Microsoft patches – happen every 2nd Tuesday (until this policy changes with Windows10) https://technet.microsoft.com/en-us/library/security/ms15-nov.aspx Ms15-112 through MS15-123 are various patches that need to be patched, just remember to not download Windows 10, or at least not to install it until you are ready. A full Windows Operating System upgrade is not so easy and actually … Read more
This image explains (from PCWorld Article) The Ransomware image that can occupy your computer if you had the misfortune of downloading the wrong item (malware – virus, etc). Or if your computer was already Pwned (taken over somehow by criminal hackers) and then the criminal sold your computer access to the Ransomware criminal. That is … Read more
SecTor presentation by Kristin Lovejoy at http://2015.video.sector.ca/video/144598380 There are several business disrupters: The Cloud is changing how software is developed and thus how security should look at the cloud Agile Programming methodology is changing not just how we develop software but also how we look at security. Agile programming is reducing the time from … Read more
It is an interesting document from the stateoftheinternet.com https://www.stateoftheinternet.com/downloads/pdfs/SpamBot-Investigation-whitepaper-R3.pdf This botnet had 83,000 unique infections (which include webservers running all operating systems) And on page 6 where the researchers revealed the botnet: Using these logged responses, we found that the size of this botnet is fairly large. Over 1,400,000 (including duplicates from the c2) probe requests … Read more
Aanchal Malhotra, Isaac E. Cohen, Erik Brakke, and Sharon Goldberg wrote a paper (out of Boston University) http://www.cs.bu.edu/~goldbe/papers/NTPattack.pdf “Attacking the Networking Time Protocol” Apparently if your servers and clients (which all have NTP) have their time changed can affect various processes. To Attack … Change time by … TLS Certs … Read more
