Date Author Title

MONTHLY THREAT UPDATE

2013-01-09Johannes UllrichNew Format for Monthly Threat Update

MONTHLY

2013-02-14/a>Adam SwangerISC Monthly Threat Update - February 2013 http://isc.sans.edu/podcastdetail.html?id=3121
2013-02-04/a>Adam SwangerSAN Securing The Human Monthly Awareness Video - Advanced Persistent Threat (APT) http://www.securingthehuman.org/resources/ncsam
2013-01-10/a>Adam SwangerISC Monthly Threat Update New Format
2013-01-09/a>Johannes UllrichNew Format for Monthly Threat Update

THREAT

2024-10-03/a>Guy BruneauKickstart Your DShield Honeypot [Guest Diary]
2024-09-25/a>Guy BruneauOSINT - Image Analysis or More Where, When, and Metadata [Guest Diary]
2024-09-11/a>Guy BruneauHygiene, Hygiene, Hygiene! [Guest Diary]
2024-09-04/a>Guy Bruneau Attack Surface [Guest Diary]
2024-08-27/a>Guy BruneauVega-Lite with Kibana to Parse and Display IP Activity over Time
2024-08-20/a>Guy BruneauMapping Threats with DNSTwist and the Internet Storm Center [Guest Diary]
2024-08-07/a>Guy BruneauSame Scripts, Different Day: What My DShield Honeypot Taught Me About the Importance of Security Fundamentals [Guest Diary]
2024-07-16/a>Guy BruneauWho You Gonna Call? AndroxGh0st Busters! [Guest Diary]
2024-06-26/a>Guy BruneauWhat Setting Live Traps for Cybercriminals Taught Me About Security [Guest Diary]
2024-06-13/a>Guy BruneauThe Art of JQ and Command-line Fu [Guest Diary]
2024-05-30/a>Xavier MertensFeeding MISP with OSSEC
2024-05-28/a>Guy BruneauIs that It? Finding the Unknown: Correlations Between Honeypot Logs & PCAPs [Guest Diary]
2024-05-22/a>Guy BruneauAnalysis of ?redtail? File Uploads to ICS Honeypot, a Multi-Architecture Coin Miner [Guest Diary]
2024-04-29/a>Guy BruneauLinux Trojan - Xorddos with Filename eyshcjdmzg
2024-04-07/a>Guy BruneauA Use Case for Adding Threat Hunting to Your Security Operations Team. Detecting Adversaries Abusing Legitimate Tools in A Customer Environment. [Guest Diary]
2023-02-04/a>Guy BruneauAssemblyline as a Malware Analysis Sandbox
2022-11-10/a>Xavier MertensDo you collect "Observables" or "IOCs"?
2022-01-29/a>Guy BruneauSIEM In this Decade, Are They Better than the Last?
2021-09-09/a>Johannes UllrichUpdates to Our Datafeeds/API
2021-01-02/a>Guy BruneauProtecting Home Office and Enterprise in 2021
2020-12-05/a>Guy BruneauIs IP 91.199.118.137 testing Access to aahwwx.52host.xyz?
2020-12-04/a>Guy BruneauDetecting Actors Activity with Threat Intel
2020-01-25/a>Guy BruneauIs Threat Hunting the new Fad?
2019-07-24/a>Xavier MertensMay People Be Considered as IOC?
2018-11-20/a>Xavier MertensQuerying DShield from Cortex
2018-11-14/a>Brad DuncanDay in the life of a researcher: Finding a wave of Trickbot malspam
2018-10-17/a>Russ McReeRedHunt Linux - Adversary Emulation, Threat Hunting & Intelligence
2018-07-29/a>Guy BruneauUsing RITA for Threat Analysis
2017-05-31/a>Pasquale StirparoAnalysis of Competing Hypotheses, WCry and Lazarus (ACH part 2)
2017-05-28/a>Pasquale StirparoAnalysis of Competing Hypotheses (ACH part 1)
2016-09-25/a>Pasquale StirparoDefining Threat Intelligence Requirements
2016-07-31/a>Pasquale StirparoSharing (intel) is caring... or not?
2016-05-16/a>Rick WannerAn oldie but a goodie - 419 Death Scam
2016-04-25/a>Guy BruneauHighlights from the 2016 HPE Annual Cyber Threat Report
2014-12-23/a>John BambenekHow I learned to stop worrying and love malware DGAs....
