PREVIOUS GNEWS. 13 Patches – 5 Critical Affecting Windows (pretty much all of them) Other updates, MSRT, Defender Definitions, Junk Mail Filter –MS10-003.

PREVIOUS GNEWSPREVIOUS GNEWS

• 13 Patches – 5 Critical

• Affecting Windows (pretty much all of them)

• Other updates, MSRT, Defender Definitions, Junk Mail Filter

– MS10-003 – Microsoft Office (MSO) , Remote Execution– MS10-004 – Microsoft Office PowerPoint , Remote Execution– MS10-005 – Microsoft Paint , Remote Execution– MS10-006 – SMB Client , Remote Execution– MS10-007 – Windows Shell Handler , Remote Execution– MS10-008 – Cumulative Security Update of ActiveX Kill Bits– MS10-009 – Windows TCP/IP , Remote Execution– MS10-010 – Windows Server 2008 Hyper-V , DoS– MS10-011 – Client/Server Run-time Subsystem, Privilege Escalation– MS10-012 – SMB Server , Remote Execution– MS10-013 – Microsoft DirectShow , Remote Execution– MS10-014 – Kerberos, DoS– MS10-015 – