Feed aggregator

Details for the November Updates are out. Details are below. The short story is that, if you have a computer, it's critical that you stay on top of updates. We've provided links to the manufacturer's sites to download the updates and would be happy to help if you're not sure what or how to update.


November 2012 Patch Tuesday
helpdesk.cybertechcafe.net
We are still seeing a large number of computers that are compromised due to outdated versions of Java (some still running Java 6) and Adobe products (Flash Player and Reader). Your computer should be your next-to-last line of defense (the user at the console is the last line of defense) and needs t...

Today is just not Adobe's day.


Potentially massive hole in Adobe Acrobat that pierces the (previously solid) sandbox.
helpdesk.cybertechcafe.net
Details are sparse at this point but the linked article has a video demonstrating the vulnerability being exploited. According to the article, this vulnerability a) affects even fully up-to-date installations of Adobe Acrobat b) with Protected Mode on and c) with Javascript disabled. Additional de...

Adobe has posted an update to address a vulnerability in their Flash Player that could allow remote code execution. The vulnerability is reportedly cross-platform:


Adobe updates (cross platform) Flash Player vulnerability that can allow
helpdesk.cybertechcafe.net
Adobe posted an update for all platforms addressing a vulnerability in their Flash Player. Details are in the linked article but the short story is that, if you've got Adobe Flash player installed, you'll want to install the update.

In a long-overdue move (in my opinion), it looks like Adobe and Microsoft will be releasing updates together moving forward (I suspect that this would be better described as Adobe will be releasing updates at the same time as Microsoft). This can be a significant move on Adobe's part in protecting users from viruses and other malicious software since many viruses / malicious applications get installed by exploiting the vulnerabilities patched by the updates. Many users are either afraid to install the Adobe updates (because of several well crafted attacks using popups that look like legitimate Adobe update notifications) or just ignore the warnings and updates altogether. Update, update, update.


Microsoft and Adobe update / patch cycles in sync? Maybe. - Powered by Kayako Resolve Help Desk Sof
helpdesk.cybertechcafe.net
According tothis articleat ZDNet, it looks likeMicrosoftandAdobemay be in the process of syncing up their patch release cycles (in reality, this looks more like Microsoft is going to continue business as usual and Adobe is going to begin releasing regular updates in concert with the Microsoft monthl...

Kaspersky names Java top attack target...


Kaspersky names java top attack target
helpdesk.cybertechcafe.net
Two questions that I suspect that we'll be fielding on this are a) why is that important and b) why should you care. I'll try to quickly address both here but don't hesitate to let me know if I've missed anything.

What do viruses do on my computer, anyway? Why is it so important for me to install updates? Why a
helpdesk.cybertechcafe.net
This is a follow-up to my earlier article 'How do people make money off of Viruses' and is from an Internet Storm Center diary entry describing very simply what viruses do. Basically, the author has noticed some questionable traffic on his network that the antivirus completely missed and, after som...

Windows 8 already compromised?


Windows 8 already compromised?
helpdesk.cybertechcafe.net
Ok, for the record, our stance on new Microsoft operating systems is (and always has been) to hold off until at least Service Pack 1 and let someone else find all of the undocumented features. There have been a few exceptions here (Windows 98SE [yes, it was technically a new release and not a SP fo...

We're seeing more and more high-profile cases where attackers use compromised computers to steal data, take sites offline and do all sorts of other nasty stuff. This is an evolution from what we saw similar software do 20 years ago, or even 10 or perhaps 5 years ago. Antivirus companies though seem to still be taking the same steps against the malicious software that they always have, alert us and offer to delete or quarantine the malicious file(s). Is that enough? I've gotta side with the original author on this and say that no, it's just not enough. We have tools on the server side to notify us of changes (no, I'm not offering details), what was changed and when, but I don't know of anything that would be viable on the workstation side. Anyone have suggestions? Thoughts?


What *else* could (should?) antivirus software do?
helpdesk.cybertechcafe.net

How do criminals make money with malware? Here is a quick and dirty look at just one of the ways and a good reminder of why it's important to update (update, update, update).


How do people make money off of viruses? Read on...
helpdesk.cybertechcafe.net
A question that we get asked regularly is "How do people make money from viruses?". This is a topic that, for many, is hard to get their brain around. I've covered several ways to 'monetize' malware in the past but sawthis articlethis morning and wanted to share it with a quick op-ed.

If you're going to be trick-or-treating in downtown tomorrow, swing by Cyber Tech Cafe to grab some candy and say hi!


Welcome Trick-Or-Treaters on Wednesday! - Powered by Kayako Resolve Help Desk Software
helpdesk.cybertechcafe.net

We are currently experiencing problems with some outbound emails from Cyber Tech Cafe. We have troubleshot internally and confirmed that all equipment appears to be functioning properly and none of the servers have been blacklisted. The issue at this point appears to be with the ISP. We are working with them to get the issue resolved ASAP and will be posting to the link below as updates are available:


Temporary issue with outbound email from Cyber Tech Cafe
helpdesk.cybertechcafe.net

New update to Citadel trojan) banking trojan seems to be changing the game by allowing criminals / attackers to update and tweak attacks in real time. Evidence is sketchy at this point but this comes at the same time that some sites like JP Morgan, Bank of America and others suffered 'unexplained outages).

http://m.v3.co.uk/v3-uk/news/2218496/citadel-banking-trojan-upgrade-delivers-malware-on-the-fly