Mar 5
Microsoft has issued a Security Bulletin Advance Notification, indicating that its March release cycle will contain two bulletins. These bulletins will have a severity rating of Important and will be for Microsoft Windows and Microsoft Office. Release of these bulletins is scheduled for Tuesday, March 9, 2010.
Network Logix will provide additional information as it becomes available.
Feb 4
Microsoft has issued a Security Bulletin Advance Notification, indicating that its February release cycle will contain 13 bulletins. Five of them will have a severity rating of Critical and will be for Microsoft Windows. The remaining eight bulletins have an Important rating and are for Microsoft Windows and Microsoft Office. Release of these bulletins is scheduled for Tuesday, February 9, 2010.
Network Logix will provide additional information as it becomes available.
Jan 24
On January 21, 2010, Microsoft released the Out-of-Band Security Bulletin, MS10-002 (KB978207), which resolves one publically reported and seven privately reported vulnerabilities in Internet Explorer. The more severe vulnerabilities could allow Remote Code Execution, if a user views a specially designed webpage using Internet Explorer. This Security Update is rated Critical for all supported releases of Internet Explorer 5.01, Internet Explorer 6, Internet Explorer 6 Service Pack 1, Internet Explorer 7 and Internet Explorer 8.
This patch has been whitelisted by the NOC and will be installed on Servers and Desktops through our Automatic Patch deployment. The patch will be deployed in the current patch cycle. This patch requires a reboot for the patch to take effect.
For more information or to download the security patch, please browse to the webpage Microsoft Security Bulletin MS10-002 – Critical Cumulative Security Update for Internet Explorer (978207) http://www.microsoft.com/technet/security/bulletin/MS10-002.mspx
Dec 3
Microsoft has issued a Security Bulletin Advance Notification indicating that its December release cycle will contain six bulletins, three of which will have a severity rating of Critical. The notification states that these Critical bulletins are for Microsoft Windows, Microsoft Office, and Internet Explorer. There will also be three important bulletins for Microsoft Windows and Microsoft Office. Release of these bulletins is scheduled for Tuesday, December 8.
Network Logix will provide additional information as it becomes available.
Dec 3
Network Logix is aware of public reports of a malware campaign circulating. This campaign is circulating via email messages offering information regarding the H1N1 vaccination. This email messages contain a link to a bogus Centers for Disease Control and Prevention website. Users who click on this link may become infected with malware. Public reports indicate that these email messages are noted as having subject lines such as: “Governmental registration program on the H1N1 vaccination” and “Your personal vaccination profile.” Please note that subject lines may change at any time.
Network Logix encourages users to take the following precautions to help mitigate the risks:
Nov 5
Microsoft has issued a Security Bulletin Advance Notification indicating that its November release cycle will contain six bulletins, three of which will have a severity rating of Critical. The notification states that these Critical bulletins are for Microsoft Windows. There will also be three important bulletins for Microsoft Windows and Microsoft Office. Release of these bulletins is scheduled for Tuesday, November 10.
Network Logix will provide additional information as it becomes available.
Oct 9
Microsoft has issued a Security Bulletin Advance Notification indicating that its October release cycle will contain thirteen bulletins, eight of which will have a severity rating of Critical. The notification states that these Critical bulletins are for Microsoft Windows, Internet Explorer, Office, Silverlight, SQL Server, Developer Tools, and Forefront. There will also be five important bulletins for Microsoft Windows. Release of these bulletins is scheduled for Tuesday, October 13.
Network Logix will provide additional information as it becomes available.
Sep 3
Microsoft has issued a Security Bulletin Advance Notification indicating that the September release cycle will contain five bulletins, all of which will have a severity rating of critical. The notification states that these critical bulletins are for Microsoft Windows. Release of these bulletins is scheduled for Tuesday, September 8.
Network Logix will provide additional information as it becomes available.
Aug 11
Microsoft has released an update to address vulnerabilities in Microsoft Windows, Office, Visual Studio, ISA Server, BizTalk Server, Remote Desktop Connection Client for Mac, and .NET Framework as part of the Microsoft Security Bulletin Summary for August 2009. These vulnerabilities may allow an attacker to execute arbitrary code, operate with escalated privileges, or cause a denial-of-service condition.
Network Logix encourages users and administrators to review the bulletins and follow best-practice security policies to determine which updates should be applied. All ProCare Managed Office clients need not worry. Our network engineers will be testing these updates, and will roll them out accordingly.
Aug 6
Apple has released Mac OS X v10.5.8 and Security Update 2009-003 to address multiple vulnerabilities in a number of applications. These vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, bypass security mechanisms, operate with escalated privileges, or obtain sensitive information.
Network Logix encourages users and administrators to review Apple article HT3757 and apply any necessary updates to help mitigate the risks. Additional information can be found in US-CERT Technical Cyber Security Alert TA09-218A.