2014-08-05/a>Johannes UllrichLegal Threat Spam: Sometimes it Gets Personal
2014-08-04/a>Russ McReeThreats & Indicators: A Security Intelligence Lifecycle
2014-02-19/a>Russ McReeThreat modeling in the name of security
2013-02-14/a>Adam SwangerISC Monthly Threat Update - February 2013 http://isc.sans.edu/podcastdetail.html?id=3121
2013-02-04/a>Adam SwangerSAN Securing The Human Monthly Awareness Video - Advanced Persistent Threat (APT) http://www.securingthehuman.org/resources/ncsam
2013-01-10/a>Adam SwangerISC Monthly Threat Update New Format
2013-01-09/a>Johannes UllrichNew Format for Monthly Threat Update
2012-12-03/a>John BambenekJohn McAfee Exposes His Location in Photo About His Being on Run
2012-11-29/a>Kevin ShorttNew Apple Security Update: APPLE-SA-2012-11-29-1 Apple TV 5.1.1
2012-11-28/a>Mark HofmanMcAfee releases extraDAT for W32/Autorun.worm.aaeb-h
2012-11-28/a>Mark HofmanNew version of wireshark is available (1.8.4), some security fixes included.
2012-11-27/a>Chris MohanCan users' phish emails be a security admin's catch of the day?
2012-11-26/a>John BambenekOnline Shopping for the Holidays? Tips, News and a Fair Warning
2012-11-20/a>John BambenekBehind the Random NTP Bizarreness of Incorrect Year Being Set
2012-11-20/a>John BambenekFirefox v 17.0 just released, more here: http://www.mozilla.org/en-US/firefox/17.0/releasenotes/
2012-11-19/a>John BambenekMoneyGram fined $100 million for aiding wire fraud - http://krebsonsecurity.com/2012/11/moneygram-fined-100-million-for-wire-fraud/
2012-11-19/a>John BambenekNew Poll: Top 5 Unresolved Security Problems of 2012
2012-11-17/a>Manuel Humberto Santander PelaezNew Sysinternal Updates: AdExplorer v1.44, Contig v1.7, Coreinfo v3.2, Procdump v5.1. See http://blogs.technet.com/b/sysinternals/archive/2012/11/16/updates-adexplorer-v1-44-contig-v1-7-coreinfo-v3-2-procdump-v5-1.aspx?Redirected=true
2012-11-12/a>John BambenekRequest for info: Robocall Phishing Against Local/Regional Banks
2012-11-09/a>Mark BaggettRemote Diagnostics with PSR
2012-11-09/a>Mark BaggettFresh batch of Microsoft patches next week
2012-11-07/a>Mark BaggettMultiple 0-Days Reported!
2012-11-07/a>Mark BaggettCisco TACACS+ Authentication Bypass
2012-11-07/a>Mark BaggettHelp eliminate unquoted path vulnerabilities
2012-11-05/a>Johannes UllrichReminder: Ongoing SMTP Brute Forcing Attacks
2012-11-05/a>Johannes UllrichPossible Fake-AV Ads from Doubleclick Servers
2012-11-04/a>Lorna HutchesonWhat's important on your network?
2012-10-31/a>Johannes UllrichCyber Security Awareness Month - Day 31 - Business Continuity and Disaster Recovery
2012-10-30/a>Johannes UllrichHurricane Sandy Update
2012-10-30/a>Richard PorterSplunk 5.0 SP-CAAAHB4 http://www.splunk.com/view/SP-CAAAHB4
2012-10-28/a>Tony CarothersFirefox 16.02 Released
2012-10-26/a>Russ McReeCyber Security Awareness Month - Day 26 - Attackers use trusted domain to propagate Citadel Zeus variant
2012-10-25/a>Richard PorterCyber Security Awareness Month - Day 25 - Pro Audio & Video Packets on the Wire
2012-10-24/a>Russ McReeOngoing Windstream outage in the midwest - https://twitter.com/search?q=windstream
2012-10-21/a>Johannes UllrichCyber Security Awareness Month - Day 22: Connectors
2012-10-21/a>Lorna HutchesonPotential Phish for Regular Webmail Accounts
2012-10-19/a>Johannes UllrichCyber Security Awareness Month - Day 19: Standard log formats and CEE.
