inside.
unomaha.edu
security rss feeds.
Below are several RSS feeds that concern computer and cybersecurity. We do not provide a comprehensive list of these feeds.
Popular apps need better patching, says report
News: Hacker charged with Heartland, other breachesHacker charged with Heartland, other breaches
News: Web attacks hit U.S., South Korean sitesWeb attacks hit U.S., South Korean sites
>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your
Enterprise RP rollout gets an A+.
http://www.findtechinfo.com/as/acs?pl=781&ca=909
FTC persuades court to shutter rogue ISP
Brief: Gov't warns firms about online robberiesGov't warns firms about online robberies
Understanding Denial-of-Service Attacks
ST04-014: Avoiding Social Engineering and Phishing AttacksAvoiding Social Engineering and Phishing Attacks
SA09-286B: Multiple Vulnerabilities Affect Adobe Reader and AcrobatMultiple Vulnerabilities Affect Adobe Reader and Acrobat
SA09-286A: Microsoft Updates for Multiple VulnerabilitiesMicrosoft Updates for Multiple Vulnerabilities
ST04-013: Protecting Your PrivacyProtecting Your Privacy
Gone through all of your privacy settings and now feel safer as a result? Read this and think again, because there are more things to take into consideration. by Zack Whittaker
Human x-ray machines: Coming soon to an airport near youIn the 1990 movie Total Recall, Arnold Schwarzenegger runs through a security check point using x-ray technology. Today that technology is being installed around the world at airports, border check points, marine ports and high risk security environments such as court buildings. by Doug Hanchard
Firefox, Chrome get quick fixesMozilla and Google have released new Firefox and Chrome browsers to fix bugs. The new Firefox patches one critical bug across Windows, Mac and Linux platforms. For Windows, Mac, and Linux, Mozilla Firefox 3.5.5 fixes three bugs: one critical bug across all platforms, and then one lower priority one...
Google Dashboard brings security settings to the forefrontKeeping user in mind, Google released Dashboard, a page that gives users access to the privacy settings for all of their Google accounts. by Sam Diaz
Frugal Friday: Verizon DROID, Intel Antitrust, V-Block, Oracle/EU, ICCAFrugal Networker Ken Hess and I discuss the new Verizon DROID smartphone, the recent Intel anti-trust complaint filed in the State of New York, the Oracle/Sun merger delays by the European Union, and speak with ICCA founder Steve Epner. by Jason Perlow
IBM is the second company in two days to suggest that the number of computers infected by the Conficker.C worm may be higher than previously thought.
Hackers seize on 0-day flaw in Microsoft's PowerPointMicrosoft warned Thursday that hackers are actively exploiting a software vulnerability in PowerPoint, the company's presentation application.
IBM continues push for Sun, but will the deal kill Solaris?The high-stakes, but still under-the covers battle by IBM to take over Sun Microsystems is still in play, but IBM may be rethinking what it is willing to pay for the enterprise vendor.
Bill would give feds role in private sector cybersecurityTwo U.S. senators are proposing legislation that would give federal officials significant new authority to create and enforce data security standards both for government agencies and key parts of the private sector.
Conficker may be more widespread than previously thoughtThe Conficker worm may have infected more machines than previously thought, according to Internet infrastructure provider OpenDNS.
The Postini technology that lets Google Apps Premier administrators control their e-mail environments by establishing and enforcing usage policies, rules and parameters will be extended to the other applications of the suite.
Gumblar malware's home domain is active againScanSafe researchers are seeing renewed activity regarding Gumblar, a multifunctional piece of malware that spreads by attacking PCs visiting hacked Web pages.
EU promises illegal downloaders a fair trialThe EU is introducing legislation that will ensure web users accused of illegally downloading are put through "fair and impartial procedure" before being disconnected.
You don't know tech: The InfoWorld news quizIntel earns New York's ire, Chinese iPhones don't inspire
Switchers Guide: Understanding Mac securityWhen it comes to security, using Windows can feel like living in the heart of a big city--the kind of place where you can install all the locks and alarms you want, but you still worry. The vast number of computer users who run Microsoft operating systems form the biggest, juiciest target cybercriminals could dream of. Which is why there are more than twenty-two million unique examples of Windows malware out there.
Bulletin Severity Rating:Critical - This security update resolves several privately reported vulnerabilities in Microsoft Windows GDI+. These vulnerabilities could allow remote code execution if a user viewed a specially crafted image file using affected software or browsed a Web site that contains specially crafted content. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
MS09-061 - Critical: Vulnerabilities in the Microsoft .NET Common Language Runtime Could Allow Remote Code Execution (974378)Bulletin Severity Rating:Critical - This security update resolves three privately reported vulnerabilities in Microsoft .NET Framework and Microsoft Silverlight. The vulnerabilities could allow remote code execution on a client system if a user views a specially crafted Web page using a Web browser that can run XAML Browser Applications (XBAPs) or Silverlight applications, or if an attacker succeeds in persuading a user to run a specially crafted Microsoft .NET application. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. The vulnerabilities could also allow remote code execution on a server system running IIS, if that server allows processing ASP.NET pages and an attacker succeeds in uploading a specially crafted ASP.NET page to that server and executing it, as could be the case in a Web hosting scenario. Microsoft .NET applications, Silverlight applications, XBAPs and ASP.NET pages that are not malicious are not at risk of being compromised because of this vulnerability.
MS09-060 - Critical: Vulnerabilities in Microsoft Active Template Library (ATL) ActiveX Controls for Microsoft Office Could Allow Remote Code Execution (973965)Bulletin Severity Rating:Critical - This security update resolves several privately reported vulnerabilities in ActiveX Controls for Microsoft Office that were compiled with a vulnerable version of Microsoft Active Template Library (ATL). The vulnerabilities could allow remote code execution if a user loaded a specially crafted component or control. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
MS09-059 - Important: Vulnerability in Local Security Authority Subsystem Service Could Allow Denial of Service (975467)Bulletin Severity Rating:Important - This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow denial of service if an attacker sent a maliciously crafted packet during the NTLM authentication process.
MS09-058 - Important: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (971486)Bulletin Severity Rating:Important - This security update resolves several privately reported vulnerabilities in the Windows kernel. The most severe of the vulnerabilities could allow elevation of privilege if an attacker logged on to the system and ran a specially crafted application. An attacker must have valid logon credentials and be able to log on locally to exploit any of these vulnerabilities. The vulnerabilities could not be exploited remotely or by anonymous users.