Monthly Archives: April 2014

BF-SIRT Newsletter 2014-17

Welcome to this week’s newsletter! Due to vacations, the SIRT newsletter will be put on hold until the middle of August when vacations ends. Those of you who are using Struts in your environments should make sure you read how … Continue reading

Posted in IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2014-17

BF-SIRT Newsletter 2014-16

This week, news is arriving early! This is due to the easter holidays. As always during holidays, it’s important to keep some security awareness when it comes to devices you bring with you on your travels. When it comes to … Continue reading

Posted in IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2014-16

BF-SIRT Newsletter 2014-15

The biggest news of the week have without a doubt been about Heartbleed. We wrote a bit of information on how we handled it at Basefarm which you can read about Here Microsoft and Adobe also had their monthly Patch … Continue reading

Posted in IT security | Tagged , , | Comments Off on BF-SIRT Newsletter 2014-15

Vulnerability in Cisco ASA

Cisco Adaptive Security Appliance (ASA) Software is affected by the following vulnerabilities: Cisco ASA ASDM Privilege Escalation Vulnerability Cisco ASA SSL VPN Privilege Escalation Vulnerability Cisco ASA SSL VPN Authentication Bypass Vulnerability Cisco ASA SIP Denial of Service Vulnerability These … Continue reading

Posted in IT security | Tagged , , | Comments Off on Vulnerability in Cisco ASA

Critical OpenSSL vulnerability

A security vulnerability in OpenSSL was published on April 7. With this vulnerability, an attacker is able to remotely dump the memory contents of a process using OpenSSL. This exposes both the content of SSL/TLS encrypted communications, and the associated … Continue reading

Posted in IT security | Tagged , , | Comments Off on Critical OpenSSL vulnerability

Patch Tuesday April 2014

Microsoft and Adobe have had their regular Patch tuesday for the month. Microsoft Today, we release four bulletins to address 11 CVEs in Microsoft Windows, Internet Explorer and Microsoft Office. The update for Microsoft Word addresses the issues described in … Continue reading

Posted in IT security | Tagged , , | Comments Off on Patch Tuesday April 2014

BF-SIRT Newsletter 2014-14

As some of you noticed, last week’s newsletter was unfortunately delayed due to unforeseen issues, but we’re back again in strenght with some interesting stories! It turns out that China’s Unsupported XP Machines Hold the Potential to Become a Massive … Continue reading

Posted in IT security | Tagged , | Comments Off on BF-SIRT Newsletter 2014-14