2012-10-18/a>Rob VandenBrinkCyber Security Awareness Month - Day 18 - Vendor Standards: The vSphere Hardening Guide
2012-10-17/a>Mark HofmanNew Acrobat release (including reader) available. Version 11. Some security improvements more here -->http://blogs.adobe.com/adobereader/
2012-10-16/a>Richard PorterCyberAwareness Month - Day 15, Standards Body Soup (pt2), Same Soup Different Cook.
2012-10-16/a>Johannes UllrichCyber Security Awareness Month - Day 16: W3C and HTML
2012-10-14/a>Pedro BuenoCyber Security Awareness Month - Day 14 - Poor Man's File Analysis System - Part 1
2012-10-09/a>Johannes UllrichMicrosoft October 2012 Black Tuesday Update - Overview
2012-10-07/a>Tony CarothersCyber Security Awareness Month - Day 7 - Rollup Review of CSAM Week 1
2012-10-05/a>Johannes UllrichCyber Security Awareness Month - Day 5: Standards Body Soup, So many Flavors in the bowl.
2012-10-05/a>Richard PorterVMWare Security Advisory: VMSA-2012-0014 - http://www.vmware.com/security/advisories/VMSA-2012-0014.html
2012-10-05/a>Richard PorterReports of a Distributed Injection Scan
2012-10-04/a>Mark HofmanAnd the SHA-3 title goes to .....Keccak
2012-10-02/a>Russ McReeCyber Security Awareness Month - Day 2 - PCI Security Standard: Mobile Payment Acceptance Security Guidelines
2012-10-01/a>Johannes UllrichCyber Security Awareness Month
2012-09-28/a>Joel EslerAdobe certification revocation for October 4th
2012-09-26/a>Johannes UllrichSome Android phones can be reset to factory default by clicking on links
2012-09-26/a>Johannes UllrichMore Java Woes
2012-09-21/a>Johannes UllrichiOS 6 Security Roundup
2012-09-20/a>Russ McReeFinancial sector advisory: attacks and threats against financial institutions
2012-09-20/a>Russ McReeFlash Player update but no announcement, check your version http://www.adobe.com/software/flash/about/
2012-09-20/a>Russ McReeApple and Cisco Security Advisories 19 SEP 2012
2012-09-19/a>Russ McReeScript kiddie scavenging with Shellbot.S
2012-09-17/a>Rob VandenBrinkWhat's on your iPad?
2012-09-14/a>Lenny ZeltserScam Report - Fake Voice Mail Email Notification Redirects to Malicious Site
2012-09-13/a>Mark BaggettTCP Fuzzing with Scapy
2012-09-13/a>Mark BaggettMicrosoft disrupts traffic associated with the Nitol botnet
2012-09-13/a>Mark BaggettMore SSL trouble
2012-09-10/a>Johannes UllrichMicrosoft Patch Tuesday Pre-Release
2012-09-10/a>Johannes UllrichGodaddy DDoS Attack
2012-09-10/a>donald smithBlue Toad publishing co compromise lead to UDID release. http://redtape.nbcnews.com/_news/2012/09/10/13781440-exclusive-the-real-source-of-apple-device-ids-leaked-by-anonymous-last-week?lite
2012-09-06/a>Johannes UllrichSSL Requests sent to port 80 (request for help/input)
2012-09-04/a>Johannes UllrichAnother round of "Spot the Exploit E-Mail"
2012-09-02/a>Lorna HutchesonDemonstrating the value of your Intrusion Detection Program and Analysts
2012-09-01/a>Russ McReeBlackhole targeting Java vulnerability via fake Microsoft Services Agreement email phish
2012-08-31/a>Russ McReeNot so fast: Java 7 Update 7 critical vulnerability discovered in less than 24 hours
2012-08-30/a>Johannes UllrichEditorial: The Slumlord Approach to Network Security http://isc.sans.edu/j/editorial
2012-08-29/a>Johannes Ullrich"Data" URLs used for in-URL phishing
2012-08-27/a>Johannes UllrichThe Good, Bad and Ugly about Assigning IPv6 Addresses
2012-08-27/a>Johannes UllrichMalware Spam harvesting Facebook Information
2012-08-26/a>Lorna HutchesonWho ya gonna contact?
