All images scavenged without permission

Slides:



Advertisements
Similar presentations
PREVIOUS GNEWS. 7 Patches – 3 Critical – 23 CVEs Affected – RDP, IE, Lync, Windows Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS
Advertisements

PREVIOUS GNEWS. 11 Patches – 5 Critical Affecting most everything Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS IE, Remote Execution.
. 15 Patches / 32 Vulns – 9 Critical Affecting most everything Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS Windows.
PREVIOUS GNEWS. 13 Patches – 5 Critical Affecting Windows (pretty much all of them) Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS
PREVIOUS GNEWS. Oct - 8 Patches – 3 Critical - 24 CVEs MS Cumulative Security Update for Internet Explorer MS NET Framework, Remote Code.
PREVIOUS GNEWS. Apr 4 Patches – 2 Critical – 11 CVEs MS Microsoft Word and Office Web Apps, Remote Code MS Cumulative Security Update.
9 Patches – 2 Critical – 12 CVEs Affected – IE, Kernel, SharePoint, Remote Desktop, AD….. Other updates, MSRT, Defender Definitions, Junk Mail Filter.
PREVIOUS GNEWS. 6 Patches – 1 Critical – 22 CVEs Affected – IE. Kernel, Print, Office MS Cumulative Security Update for Internet Explorer MS
PREVIOUS GNEWS. Patches – 1 Critical Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS DNS Server, DoS –MS Kernal Mode Driver,
PREVIOUS GNEWS. 7 Patches – 3 Critical – 23 CVEs Affected – Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS Microsoft Word, Remote.
PREVIOUS GNEWS. 7 Patches – 3 Critical – 20 CVEs Affected – IE, Kernel, Visio, Silverlight Sarepoint,….. Other updates, MSRT, Defender Definitions, Junk.
Previous Gnews. 13 Patches – 8 Critical, Affects pretty much everything Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS SMBv2.
PREVIOUS GNEWS. July - 6 Patches – 2 Critical - 27 CVEs MS Cumulative Security Update for IE, Remote Code MS – Windows Journal, Remote Code.
PREVIOUS GNEWS. 8 Patches – 3 Critical – 19+ CVEs Affected – GDI, Hyper-V, Outlook, Office, IE, Activex, and more MS Cumulative Security Update.
PREVIOUS GNEWS. 7 Patches – 1 Critical Affecting server builds and powerpoint Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS Windows.
PREVIOUS GNEWS. 6 Patches – 4 Critical – 19 CVEs Affected – Kernel, SQL, Kerberos, Word, HTML, SharePoint Other updates, MSRT, Defender Definitions, Junk.
PREVIOUS GNEWS. 6 Patches – 4 Critical – 11 CVEs Affected – SQL, Visual Basic, Visual Foxpro, more… Other updates, MSRT, Defender Definitions, Junk Mail.
PREVIOUS GNEWS. Oct - ? Patches – ? Critical - ? CVEs Come Back Next Week Other updates, MSRT, Defender Definitions, Junk Mail Filter Patch Tuesday.
 . Jul - 15 Patches – 5 Critical - 60 CVEs MS SQL Server, Remote Code MS Security Update for IE MS VBScript Scripting.
PREVIOUS GNEWS. –MS Microsoft XML Core Services, Remote Execution –MS Cumulative Security Update for Internet Explorer –MS Microsoft.
PREVIOUS GNEWS. Jan 4 Patches – 0 Critical – 6 CVEs 9 Patches – 4 Critical – 31+ CVEs MS Microsoft XML Core Services, Info Disclosure MS
PREVIOUS GNEWS. 7 Patches – 6 Critical – 35 CVEs Affected –.NET, GDI+, IE, Defender, DirectShow MS NET Framework and Silverlight, Remote Code.
PREVIOUS GNEWS. try again next week Patch Tuesday.
PREVIOUS GNEWS. 16 Patches / 49 Vulns – 4 Critical Affecting most everything Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS Cumulative.
PREVIOU S GNEWS. May 7 Patches – 2 Critical - 70 CVEs MS Remote Desktop, Allow Tampering MS TCP Protocol, DoS MS Microsoft Lync.
PREVIOUS GNEWS A Hacker is You!. 1 Patches – 1 bugs addressed Affecting Windows (pretty much all of them) Other updates, MSRT, Defender Definitions, Junk.
