SecurIT360 Blog

In-depth IT and cybersecurity news and education

Computer & Network Security|Compliance>Encryption|Information Security

Heartbleed: What You Need To Know

Summary Heartbleed is a serious vulnerability that can allow attackers to intercept secure communications.  Email, Websites, VPNs, and other trusted security technologies are at risk

Computer & Network Security|Compliance>Encryption|Information Security|Research

The Heartbleed Bug

The Heartbleed Bug is a recently discovered critical vulnerability found in widely used open-source implementations of the SSL/TLS protocols, OpenSSL .  SSL/TLS is used to

Information Security>Data Breach|Research

Data Breach?

UPDATED 4/15 A colleague was notified today by his bank, BBVA Compass, that his account was likely involved in a breach and that shortly his

Computer & Network Security>Microsoft|Computer & Network Security>Microsoft Security Bulletin|Computer & Network Security>Patches|Computer & Network Security>Zero-day

Microsoft Word Zero Day – Confirmed Attacks

Microsoft released a zero-day advisory for Microsoft Word.  According to Microsoft, “At this time, we are aware of limited, targeted attacks directed at Microsoft Word

Computer & Network Security|Social Engineering>Phishing

Highly effective social engineering using Google Drive

Researchers at Symantec have identified an attack on Google Documents users using highly effective social engineering methods. This attack is so successful because the redirect

Research

News Brief – 03/13/14

Critical crypto flaw in Facebook’s WhatsApp for Android exposes chats Tread carefully when allowing apps access to features on your phone like access to the

Computer & Network Security>Microsoft|Computer & Network Security>Microsoft Security Bulletin

March 2014 Microsoft Security Bulletin Release

For this month’s round of patches Microsoft has released five new security bulletins, two of which are for critical vulnerabilities.  The first critical update is

Compliance > Privacy

Apple iOS and OS X Critical Vulnerability

Recently Apple released updates that contain a critical security patches that address flaws with SSL encryption which could allow attackers to intercept email and other communications