June 2015 News and Updates
What’s New
- Hacker Play Date – Cyber Tech Cafe will be co-hosting a Hacker Play Date on Saturday, 20 June 2015 at 10:00am EDT. We have it scheduled until 6:00pm EDT and have ‘official’ demonstrations scheduled for 12:00pm EDT, 2:00pm EDT and 4:00pm EDT. Our goal is an informal gathering for any tech enthusiasts from the layman to the systems / security engineer to discuss the possibility of some kind of regular gathering on a monthly or quarterly basis (think 2600 meeting or similar). Ideally, for each event we would have a presenter to kick things off and then discussions, practical excercises, entertainment (Red Team / Blue Team excercises, installfests, etc.) for the remainder of the event. Lite refreshments would be provided by the host(s). There would be no charge for the event and it would be open to anyone. Some of the topics on the table so far include:
- A demonstration of hacking a computer via ‘free public wifi’.
- Lock-picking demonstration (audience partipation).
- Building and using a Buffer Overflow.
Updates
Executive Summary – There are a number of updates addressing cricital vulnerabilities from both Microsoft and Adobe for June in a range of widely deployed products including Microsoft Windows, Internet Explorer, Microsoft Office, .NET Framework, Lync, Adobe Reader and Adobe Flash Player. All of the critical updates from both vendors address problems that can allow a remote attacker full access to affected computers. Users and administrators are encouraged to review the details of the patches and, if possible, patch immediately.
Microsoft – Microsoft released 8bulletins this month (MS15-056 through MS15-064, there was no published bulletin for MS15-058). Two of the bulletins were listed as critical by Microsoft and three were listed as critical by SANS (see links below) and addressed issues that could allow remote code execution and the remaining were listed as important by both Microsoft and SANS and address Remote Code Execution and Privilege Escallation issues.
Microsoft releases regular updates the second Tuesday of each month, often referred to as ‘Patch Tuesday’. These updates are catagorized as Low, Moderate, Important or Critical. Details on the categories are available here. The updates can include any supported Microsoft product from Windows to Office to Internet Explorer and server products like Exchange and SQL Server. If you have one or more of these products installed, especially if the update is listed as Important or Critial, it’s important that the updates are installed.
Additional details are available Microsoft Here and Here (SANS).
Adobe – Adobe seems to be in a bit of a slup for the last couple of months, and May was no exception. As of 9 June 2015, there is only one bulletin from Adobe (APSB15-11) and it involves a critical vulnerability in Adobe Flash Player. Additional details on ths are available from Adobe here.
Like Microsoft, Adobe now releases updates to their products on the second Tuesday of each month. Adobe will also release ‘out of band’ updates if necessary to address critical vulnerabilities in their products. Adobe products include Adobe Reader (for viewing PDF files), Adobe Flash Player (often used to watch videos, for interactive content like games, etc.), Adobe Shockwave and the Adobe Creative Suite (Photoshop, Illustrator, Acrobat, Lightroom, etc.).
Additional details are available from Adobe Here including links to download the update(s) and instructions for installation.
Java – The most up-to-date release version of Java, as of the time of this newsletter, is still Java 8 update 45. We’ve noticed that the Java installer / updater doesn’t consistently remove previous versions of Java (including Java 7 and even Java 6). That said, even if you have the most up-to-date version [of Java] installed, it’s possible that you still have an older version installed as well. In Windows, you can check this by going to Add / Remove Programs and looking for older versions.
Java is a tool that’s widely used by banks, online service providers and even security companies for SSL VPN connections. Java’s ‘official’ release cycle is approximately quarterly but Java updates have been ‘fast and furious’ in recent months. It’s worth noting again that, if you don’t absolutely need Java on your computer, it’s not a bad idea to remove it altogether.
Additional details are available from Oracle here.
These updates will be automatically reviewed, approved and installed for MyIT Customers. If you would like more information about the Cyber Tech Cafe MyIT services for your business, please let us know. The Cyber Tech Cafe MyIT services are availalbe in three different levels (Bronze, Silver and Gold) and can provide updates only (Bronze), updates and proactive network auditing and monitoring (Silver) or updates, proactive auditing and monitoring and up to 10 hours of priority support at a significantly discounted rate (Gold). Pricing is based on the number of physical locations, servers and workstations that you have.