PREVIOUS GNEWS. 4 Patches / 5 Vulns – 3 Critical Affecting Winodow (all of them), Office, IE, SharePoint,.net Other updates, MSRT, Defender Definitions,
PREVIOUS GNEWS. Aug - 4 Patches – 1 Critical - 42 CVEs MS – IE Cumulative Security Update, Remote Code MS –.NET Framework, DoS MS –
PREVIOUS GNEWS. 2 Patches – 2 Important Affecting Windows Movie Maker, Office Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS –
PREVIOUS GNEWS. 2 Patches – 2 Critical Affecting VB and Mail Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS – Visual Basic for.
PREVIOUS GNEWS. 3 Patches – 4 Critical – 53+ CVEs Affected – Kernel, AD, SharePoint, Office, and more MS Microsoft SharePoint Server, Remote Code.
PREVIOUS GNEWS. 2 Patches – bugs addressed Affecting Windows (all versions) Other updates, MSRT, Defender Definitions, Junk Mail Filter Patch Tuesday.
PREVIOU S GNEWS. May 9 Patches – 3 Critical - 1 out of band – 14 CVEs MS Security Update for Internet Explorer MS SharePoint Server, Remote.
Previous Gnews. Other updates, MSRT, Defender Definitions, Junk Mail Filter 10 Security Patches - 6 Critical, 3 Important, 1 Moderate –MS Active.
PREVIOUS GNEWS. Aug - 9 Patches – 1 Critical - 37 CVEs MS Windows Media Center, Remote Code MS – SQL Server, Privilege Escalation MS
PREVIOUSLY GNEWS Patch Tuesday Nov - 12 Patches – 8 Critical – 60ish CVEs MS Cumulative Security Update for IE, Remote Code MS Cumulative.
PREVIOUSLY GNEWS. Patch Tuesday Aug - 13 Patches – 6 Critical - 57 CVEs MS Cumulative Security Update for IE (Aug Out of Band) MS Cumulative.
PREVIOUSLY GNEWS Patch Tuesday Jan – 10 (9) Patches – 6 Critical – 24ish CVEs MS Cumulative Security Update for IE, Remote Code MS Cumulative.
GNEWS, PREVIOUSLY Patch Tuesday Aug - 6 Patches – 3 Critical - 33 CVEs MS Cumulative Security Update for Internet Explorer MS Cumulative.
GNEWS PREVIOUS. Patch Tuesday jul - x Patches – x Critical - x CVEs Releases Next Week.
Vulnerabilities in Operating Systems Michael Gaydeski COSC December 2008.
PREVIOUS GNEWS Mar – 13 Patches – 6 Critical – 30 CVEs MS Cumulative Security Update for IE MS Cumulative Security Update for Microsoft.
PREVIOUS GNEWS. 8 Patches – 6 Critical – 19+ CVEs Affected – Kernel, AD, Exchange, Unicode, ICMP MS Security Update for Internet Explorer, Remote.
PREVIOUS GNEWS Jun – 14 Patches – 7 Critical – 47 CVEs MS Cumulative Security Update for Internet Explorer, Remote Code MS Cumulative.
PREVIOUSLY GNEWS Feb – 13 Patches – 6 Critical – 36ish CVEs MS Cumulative Security Update for IE, Remote Code MS Cumulative Security.
Amol Sarwate Director of Vulnerability Labs, Qualys Inc State of Vulnerability Exploits.
All images scavenged without permission
PREVIOUS GNEWS All images scavenged without permission.
All images scavenged without permission
PREVIOUS GNEWS All images scavenged without permission.
All images scavenged without permission
PREVIOUS GNEWS All images scavenged without permission.
PREVIOUS GNEWS All images scavenged without permission.
PREVIOUS GNEWS All images scavenged without permission.
PREVIOUS GNEWS All images scavenged without permission.
All images scavenged without permission
All images scavenged without permission
All images scavenged without permission
All images scavenged without permission
All images scavenged without permission
Previous Gnews All images scavenged without permission.
Previous Gnews All images scavenged without permission.
All images scavenged without permission
All images scavenged without permission
All images scavenged without permission
All images scavenged without permission
Previous Gnews All images scavenged without permission.
All images scavenged without permission
Previous Gnews All images scavenged without permission.
All images scavenged without permission
Presentation transcript:

