Archiv für die Kategorie: Cisco Security Notice

By Peter Romness Did you know that October is National Cyber Security Awareness Month ? Here at Cisco, we understand how important cybersecurity is in today’s interconnected world. Because the Internet touches an increasingly large part of our lives, it’s necessary to engage and educate the public about how to stay protected. While we highlight the importance of cybersecurity in October, at Cisco we have initiatives and programs in place to make sure the education continues throughout the rest of the year as well. We start from the […]

Source:: Cisco Security Notice

By Dan Hubbard ” We are happy to announce the final schedule for IRespondCon. A conference that we host at OpenDNS that is specifically designed for Incident Responders in Information Security. IRespondCon is a day of free training, presentations, and networking with some of the top engineers, instructors, and fellow responders all around how to better use freely available tools and open source to help defend. The Agenda (subject to minor changes is as follows): Lenny Zeltser, SANS Institute: How to Run Malware […]

Source:: Cisco Security Notice

By Tom Powledge In Greek mythology, Sisyphus was a trickster king cursed with the eternal torment of fruitless labor. As punishment for his hubris and wile, Zeus condemned this hapless figure to the unending task of pushing a boulder up a mountain. Once he reached the top, the boulder would fall back down. And he would begin again. And again. Every day. Forever. I suspect that it will not be a great imaginative leap for those of you in the in the information […]

Source:: Cisco Security Notice

By Talos Group Cisco is committed to improving the overall security of the products and services our customers rely on. As part of this commitment, Cisco assesses the security of software components used in our products. Open source software plays a key role in many Cisco products and as a result, ensuring the security of open source software components is vital, especially in the wake of major vulnerabilities such as Heartbleed and Shellshock. In April 2014, the Linux Foundation spearheaded the creation of […]

Source:: Cisco Security Notice

By Talos Group This post was authored by Marcin Noga with contributions from Jaeson Schultz . Have you ever thought about how security researchers take a patch that has been released, and then reverse it to find the underlying security issue? Well, back In July Microsoft released security bulletin MS15-072, titled: “Vulnerability in Windows Graphics Component Could Allow Elevation of Privilege (3069392)”. According to Microsoft, this vulnerability “could allow elevation of privilege if the Windows graphics component fails to properly process bitmap conversions.” Talos decided to have […]

Source:: Cisco Security Notice