BF-SIRT Newsletter 29

The BF-SIRT Newsletter will take summer holiday for two weeks now, but will return again in full force on the 9th of August 2013! Until then, you have some very interesting links below ranging from what a Minute looks like within the Akamai Network to how PRISM can affect businesses.

Oracle did their monthly Patch Advisory for July, which covers a few critical vulnerabilities that you should apply.
Enjoy your Summer!

Top 5 Business Intelligence links
What happens in the Akamai Network during 60 Seconds?
Former CIA and NSA head says Huawei spies for China
PRISM And Your Business (Or: Dependence Is Risky)
California AG Breach Study Highlights Importance of Encrypting Data
Hackers target NASDAQ Community for passwords and account data

Top 5 Miscellaneous Security links
Nations Buying as Hackers Sell Flaws in Computer Code
College Student Gets Year in Prison For Wire Fraud In Tampering With Student Election
Bruce Schneier and Mikko Hypponen on the NSA, PRISM and why we should be worried
Symantec: Google Glass still vulnerable to Wi-Fi attack
Snowden’s Contingency: “Dead Man’s Switch” Borrows From Cold War, WikiLeaks

BF-SIRT Posts
Oracle Patch Advisory July 2013

Oracle Patch Advisory July 2013

Oracle have released their Patch Advisory for July 2013, and this time it contains 89 items to be patched. The affected versions which have been patched are the following:

Oracle Database 11g Release 2, versions 11.2.0.2, 11.2.0.3
Oracle Database 11g Release 1, version 11.1.0.7
Oracle Database 10g Release 2, versions 10.2.0.4, 10.2.0.5
Oracle Access Manager, versions 11.1.1.5.0, 11.1.1.7.0, 11.1.2.0.0
Oracle Endeca Server, versions 7.4.0, 7.5.1.1
Oracle HTTP Server, versions 10.1.3.5.0
Oracle JRockit, versions R27.7.5 and earlier, R28.2.7 and earlier
Oracle Outside In Technology, versions 8.3.7, 8.4.0, 8.4.1
Oracle WebCenter Content, versions 10.1.3.5.1, 11.1.1.6.0, 11.1.1.7.0
Oracle Hyperion BI, versions 11.1.1.3, 11.1.1.4.107 and earlier, 11.1.2.1.129 and earlier, 11.1.2.2.305 and earlier
Enterprise Manager Plugin for Database 12c Release 1, versions 12.1.0.2, 12.1.0.3
Enterprise Manager Grid Control 11g Release 1, version 11.1.0.1
Enterprise Manager Grid Control 10g Release 1, version 10.2.0.5
Oracle E-Business Suite Release 12i, versions 12.0.6, 12.1.1, 12.1.2, 12.1.3
Oracle E-Business Suite Release 11i, version 11.5.10.2
Oracle Agile Collaboration Framework, version 9.3.1
Oracle Agile PLM Framework, version 9.3.1
Oracle Agile Product Framework, version 9.3.1
Oracle PeopleSoft Enterprise Portal, version 9.1
Oracle PeopleSoft HRMS, version 9.1
Oracle PeopleSoft PeopleTools, versions 8.51, 8.52, 8.53
Oracle iLearning, versions 5.2.1, 6.0
Oracle Policy Automation, versions 10.2.0, 10.3.0, 10.3.1, 10.4.0, 10.4.1, 10.4.2
Oracle and Sun Systems Product Suite
Oracle Secure Global Desktop, versions 4.6 prior to 4.63, 4.7 prior to 4.71
Oracle MySQL Server, versions 5.1, 5.5, 5.6

It is recommended to update to the latest versions as soon as possible.

More information: http://www.oracle.com/technetwork/topics/security/cpujuly2013-1899826.html

Basefarm SIRT Newsletter 28

Bluebox Labs found a vulnerability in Android which has been a lot in the news, and while Google have issued a Patch for it, it doesn’t mean the users will have the fix before the OEMs send it out to them. Reports regarding Styx-Crypt and the previous attacks on South Korea. A serious flaw was also found in Cryptocat that meant it was extremely easy to eavesdrop on conversations for seven months.
Microsoft and Adobe did their regular Patch Tuesday for July, which covers a few critical vulnerabilities that you should apply!

Top 5 Business Intelligence links
DEF CON To Feds: We Need Some Time Apart
Ponemon Survey: 59% Of IT Profs Say Security Metrics Are Too Complicated For Management
Practical IT: How to plan against threats to your business
Oops. Japanese Government Shares Internal E-Mails on Google
McAfee: Malware hunts for South Korean military secrets

Top 5 Miscellaneous Security links
Serious flaw found in Cryptocat chat app
Who’s Behind The Styx-Crypt Exploit Pack?
Uncovering Android Master Key that makes 99% of devices vulnerable
This Is Not a Test: Emergency Broadcast Systems Proved Hackable
Thousands of websites defaced after Belgium and Netherland domain registrars hacked

Basefarm SIRT Posts
Patch Tuesday July 2013

Patch Tuesday July 2013

Another month, another patch tuesday!
This month, Microsoft have fixed seven issues. Six of them are marked as critical and allows for Remote Code Execution through various Microsoft applications, while one is marked as important and allows for elevation of privileges in the Bitdefender application. Adobe updated their ColdFusion software to fix a vulnerability. It is highly recommended to apply these fixes as soon as possible.

More information: http://technet.microsoft.com/en-us/security/bulletin/ms13-jul
http://www.adobe.com/support/security/bulletins/apsb13-19.html

Basefarm SIRT Newsletter 27

This week there’s been quite a lot of coverage about the US government, with PRISM and Stuxnet related stories. Attacks on government sites are also going up, and the governments are having issues with encryption techniques when it comes to monitoring people. Apple have also released a security update that we suggest you apply as soon as possible!

Top 5 Business Intelligence links
DHS notes rise in brute-force attacks against natural gas companies
South Korea govt site hacking sees massive data breach
DNI Clapper says statement to congress about NSA data collection was “erroneous”
U.S. Cyber Challenge and Virginia Tech Hosted Successful Cyber Security Competition
California to focus on unencrypted data in breach investigations

Top 5 Miscellaneous Security links
Pair of PC viruses help each other survive
Vulnerabilities found in code library used by encrypted phone call apps
9 Years After Shadowcrew, Feds Get Their Hands on Fugitive Cybercrook
Encryption Has Foiled Wiretaps for First Time Ever, Feds Say
Retired 4-star general probed over Stuxnet details leak – report

Basefarm SIRT Posts
Apple Security Update 2013-003

Apple Security Update 2013-003

Apple have released security update 2013-003 for OS X.
This update fixes three issues with QuickTime where playing a maliciously crafted movie file may lead to an unexpected application termination or arbitrary code execution.

More information: http://support.apple.com/kb/HT5806