(10/17/2014) Adobe, Microsoft and Oracle each released updates today to plug critical security holes in their products.
(10/17/2014) Google on Tuesday revealed yet another Internet-wide security vulnerability with a cute name but potentially disastrous effects. POODLE (Padding Oracle On Downgraded Legacy Encryption) allows attackers to break the security of SSL 3.0, a protocol for secure Web communications that is 14 years old but still used as a last-ditch connection method with legacy devices or when others don't seem to work
(10/17/2014) Unknown attackers harnessed the Shellshock vulnerability, or "Bash bug," to amass a botnet of 360 bots and launch a phishing campaign on Spanish-speaking Citibank customers.
(10/15/2014) A Tic-tac-toe game is actually a new mobile trojan – detected as Trojan-Spy,AndroidOS.Gomal.a, or Gomal – targeting Android devices.
(10/15/2014) Oracle has a large number of fixes lined up for Tuesday, including 25 for Java SE, while Microsoft and Adobe have patches due then too.More news...
As part of the University's information security program, all University employees must complete annual security awareness training. Please complete the designated SANS training modules in SANS Securing the Human. You will not immediately receive a certificate when you complete the required modules. Certificates will be distributed via email twice a month for your records. Please contact the UM Chief Information Security Officer with questions at email@example.com.
(9/15/2014) This bulletin summary lists security bulletins released for September 2014.
(9/5/2014) This is an advance notification of security bulletins that Microsoft is intending to release on September 9, 2014.
(4/16/2009) Advisory for Advisory- Cisco AnyConnect Virtual Private Network (VPN) application for iOS has been updated to address vulnerabilities related to the Heartbleed bug.