Archive for Updates

Mac Malware Discovered

By Eriq on March 30, 2012 No Comments

Just when you thought that you’d be safer on the Internet using a Mac over a PC comes another reminder that your Mac needs malware protection just like PCs do. Graham Cluley, writing to the Naked Security blog for Sophos, writes in a post dated March 30 that a new Mac malware threat has surfaced this past week. The threat comes in by taking advantage of unpatched Microsoft Office for the Mac, specifically Microsoft Word. The vulnerability exists in Office 2004 and 2008 for the Mac, but not in Office 2011 for the Mac. If you have been updating your Office for Mac software regularly, you should be protected against this particular threat, as the patches for it were released in June of 2009. Still, if you want to double-check that you have the correct update installed, here is the update information for the Office Mac software:

Office 2004 – Version 11.5.5

Office 2008 – Version 12.1.9

If you have a later version of Office Mac installed, you are protected against this particular threat. How can you tell which version you have installed? Follow these steps to find out:

  1. Open the Finder on your Mac.
  2. Open the Applications folder on your Macintosh hard drive.
  3. Find and open the Office for Mac version that you are running (Microsoft Office 2004 or Microsoft Office 2008).
  4. Open the Office folder inside the main Microsoft Office folder.
  5. Find and select the file named Microsoft Component Plugin.
  6. From the File menu, select Get Info or Show Info (will depend on which version of Mac OS X you are running).
  7. If the version shows 11.5.5 or later for Office 2004 or 12.1.9 or later for Office 2008, you are protected.
If nothing else, take your next opportunity to run the Microsoft Office Autoupdater to update your Mac Office version. While you’re at it, it can’t hurt to run Software Update on your Mac and ensure that you’re running the latest update for Mac OS X. And, as always, don’t open unusual or unexpected file attachments that you get in e-mail.
Categories : News
Tags : , , ,

Security Update October 2011

By Eriq on October 13, 2011

On Tuesday, October 11, 2011, Microsoft released their latest round of security patches for their entire software suite. This is what’s considered a “light month” as there are few updates that have been released, but most of them considered critical. The ISC Diary analysis of the updates from Sans.org can be found at https://isc.sans.edu/diary.html?storyid=11779. Sophos has released their analysis of the security updates and that report can be found at http://nakedsecurity.sophos.com/2011/10/11/patch-tuesday-october-2011-8-bulletins-2-critical/.

As always, EON Consulting strongly recommends installing updates on individual computers and workstations as soon as possible after they are released, especially when there are critical updates released for commonly-used tools like Internet Explorer and Adobe utilities. Customers under our maintenance plans will have their servers updated with the appropriate updates this coming weekend. If you would like additional information about our server maintenance offerings, please contact us and we will be happy to discuss how we can help your business stay protected.

 

Categories : News
Tags : ,

Security Updates September 2011

By Eriq on September 15, 2011 No Comments

On Tuesday, September 13, 2011, Microsoft released their latest round of security patches for their entire software suite. This is what’s considered a “light month” as there are few updates that have been released, but several of them considered critical. The ISC Diary analysis of the updates from Sans.org can be found at https://isc.sans.edu/diary/Early+Patch+Tuesday+Today+Microsoft+September+2011+Patches/11551. Sophos has released their analysis of the security updates and that report can be found at http://nakedsecurity.sophos.com/2011/09/14/patch-tuesday-for-september-what-you-need-to-know/.

Adobe has released one update this month as well. This is a major update as it addresses a dozen vulnerabilities in their product. Links to this update can be found on the Adobe web site at http://www.adobe.com/support/security/bulletins/apsb11-24.html.

As always, EON Consulting strongly recommends installing updates on individual computers and workstations as soon as possible after they are released, especially when there are critical updates released for commonly-used tools like Internet Explorer and Adobe utilities. Customers under our maintenance plans will have their servers updated with the appropriate updates this coming weekend. If you would like additional information about our server maintenance offerings, please contact us and we will be happy to discuss how we can help your business stay protected.

 

Categories : Uncategorized
Tags : , ,

Security Updates August 2011

By Eriq on August 10, 2011 No Comments

On Tuesday, August 9, 2011, Microsoft released their latest round of security patches for their entire software suite. This is what’s considered a “big month” as there are a number of updates that have been released, several of them considered critical. The ISC Diary analysis of the updates from Sans.org can be found at http://isc.sans.org/diary/Microsoft+August+2011+Black+Tuesday+Overview/11341. Sophos has released their analysis of the security updates and that report can be found at http://nakedsecurity.sophos.com/2011/08/10/patch-tuesday-august-2011-13-updates-22-vulnerabilities/.

Adobe has released a number of security updates this month as well. Links to those updates can be found on the Adobe web site at http://blogs.adobe.com/psirt/2011/08/adobe-product-security-updates-available-2.html.

As always, EON Consulting strongly recommends installing updates on individual computers and workstations as soon as possible after they are released, especially when there are critical updates released for commonly-used tools like Internet Explorer and Adobe utilities. Customers under our maintenance plans will have their servers updated with the appropriate updates this coming weekend. If you would like additional information about our server maintenance offerings, please contact us and we will be happy to discuss how we can help your business stay protected.

Categories : News
Tags : , , ,

Security Updates February 2011

By Eriq on February 10, 2011 No Comments

On Tuesday, February 8, 2011, Microsoft released their latest round of updates. This month is a “big” month in terms of the number and severity of updates, but it’s far from the record-setting months we’ve seen in the last year. You can read about the specific updates, what they address, and their severity levels from these two sites:

http://isc.sans.edu/diary/February_2011_Microsoft_Black_Tuesday_Summary/10375

http://blogs.technet.com/b/srd/archive/2011/02/08/assessing-the-risk-of-the-february-security-updates.aspx

EON Consulting will coordinate with our maintenance customers for installing updates on their servers this coming weekend. We also encourage our customers to patch their workstations immediately by going to http://update.microsoft.com/microsoftupdate and following the instructions there to download and install the latest updates, as there are active attacks against the vulnerabilities fixed in the Internet Explorer updates.

