Microsoft has released MS10-002 today. The update addresses 7 privately reported and 1 publicly reported vulnerability which is associated with the widely publicized attacks associated with Security Advisory 979352. There are four (4) Uninitialized Memory Corruption Vulnerabilities, two (2) HTML Object Memory Corruption Vulnerabilities, one (1) XSS Filter Script Handling Vulnerability, and one (1) URL [...]

We provide a public service on security alerts at Information Armor. Or subscribe to the RSS feed.

Holidays are the times when spammers and other anarchist types send malware related emails to everybody. Just because the holidays are now officially over, doesn’t mean your organization is safe. Many employees take vacation and the danger still exists in their mailbox awaiting for them to open. Email administrators may see an increase in infections [...]

A vulnerability was recently reported in Microsoft IIS. Microsoft has since completed its investigation and “found that there is no vulnerability in IIS.” However, “there is an inconsistency in IIS 6 only in how it handles semicolons in URLs. It’s this inconsistency that the claims have focused on, saying this enables an attacker to bypass [...]

Anti-malware testing group AV-Comparatives.org not only gave Microsoft Security Essentials a top rating for malware removal, but now they’ve given it their best ranking in their performance test as well. AV-Comparatives.org ran a series of real-world tests running through common scenarios like downloading, extracting, copying, and encoding files, installing and launching applications, and they also ran [...]

According to this article on ZDNet, you can get Free Backup of your cloud data. Not free as in Free Trial, but free forever. “If you sign up during this time period, you get unlimited storage, for free. You get an account that is not a free trial, not free for a limited time, free [...]

Adobe is indicating they have received reports of active exploitation of a 0day vulnerability affecting Adobe Reader and Acrobat 9.2 and earlier versions (CVE-2009-4324). We encourage our clients to use caution when opening PDF files. Links to malicious documents can easily be sent through spam or through links on seemingly non-malicious Web sites. We also [...]

Electronic holiday cards are a great way for high-tech fraudsters to spread viruses, Trojans, and other malware and the holiday season is the perfect time to receive them. Keep on your toes regardless of the sentiments. A safe practice when getting an eCard from a family member or friend is to call or email them [...]

Microsoft has released a few new patches. Please update your systems. Critical Level Microsoft Security Bulletin MS09-071 (Critical): Vulnerabilities in Internet Authentication Service Could Allow Remote Code Execution (974318) This security update resolves two privately reported vulnerabilities in Microsoft Windows. These vulnerabilities could allow remote code execution if messages received by the Internet Authentication Service [...]

According to statistics compiled by http://www.identitytheft911.com/, two to four identity theft crimes are reported every hour of the winter holiday shopping season. “The annual holiday shopping season is a peak time for identity theft, so it’s critical that consumers be on high alert and educate themselves in order to help reduce the risk of becoming [...]