(10/1/2014) Summary: The patches are ready. Now it's up to you to put them into place as quickly as possible.
(10/1/2014) Apple says users of its OS X operating system are "safe by default" from the new security vulnerability, which has been described as bigger than Heartbleed.
(9/29/2014) But really, the impact on you at home should be minimal, especially if you take some basic precautions. Windows systems aren’t vulnerable whatsoever—though your router may very well be—unless you’re running a program like Cygwin.
(9/29/2014) Experts say the flaw, dubbed “Shellshock,” is so intertwined with the modern Internet that it could prove challenging to fix, and in the short run is likely to put millions of networks and countless consumer records at risk of compromise.
(9/23/2014) Google shut down malicious Web attacks coming from a compromised advertising network on Friday. The move follows a security firm's analysis that found the ad platform, Zedo, serving up advertisements that attempted to infect the computers of visitors to major websites.More news...
As part of the University's information security program, all University employees must complete annual security awareness training. Please complete the designated SANS training modules in SANS Securing the Human. You will not immediately receive a certificate when you complete the required modules. Certificates will be distributed via email twice a month for your records. Please contact the UM Chief Information Security Officer with questions at firstname.lastname@example.org.
(9/15/2014) This bulletin summary lists security bulletins released for September 2014.
(9/5/2014) This is an advance notification of security bulletins that Microsoft is intending to release on September 9, 2014.
(4/16/2009) Advisory for Advisory- Cisco AnyConnect Virtual Private Network (VPN) application for iOS has been updated to address vulnerabilities related to the Heartbleed bug.