MS14-068 has been issued an out-of-band patch, as mentioned at Darkreading This is a Server patch – for Windows 2008, and Windows 2012 patch, this is a critical patch due to Kerberos authentication needing this fix. SANS Dr. Ullrich has a statement: ” Ullrich says privilege escalation rarely gets the critical rating because the step of … Read more
beyondtrust.com has the information MS14-066 was patched in November patch Tuesday (Nov 11). and here is the details: Unfortunately for those machines that do not patch regularly, the Microsoft patch allows the reverse engineer to figure out what was patched and then create a hack/Proof of Concept – POC) We can now see that … Read more
How can you tell if malware is in your network? As the PCRE post at Internet Storm Center says: You can check your logfiles for certain signatures using “Perl Compatible Regular Expressions” (PCRE) Perl is a scripting programming language perl.com gets into some of it’s details. Of course that assumes you have a proxy server and … Read more
The site http://insecam.com/ has set up thousands of links to insecure cameras that are online. 4717 cameras in USA including many that are inside homes. A couple in New Jersey http://www.insecam.cc/cam/bycity/Absecon/ Including Chesterfield, MO http://www.insecam.cc/cam/bycountry/US/?page=120 Please log into your camera and change the default password. Changing default passwords should be done to all devices right when you … Read more
US-CERT (Computer Emergeny Readyness Team) reminds us that Support is ending soon(July 14, 2015). Microsoft says there are 24 million instances still running 2003 server. It is time to upgrade, for those of you still running Windows Server 2003, or at least put in a plan to replace the system with a 2012 machine by … Read more