2012-08-22/a>Adrien de BeaupreApple Remote Desktop update fixes no encryption issue
2012-08-22/a>Adrien de BeauprePhishing/spam via SMS
2012-08-21/a>Adrien de BeaupreYYABCAFU - Yes Yet Another Bleeping Critical Adobe Flash Update
2012-08-21/a>Adrien de BeaupreRuggedCom fails key management 101 on Rugged Operating System (ROS)
2012-08-20/a>Manuel Humberto Santander PelaezDo we need test procedures in our companies before implementing Antivirus signatures?
2012-08-19/a>Manuel Humberto Santander PelaezAuthentication Issues between entities during protocol message exchange in SCADA Systems
2012-08-12/a>Tony CarothersLayers of the Defense-in-Depth Onion
2012-08-12/a>Tony CarothersOracle Security Alert for CVE-2012-3132
2012-08-09/a>Mark HofmanZeus/Citadel variant causing issues in the Netherlands
2012-08-09/a>Mark HofmanSQL Injection Lilupophilupop style, Part 2
2012-08-07/a>Adrien de BeaupreWho protects small business?
2012-08-04/a>Kevin ListonVendors: More Patch-Release Options Please
2012-07-27/a>Daniel WesemannCuckoo 0.4 is out - cool new features for malware analysis http://www.cuckoosandbox.org/
2012-07-24/a>Richard PorterWireshark 1.8.1 Released http://www.wireshark.org/
2012-07-24/a>Richard PorterReport of spike in DNS Queries gd21.net
2012-07-20/a>Mark BaggettSyria Internet connection cut?
2012-07-19/a>Mark BaggettDiagnosing Malware with Resource Monitor
2012-07-19/a>Mark BaggettA Heap of Overflows?
2012-07-16/a>Richard PorterSysinternals Update @ http://blogs.technet.com/b/sysinternals/archive/2012/07/16/updates-handle-v3-5-process-explorer-v15-22-process-monitor-v3-03-rammap-v1-21-zoomit-v4-3.aspx
2012-07-13/a>Richard PorterYesterday (not as on the ball as Rob) at SANSFire
2012-07-13/a>Russ McRee2 for 1: SANSFIRE & MSRA presentations
2012-07-13/a>Russ McReeVMWare Security Advisory 12 JUL 2012
2012-07-13/a>Russ McReeYahoo service SQL injection vuln leads to account exposure
2012-07-12/a>Rick WannerCisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence Multipoint Switch - http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-ctms
2012-07-12/a>Rick WannerCisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence Recording Server - http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-ctrs
2012-07-12/a>Rick WannerCisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence Immersive Endpoint Devices - http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-cts
2012-07-12/a>Rick WannerCisco Security Advisory: Multiple Vulnerabilities in Cisco TelePresence Manager - http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120711-ctsman
2012-07-09/a>Johannes UllrichThe FBI will turn off the Internet on Monday (or not)
2012-07-09/a>Manuel Humberto Santander PelaezInternet Storm Center panel tonight at SANSFIRE 2012!
2012-07-05/a>Adrien de BeaupreNew OS X trojan backdoor MaControl variant reported
2012-07-02/a>Joel EslerA rough guide to keeping your website up
2012-07-02/a>Joel EslerLinux & Java leap second bug
2012-06-29/a>Jim ClausingUpdated SysInternals tools - Autoruns, Process Explorer, Process Monitor, PSKill -- http://blogs.technet.com/b/sysinternals/archive/2012/06/28/updates-autoruns-v11-32-process-explorer-v15-21-process-monitor-v3-02-pskill-v1-15-rammap-v1-2.aspx
2012-06-28/a>Chris MohanMassive spike in BGP traffic - Possible BGP poisoning?
2012-06-21/a>Russ McReeAnalysis of drive-by attack sample set
2012-06-21/a>Russ McReeWireshark 1.8.0 released 21 JUN 2012 http://www.wireshark.org/download.html
2012-06-19/a>Daniel Wesemann Vulnerabilityqueerprocessbrittleness
2011-11-19/a>Pedro BuenoDragon Research Group (DRG) announced the white paper entitled "VNC: Threats and Countermeasures" : https://dragonresearchgroup.org/insight/vnc-tac.html
2011-04-26/a>John BambenekIs the Insider Threat Really Over?