All images scavenged without permission

All images scavenged without permission PREVIOUS GNEWS

Patch Tuesday Nov – 14 Patches – 6 Critical – 69 CVEs MS16-129 - Cumulative Security Update for Microsoft Edge, Remote Code MS16-130 - Microsoft Windows, Remote Code MS16-131 - Microsoft Video Control, Remote Code MS16-132 - Microsoft Graphics Component, Remote Code MS16-133 - Microsoft Office, Remote Code MS16-134 - Common Log File System Driver, Privilege Escalation MS16-135 - Windows Kernel-Mode Drivers, Privilege Escalation MS16-136 - SQL Server, Privilege Escalation MS16-137 - Windows Authentication Methods, Privilege Escalation MS16-138 - Microsoft Virtual Hard Disk Driver, Privilege Escalation MS16-139 - Windows Kernel, Privilege Escalation MS16-140 - Boot Manager, Security Bypass MS16-141 - Adobe Flash Player, Remote Code MS16-142 - Cumulative Security Update for Internet Explorer, Remote Code Sources: http://technet.microsoft.com/en-us/security/bulletin/ms16-nov

Holes / Patches Oracle Adobe Apple VMWare Android MS 253 Fixes APSB16-35 Adobe Connect ( 1 CVE) APSB16-36 Flash Player ( 1 CVE) APSB16-37 Flash Player ( 9 CVE) Apple iOS 10.0.3 iOS 10.1 ( 17 CVE) Security Update 2016-002 ( 20 CVE) Safari 10.0.1 ( 4 CVE) tvOS 10.0.1 ( 14 CVE) watchOS 3.1 ( 9 CVE) Xcode 8.1 ( 10 CVE) iCloud for Win 6.0.1 ( 2 CVE) iTunes 12.5.2 for Win ( 2 CVE) iOS 10.1.1 VMWare VMSA-2016-0016 ( 1 CVE) vRealize Operations, privilege escalation VMSA-2016-0017 ( 2 CVE) Vmware, info disclosure Android Drammer patch Partial Dirty Cow Patch MS EMET EOL extended to Jul 2018 Azure Container Service goes open source Server 2016 Security Features Credential guard Device Guard Host Guardian Sources: ## Oracle Patches http://www.oracle.com/technetwork/topics/security/alerts-086861.html ##Adobe Patches https://helpx.adobe.com/security.html https://helpx.adobe.com/security/products/connect/apsb16-35.html https://helpx.adobe.com/security/products/flash-player/apsb16-36.html https://helpx.adobe.com/security/products/flash-player/apsb16-37.html https://threatpost.com/adobe-patches-nine-code-execution-flaws-in-flash-player/121839/ ##Apple patches http://support.apple.com/kb/HT1222 ##Cisco patches http://tools.cisco.com/security/center/home.x http://tools.cisco.com/security/center/viewAllSearch.x?currentPage=&sortType=d&recordsPerPage=100&searchkey=&filter=43&pageSize=100&pageNo=1 ## VMWare http://www.vmware.com/security/advisories/ https://www.vmware.com/security/advisories/VMSA-2016-0016.html https://www.vmware.com/security/advisories/VMSA-2016-0017.html android down with drammer long live dirty cow. https://news.hitb.org/content/android-patches-fix-drammer-ram-attack-not-dirty-cow-exploit Azure container service goes open source https://news.hitb.org/content/microsoft-open-sources-its-azure-container-service-engine EMET extended to July 2018 https://threatpost.com/microsoft-tears-off-the-band-aid-with-emet/121824/ server 2016 sec features http://www.esecurityplanet.com/windows-security/3-noteworthy-windows-server-2016-security-features.html

