-
Recent Posts
Recent Comments
- Robin Stevens on Major Dridex Banking Malware Outbreak
- Michael Tombs on Major Dridex Banking Malware Outbreak
- Security News #0x88 | CyberOperations on CVE-2015-3456 ‘VENOM’ – And it was all going so well…
- Seema Knerr on Phishing Advice
- Horst Jung on GHOST in the Shell – CVE2015-0235
Archives
- November 2016
- June 2016
- January 2016
- November 2015
- September 2015
- June 2015
- May 2015
- February 2015
- January 2015
- November 2014
- October 2014
- September 2014
- August 2014
- July 2014
- June 2014
- May 2014
- April 2014
- January 2014
- November 2013
- October 2013
- September 2013
- July 2013
- April 2013
- February 2013
- January 2013
- December 2012
- July 2012
- April 2012
- March 2012
- October 2011
- August 2011
- June 2011
Categories
Meta
How To Train Your POODLE part I – Clients
As you may be aware, a serious vulnerability dubbed ‘POODLE’ has been discovered in SSL version 3.0. A successful POODLE attack could allow a malicious person (with network access) to decrypt an SSLv3.0 connection. What does that actually mean? Well, … Continue reading
Posted in Apple, Current Threats, Google, Microsoft
Comments Off on How To Train Your POODLE part I – Clients
Bash ‘Shellshock’ Bug – Now You Can Panic
UPDATE: The initial round of patches to fix CVE-2014-6271 have proven ineffective at fully resolving the issue; a new CVE code has been issued, “CVE-2014-7169“, use this to track news and updates regarding this bug and patch status. Remember Heartbleed? Get ready to … Continue reading
Posted in Apple, Current Threats, General Security, Web Security
Comments Off on Bash ‘Shellshock’ Bug – Now You Can Panic
Cruelty to cats: Apple’s new security support policy?
On Tuesday of last week, Apple proudly proclaimed the launch of their latest and greatest operating system, OS X 10.9 Mavericks. After over 12 years, they’ve finally run out of big cats and moved on to Californian placenames. What’s more, … Continue reading
Posted in Apple, General Security
1 Comment
Apple support lifetimes strike again
Wednesday saw the official launch of Apple’s iOS version 7, the operating system behind the iPhone, iPad and iPod Touch. But as with some previous updates, there’s a bit of a sting in the tail. I’ve complained about Apple’s security … Continue reading
Posted in Apple, General Security
2 Comments
Musings on Mac Malware
Over the past couple of weeks, OxCERT have been somewhat overwhelmed by Mac malware. This isn’t quite the first time we’ve dealt with problems on Macs – we’ve seen several compromised over the years through weak or exposed ssh credentials, … Continue reading
Posted in Apple, General Security
10 Comments
Apple and security support
In a companion article I discuss Mac malware, and how this has recently become much more of a problem than has previously been the case. As well as Apple’s apparently slow response to a recent vulnerability, and general air of … Continue reading
Posted in Apple, General Security
13 Comments