2010-07-07/a>Kevin ShorttFacebook, Facebook, What Do YOU See?
2010-05-22/a>Rick WannerSANS 2010 Digital Forensics Summit - APT Based Forensic Challenge
2009-11-05/a>Swa FrantzenInsider threat: The snapnames case
2009-09-27/a>Stephen HallUse Emerging Threats signatures? READ THIS!
2009-09-20/a>Mari NicholsInsider Threat and Security Awareness
2009-01-25/a>Rick WannerTwam?? Twammers?
2008-12-25/a>Maarten Van HorenbeeckChristmas Ecard Malware
2008-11-25/a>Andre LudwigThe beginnings of a collaborative approach to IDS
2008-06-02/a>Jim ClausingEmergingthreats.net and ThePlanet

UPDATE

2023-04-22/a>Didier StevensYARA v4.3.1 Release
2023-04-02/a>Didier StevensYARA v4.3.0 Release
2023-01-07/a>Didier StevensYARA v4.3.0-rc1 --skip-larger
2022-12-05/a>Didier StevensVLC's Check For Updates: No Updates?
2022-08-20/a>Didier StevensYARA 4.2.3 Released
2022-07-02/a>Didier StevensYARA 4.2.2 Released
2022-04-30/a>Didier StevensYARA 4.2.1 Released
2022-03-14/a>Johannes UllrichApple Updates Everything: MacOS 12.3, XCode 13.3, tvOS 15.4, watchOS 8.5, iPadOS 15.4 and more
2021-11-29/a>Didier StevensWireshark 3.6.0 Released
2021-10-31/a>Didier StevensSysinternals: Autoruns and Sysmon updates
2021-10-28/a>Yee Ching TokMultiple Apple Patches for October 2021
2021-10-10/a>Didier StevensWireshark 3.4.9 Released
2021-08-21/a>Didier StevensNew Versions Of Sysinternals Tools
2021-07-25/a>Didier StevensWireshark 3.4.7 Released
2021-04-25/a>Didier StevensWireshark 3.4.5 Released
2021-03-14/a>Didier StevensWireshark 3.4.4 Released
2021-02-06/a>Didier StevensYARA v4.0.5
2021-01-31/a>Didier StevensYARA v4.0.4
2020-12-20/a>Didier StevensWireshark 3.4.2 Released
2020-12-13/a>Didier StevensWireshark 3.4.1 Released
2020-09-27/a>Didier StevensWireshark 3.2.7 Released
2020-08-15/a>Didier StevensWireshark 3.2.6 Released
2020-05-24/a>Didier StevensWireshark 3.2.4 Released
2020-04-11/a>Didier StevensWireshark 3.2.3 Released: Mac Users Pay Attention Please
2020-03-14/a>Didier StevensPhishing PDF With Incremental Updates.
2020-03-07/a>Didier StevensWireshark 3.2.2 Released: Windows' Users Pay Attention Please
2020-02-05/a>Brad DuncanFake browser update pages are "still a thing"
2020-02-01/a>Didier StevensWireshark 3.2.1 Released
2019-12-21/a>Didier StevensWireshark 3.2.0 Released
2019-12-08/a>Didier StevensWireshark 3.0.7 Released
2019-10-27/a>Didier StevensWireshark 3.0.6 Released
2019-09-21/a>Didier StevensWireshark 3.0.5 Release: Potential Windows Crash when Updating
2019-07-09/a>John BambenekMSFT July 2019 Patch Tuesday
2017-07-30/a>Guy BruneauRe-release of MS Oulook Security Patches https://portal.msrc.microsoft.com/en-us/security-guidance/summary
2016-09-13/a>Rob VandenBrinkApple iOS 10 and 10.0.1 Released
2016-02-27/a>Guy BruneauOpenSSL Security Update Planned for 1 March Release
2015-10-09/a>Guy BruneauAdobe Acrobat and Reader Pre-Announcement
2015-04-04/a>Didier StevensVMware Product Updates Address Critical Information Disclosure Issue In JRE
2014-08-22/a>Richard PorterPHP 5.4.32 Released http://www.php.net/ChangeLog-5.php#5.4.32
2014-08-22/a>Richard PorterPHP 5.5.16 is available http://www.php.net/ChangeLog-5.php#5.5.16
2014-08-12/a>Adrien de BeaupreAdobe updates for 2014/08
2014-08-01/a>Chris MohanWireShark 1.10.9 and 1.12.0 has been released
2014-07-11/a>Rob VandenBrinkMetasploit Update Alert