Hacking OWA based phishing attack leveraging veil framework malware now checks DBLs before generating spam New Car rules, DMCA fair use exemptions gmail vuln Hacking Sources: bad headline proofpoint https://www.proofpoint.com/us/threat-insight/post/veil-framework-infects-victims-targeted-owa-phishing-attack malware now checks DBLs before generating spam. http://researchcenter.paloaltonetworks.com/2016/10/unit42-can-i-spam-from-here-an-unusually-clever-spambot-tests-blacklists new Car rules https://www.eff.org/deeplinks/2016/10/why-did-we-have-wait-year-fix-our-cars gmail vuln http://betanews.com/2016/11/05/gmail-verification-vulnerability/

Corp amazon quikie-marts? fido alliance, new auth specification Synopsys acquires Cigital and Codiscope Acquisitions Tesco Breach Aussie Red Cross Breach Sources: amazon quikie-marts? http://risnews.edgl.com/retail-news/Experts-Weigh-In-On-Amazon-s-Decision-to-Open-Convenience-Stores107407 fido alliance new auth specification http://www.marketwired.com/press-release/fido-alliance-announces-new-authentication-specification-effort-with-emvco-bring-2169182.htm Tesco Breach http://www.healthcareinfosecurity.com/tesco-bank-confirms-massive-account-fraud-a-9501 Synopsys acquires Cigital and Codiscope Acquisitions http://www.darkreading.com/perimeter/synopsys-expands-software-security-with-cigital-codiscope-acquisitions/d/d-id/1327434?_mc=RSS_DR_EDT Aussie Red Cross Breach http://www.esecurityplanet.com/network-security/australian-red-cross-data-breach-exposes-550000-peoples-personal-information.html Corp

Govt Playpen exploit disclosure Indian embassy websites NIST workforce initiative new scanners at airports?! FCC broadband rules Sources: Playpen exploit https://www.eff.org/deeplinks/2016/10/why-government-must-disclose-its-exploit-defense-playpen-cases indian embassy websites http://www.healthcareinfosecurity.com/7-indian-embassy-websites-apparently-breached-a-9502 NIST workforce initiaitve http://www.healthcareinfosecurity.com/interviews/new-tools-aim-to-close-cybersecurity-skills-gap-i-3385 new scanners at airports?! https://news.hitb.org/content/removing-your-laptop-and-liquids-airport-security-may-soon-be-thing-past FCC broadband rules https://www.privacyrights.org/blog/new-fcc-broadband-privacy-rules-are-win-consumers Govt

x Papers Sources:

x WTF Sources:

x Tools Sources:

Threat Intelligence Summit NOLA – 6-7 Dec Future Cons Sources: https://www.concise-courses.com/security/conferences-of-2016/ http://www.securitybsides.com/w/page/12194156/FrontPage

OWASP Dallas @OWASPDallas DHA @Dallas_Hackers ( 1st Wednesday / Family Karaoke, dallas ) TX2600 @dallas2600 ( 1st Fri / Wild Turkey 35&WalnutHill, dallas ) The Lab.MS @TheLab_ms ( 2nd Monday + random events / TheLab.ms, plano ) OWASP Dallas @OWASPDallas ( 3rd Tuesday / location varies ) Crypto Party DFW @CryptoPartyDFW ( 3rd Thursday / Improving Enterprises, addison ) North Texas Cyber Security Group @ntxcsg ( Last Thursday, Jakes, Frisco ) Dallas MakerSpace @dallasmakers ( Random events / carrollton ) Hack Ft Worth @Hack_FtW ( 3rd Thursday / ?? West 7th ?? Abby Pub) Lock Pick DFW @LockPickDFW ( Last Monday/ Sherlocks arlington ) Sources: https://calendar.google.com/calendar/embed?src=OW1vaTQxMjl1OXBhOWk3NTc4ZmVrN2dtMWtAZ3JvdXAuY2FsZW5kYXIuZ29vZ2xlLmNvbQ

Sources: All images scavenged without permission

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.