Categories : Uncategorized
Tags : ,

Security Updates January 2011

By Eriq on January 12, 2011

On Tuesday, January 11, Microsoft released their monthly release of security updates. The two updates released may seem like a small number, but one of the updates is critical. Our preferred go-to source for vulnerability assessment, the Internet Storm Center, has released their own assessment of the patches at http://isc.sans.edu/diary.html?storyid=10252.

As always, we encourage everyone to install updates from Microsoft when the yellow shield appears in the taskbar of your Windows-based computer. You can also manually check for updates from Microsoft at any time by going to http://update.microsoft.com/microsoftupdate and following the instructions there.

Categories : News
Tags : ,

Adobe Releases Critical Flash Update

By Eriq on November 9, 2010 No Comments

Last Thursday, November 4, 2010, Adobe released a critical update for Flash on all supported platforms (http://www.adobe.com/support/security/bulletins/apsb10-26.html). Adobe recommends all Flash installs be updated to address the vulnerabilities identified in the security update. If you are prompted to update flash the next time you log in to your computer, EON Consulting recommends that you go ahead and install the update. If you are not prompted to update, or you want to manually install the update yourself, use the links at the bottom of the linked page at Adobe to download and run the updater for your platform.

Categories : News
Tags : , , ,

Security Updates October 2010

By Eriq on October 14, 2010

Hang on to your hats, folks, its a big month for updates!

This past Tuesday, October 12, 2010, Microsoft released their slate of monthly updates, and it’s another record-setting month – 16 update bulletins released for some significant issues that need action. Microsoft has released their assessment of the severity of the updates at http://blogs.technet.com/b/srd/archive/2010/10/12/assessing-the-risk-of-the-october-security-updates.aspx, and the Internet Storm Center has posted its take on the updates at http://isc.sans.edu/diary.html?storyid=9736. There are fixes for Internet Explorer, which should immediately be patched, along with the first appearance of an update for Office 2010. The Excel update applies to the Mac version of Office as well. Mac users will have to manually run the Autoupdate Tool for Office to get these updates downloaded and installed, most other PCs should have the updates available (provided Automatic Updating has been configured properly on Windows-based workstations).

This is also a significant update month for Adobe, as October is one of their scheduled “patch tuesday” months (Adobe has committed to releasing updates every quarter on the second Tuesday of the month). Of course, because of a significant vulnerability in Adobe code, they bumped up their release schedule to the first Tuesday, or October 5, so hopefully you’ve already received notifications about a critical update for Adobe products and have installed them. If you want more information about Adobe security updates, the company maintains an update page at http://www.adobe.com/support/security/

With the increasing complexity and interdependence of software updates on Windows-based server products, maintaining Windows-based servers is more involved than just downloading and installing updates. EON Consulting offers a service for our customers where we manage the security update process for Windows-based servers for a nominal monthly charge. We evaluate and test the updates in-house and determine if there are updates that should be installed separately (instead of installing all updates at once) or updates that can be delayed in installation because of potential conflicts with other updates. If your business is not already subscribed to our monthly maintenance package for your Windows-based servers, give us a call at 940-220-7138 to find out how we can help you eliminate the confusion and hassle of keeping track of the update process yourself.

Categories : News
Tags : , , ,

Security Update September 2010

By Eriq on September 15, 2010

On Tuesday, September 14, Microsoft released their monthly release of security updates. The nine updates released address a number of security vulnerabilities, some with active attacks in the wild already. Microsoft’s Security Research & Defense team pas posted a list of the bulletins and their severity levels at http://blogs.technet.com/b/srd/archive/2010/09/14/assessing-the-risk-of-the-september-security-updates.aspx. Our preferred go-to source for vulnerability assessment, the Internet Storm Center, has released their own assessment of the patches at http://isc.sans.edu/diary.html?storyid=9547.

While several of the updates are rated as Critical, there are very specific circumstances that must be present before the vulnerability could be reached. Most of our customers are in the low-risk category for most of these vulnerabilities. But we still encourage all of our customers to keep their workstations patched as soon as the updates become available. If you see the yellow shield in your computer’s task bar in the bottom right-hand corner of the screen, we encourage you to click on the shield and install the updates.

Categories : News
Tags : ,

Security Updates June 2010

By Eriq on June 10, 2010 No Comments

Just when you thought it was safe to enjoy the summer, a number of fixes for security vulnerabilities have been released by Microsoft just in time for the end of school. On Tuesday, June 8, Microsoft released a number of security bulletins and fixes to go along with them. These bulletins translate into around 20 updates to be installed on Windows workstations and several significant updates for Windows servers and server-based tools as well.

The official Microsoft TechNet Security Bulletin can be found at http://www.microsoft.com/technet/security/bulletin/ms10-jun.mspx, while SANS.org has their take on the Microsoft patch summary at http://isc.sans.edu/diary.html?storyid=8929.

Additionally, Adobe has announced the presence of several critical flaws in Acrobat, Acrobat Reader, and Acrobat Player. SANS.org has a newsletter that releases when consumer-facing alerts are reported or announced. Looking at the Ouch! newsletter update list at http://www.sans.org/newsletters/ouch/updates/, you can read about the Adobe issues and currently known workarounds.

Categories : News
Tags : , ,
Next Page »
EON Consulting, LLC
Copyright © 2013 All Rights Reserved
iThemes Builder by iThemes
Powered by WordPress