2014-06-12/a>Guy BruneauBIND Security Update for CVE-2014-3859
2014-04-24/a>Rob VandenBrinkApple IOS updates to 7.1.1, OSX Security update 2014-002, Airport Updates - http://support.apple.com/kb/HT1222, http://support.apple.com/kb/HT6208, http://support.apple.com/kb/HT6207, http://support.apple.com/kb/HT6203
2014-04-12/a>Guy BruneauCritical Security Update for JetPack WordPress Plugin. Bug has existed since Jetpack 1.9, released in October 2012. - http://jetpack.me/2014/04/10/jetpack-security-update/
2014-04-02/a>Kevin ShorttApple Security Update for Safari 6.1.3/7.0.3: http://support.apple.com/kb/HT6181
2014-03-06/a>Mark BaggettPort 5000 traffic and snort signature
2014-02-14/a>Chris MohanSYM14-004 Symantec Endpoint Protection Management Vulnerabilities - http://www.symantec.com/business/support/index?page=content&id=TECH214866
2013-12-18/a>Adrien de BeaupreWireshark 1.10.4 and 1.8.12 are available
2013-12-17/a>Adrien de BeaupreApple security updates Mac OS X and Safari
2013-10-17/a>Adrien de BeaupreChrome updated http://googlechromereleases.blogspot.ca/2013/10/stable-channel-update_15.html
2013-10-15/a>Rob VandenBrinkJava Quarterly Updates
2013-07-28/a>Guy BruneauWireshark 1.8.9 and 1.10.1 Security Update
2013-07-03/a>Kevin ShorttApple Security Update 2013-003
2013-06-05/a>Richard PorterWindows Sysinternals Updated http://technet.microsoft.com/en-us/sysinternals/default.aspx
2013-05-22/a>Adrien de BeaupreChrome 24.0.1312.52 has been updated for Windows, Mac, Linux, and Chrome Frame
2013-05-22/a>Adrien de BeaupreApple QuickTime 7.7.4 for Windows updated, MANY security vulnerabilities: http://support.apple.com/kb/HT1222
2013-04-19/a>Russ McReeJava 8 release schedule delayed for renewed focus on security
2013-04-03/a>Mark HofmanFirefox 20 and Thunderbird 17.0.5 updates
2013-03-07/a>Guy BruneauWireshark Security Updates
2013-02-27/a>Adam SwangerAdobe Flash Player Security Update - http://www.adobe.com/support/security/bulletins/apsb13-08.html
2013-02-22/a>Chris MohanPHP 5.4.12 and PHP 5.3.22 released http://www.php.net/ChangeLog-5.php
2013-02-22/a>Chris MohanChrome 25.0.1364.87 addresses multiple vulnerabilities http://googlechromereleases.blogspot.com.au/2013/02/stable-channel-update_21.html
2013-02-12/a>Adam SwangerMicrosoft February 2013 Black Tuesday Update - Overview
2013-02-01/a>Jim ClausingOracle quitely releases Java 7u13 early
2013-01-17/a>Russ McReePHP 5.4.11 and PHP 5.3.21 released
2013-01-09/a>Rob VandenBrinkSQL Injection Flaw in Ruby on Rails
2013-01-09/a>Rob VandenBrinkFirefox and Thunderbird Updates
2013-01-09/a>Rob VandenBrinkSecurity Updates for Adobe Flash - http://www.adobe.com/support/security/bulletins/apsb13-01.html
2013-01-09/a>Johannes UllrichNew Format for Monthly Threat Update
2013-01-08/a>Richard PorterFirefox 18 Released, Security Fixes http://www.mozilla.org/security/known-vulnerabilities/firefox.html
2012-12-11/a>John BambenekMicrosoft December 2012 Black Tuesday Update - Overview
2012-11-13/a>Jim ClausingMicrosoft November 2012 Black Tuesday Update - Overview
2012-10-28/a>Tony CarothersFirefox 16.02 Released
2012-09-21/a>Guy BruneauUpdate for Vulnerabilities in Adobe Flash Player in Internet Explorer 10 (2755801)
2012-09-20/a>Russ McReeApple and Cisco Security Advisories 19 SEP 2012
2012-08-22/a>Adrien de BeaupreApple Remote Desktop update fixes no encryption issue
