Shell Shock Bash vulnerability Mac OSx patch
Following the widely publicised discovery of a vulnerability in the UNIX Bash feature, IT has patched all servers where this may have posed a risk.
‘Heartbleed’ OpenSSL vulnerability
There has been widespread media coverage of the Heartbleed OpenSSL IT security vulnerability this week.
CryptoLocker warning
We are advising that you beware fake e-mails such as ones pretending to be either from Voicemail, HMRC, image scanners, courier deliveries, company complaints etc, containing small “Zip” attachments.
Adobe personal data breach
Early in October, the multimedia giant Adobe admitted to having suffered a data breach of significant proportions, with initial estimates from Adobe numbering it at 2.9 million compromised accounts. JustContinue reading Adobe personal data breach
AppGrad product
AppGrad is not approved for use with University of Reading IT Systems and should not be used. It is not associated with the University of Reading.
New Java Exploits
A few days ago somebody “responsibly” published proof-of-concept code for vulnerabilities in Java and as a result there are now exploits starting to appear in drive-by-download exploit kits.
Java update – June 2013
As we frequently mention on this newsfeed and on Twitter, it’s time to update Java again. Oracle has released a Critical Patch Update on 18 June 2013 that affects multipleContinue reading Java update – June 2013
Microsoft Windows XP support
IT Services will not support Windows XP beyond Microsoft’s withdrawal of security update support after 8 April 2014. This also applies to Office 2003.
Package delivery scam email
We have had another scam email attack in the form of a fake postal receipt email.
Login Credential security
IT Services have had a reminder from ja.net CSIRT regarding user credential sharing and the associated issues.