auditing positions at the Department of Public Works QLD
- Three IT Audit positions are currently being advertised for the Department of Public Works Queensland.
(18/10/2011)
The week of Steve Jobs, some security stuff and Marco Ostini
- We made the buttons on the screen look so good you’ll want to lick them.
(07/10/2011)
Adobe Flash Player 11 and AIR 3
- Adobe Flash Player 11 and AIR 3 release notes mention security updates
(05/10/2011)
Did I do that?
- Not Mr Steve Urkel this time, but rather Microsoft and Mozilla.
(03/10/2011)
What to patch with limited time?
- What should you patch on a friends computer if you only have a limited time with it.
(30/09/2011)
SSL (or is that Constantinople), Lockpicking and Patching
- SSL and/or TLS may be a little broken. Some things got fixed, and YouTube will teach you how to pick locks.
(23/09/2011)
Beware of the BEAST: New Attack Against TLS
- Two security researchers are planning to present proof-of-concept code, which they've nick-named BEAST, or Browser Exploit Against SSL/TLS, at the Ekoparty security conference in Buenos Aires this Friday.
(21/09/2011)
Bulletins a white paper and a job
- The end of another week and the start of ... the weekend
(16/09/2011)
Windows 8: "Tons of Security Features" announced
- The security community has been somewhat buzzing about Windows 8's new security features and there has been plenty of speculation as to what they will mean for the future of the anti-virus market.
(16/09/2011)
Malware: The Next Generation
- So what kind of new attack vectors does the future hold for malware development?
(15/09/2011)
The first full week in spring
- AusCERT did some cleaning, and software got some patching
(09/09/2011)
USB Malware
- Another day another presentation laptop infected (I assume).
(09/09/2011)
AusCERT Week in Review for 2nd September 2011
- The last week's worth of bulletins, alerts and advisories.
(02/09/2011)
Exploding Blowfish Sushi
- Ok, possibly not the most accurate title, but we do look into a recently patched many year old bug in some Blowfish implementations.
(01/09/2011)
Previous 1, 2, 3, 4 ... 10, 11, 12 Next
denotes AusCERT member only content.
|
|
|
|
 |
|
 |
|
|