2012-08-21/a>Adrien de BeaupreYYABCAFU - Yes Yet Another Bleeping Critical Adobe Flash Update
2012-08-15/a>Guy BruneauWireshark Security Update
2012-08-02/a>Guy BruneauOpera Security Update
2012-07-18/a>Rob VandenBrinkSnort Updated today
2012-06-25/a>Guy BruneauIssues with Windows Update Agent
2012-06-20/a>Raul SilesFirefox 13.0.1 Update
2012-06-06/a>Jim ClausingFirefox, Thunderbird, and Seamonkey Security Updates
2012-05-04/a>Guy BruneauAdobe Security Flash Update
2012-03-06/a>Mark HofmanWebsense posted a small article relating to mass injection into wordpress sites (thanks Chris) More info Here --> http://community.websense.com/blogs/securitylabs/archive/2012/03/05/mass-injection-of-wordpress-sites.aspx
2012-02-04/a>Scott FendleyApple Security Advisory 2012-001 v1.1
2011-11-02/a>Russ McReeWireshark updates: 1.6.3 and 1.4.10 released
2011-10-22/a>Guy BruneauOracle Java SE Critical Patch Update
2011-10-01/a>Mark HofmanHot on the heels fo FF, Thunderbird v 7.0.1 and SeaMonkey v 2.4.1 have been updated.
2011-09-18/a>Guy BruneauGoogle Chrome Security Updates
2011-09-06/a>Guy BruneauFirefox 6.0.2 released to removed trust to DigiNotar certificate authority http://www.mozilla.org/en-US/firefox/6.0.2/releasenotes/
2011-09-05/a>Raul SilesJava 7 Officially Released
2011-07-15/a>Deborah HaleApple Software Updates
2011-06-28/a>Johannes UllrichUpdate: Thunderbird 5.0 released. https://www.mozilla.org/en-US/thunderbird/
2011-06-23/a>Jim ClausingApple Security Updates 2011-004
2011-06-09/a>Richard PorterChrome Version 12.0.742.91 Released
2011-06-01/a>Adrien de BeaupreWireshark 1.4.7 and 1.2.17 Released - http://www.wireshark.org/news/20110531.html
2011-05-20/a>Guy BruneauSysinternals Updates, Analyzing Stuxnet Infection with Sysinternals Tools Part 3
2011-05-16/a>Jason LamFirefox 3.5 forced upgrade coming soon
2011-05-04/a>Richard PorterMicrosoft Sysinterals Update
2011-05-01/a>Deborah HaleJava 6.25 Is Now Available
2011-04-14/a>Adrien de BeaupreSysinternals updates, a new blog post, and webcast
2011-03-21/a>Kevin ShorttAPPLE-SA-2011-03-21-1 Mac OS X v10.6.7 and Security Update 2011-001
2011-03-09/a>Chris MohanPossible Issue with Forefront Update KB2508823
2011-03-02/a>Chris MohanMicrosoft’s Autorun update v2.1 now automatically deployed from Windows Update
2011-02-21/a>Adrien de BeaupreKaspersky update servers unreachable
2011-01-27/a>Chris CarboniOpera Updates
2010-12-03/a>Mark HofmanAVG Update Bricking windows 7 64 bit
2010-11-30/a>Joel EslerVMWare Security Advisory
2010-11-16/a>Guy BruneauMac OS X Server v10.6.5 (10H575) Security Update: http://support.apple.com/kb/HT4452
2010-08-25/a>Pedro BuenoAdobe released security update for Shockwave player that fix several CVEs: APSB1020
2010-08-19/a>Rob VandenBrinkDon points us to multiple Adobe updates (Reader and Acrobat 9.3.4 among them) ==> http://www.adobe.com/support/downloads/new.jsp
2010-08-10/a>Jason LamAdobe critical security updates
2010-08-10/a>Daniel WesemannNew Apple security updates for iPad/Pod/Phone. See http://support.apple.com/kb/ht1222
2010-07-21/a>Adrien de BeaupreUpdate on .LNK vulnerability
2010-06-29/a>donald smithAdobe Reader 9.3.3/8.2.3 addressing CVE-2010-1297
2010-05-12/a>Rob VandenBrinkAdobe Shockwave Update
2010-04-13/a>Adrien de BeaupreSecurity update available for Adobe Reader and Acrobat
2010-04-02/a>Guy BruneauFoxit Reader Security Update
2010-03-29/a>Adrien de BeaupreAPPLE-SA-2010-03-29-1 Security Update 2010-002 / Mac OS X v10.6.3
2010-03-29/a>Adrien de BeaupreOOB Update for Internet Explorer MS10-018
2010-03-22/a>Guy BruneauNew Opera 10.51 available with security fixes. More information available at: http://www.opera.com/docs/changelogs/windows/1051/
2010-03-12/a>Mark HofmanFirefox 3.6 is being pushed out to users. http://www.mozilla.com/en-US/firefox/3.6/releasenotes/
2010-03-11/a>Mark HofmanA new version of Safari is out. Looks like for Mac and Windows. Plenty of security fixes (mostly for Windows Safari users http://support.apple.com/kb/HT4070 )
2010-03-10/a>Rob VandenBrinkMicrosoft re-release of KB973811 - attacks on Extended Protection for Authentication
2010-03-08/a>Raul SilesMicrosoft announced two important bulletins (fixing multiple vulns. affecting Windows and Office) for tomorrow: http://www.microsoft.com/technet/security/Bulletin/MS10-mar.mspx
2010-03-01/a>Mark HofmanMicrosoft will drop support for Vista (without any Service Packs) on April 13 and support for XP SP2 ends July 13. (i.e. no more security updates). If you are still running these, it it time to update.
2010-02-27/a>Guy BruneauPHP 5.2.13 Security Update
2010-02-11/a>Deborah HaleThe Mysterious Blue Screen
2010-01-06/a>Guy BruneauFirefox security and stability update for version 3.5.7 and 3.0.17 available for download
2009-12-16/a>Rob VandenBrinkSeamonkey Update to 2.0.1, find the release notes here ==> http://www.seamonkey-project.org/releases/seamonkey2.0.1
2009-12-03/a>Mark HofmanApple released some Java updates today APPLE-SA-2009-12-03-1 & 2 (for 10.5 and 10.6). Fixes a number of security issues so updating is a good idea.
2009-12-02/a>Rob VandenBrinkMicrosoft Black Screen of Death - Fact of Fiction?
2009-11-25/a>Jim ClausingTool updates
2009-11-25/a>Jim ClausingMicrosoft Updates requiring reboot
2009-11-11/a>Rob VandenBrinkApple Safari 4.0.4 Released
2009-11-09/a>Guy BruneauApple Security Update 2009-006 for Mac OS X v10.6.2
2009-11-06/a>Mark HofmanA new version of Firefox (3.5.5) just became available. According to the release notes they are stability improvements.
2009-10-22/a>Adrien de BeaupreSysinternals updates: Disk2vhd v1.1, ZoomIt v4.1, Coreinfo v2.0, VMMap v2.4
2009-09-24/a>Jim ClausingA couple more tools
2009-09-04/a>Adrien de BeaupreSeaMonkey Security Update
2009-08-05/a>donald smithSecurity Update 2009-003 / Mac OS X v10.5.8
2009-08-04/a>donald smithJava Security Update
2009-07-18/a>Patrick NolanChrome update contains Security fixes
2009-06-10/a>Swa FrantzenJava 6 update 14 released
2009-06-02/a>Deborah HaleAnother Quicktime Update
2009-05-26/a>Jason LamVista & Win2K8 SP2 available
2009-02-10/a>Swa FrantzenJava up to date ?
2008-11-29/a>Pedro BuenoUbuntu users: Time to update!
2008-11-13/a>Jim ClausingSome recently updated tools
2008-10-10/a>Marcus SachsFake Microsoft Update Email
2008-09-10/a>Adrien de BeaupreApple updates iPod Touch + Bonjour for Windows
2008-07-11/a>Jim ClausingUpdates to some of our favorite tools
2008-04-20/a>Joel EslerSoftware Update -- Did Apple Do Enough?
2008-03-20/a>Joel EslerAPPLE-SA-2008-03-19 AirPort Extreme Base Station Firmware 7.3.1
2008-03-20/a>Joel EslerPotential Vulnerability in Flash CS3 Professional, Flash Professional 8 and Flash Basic 8?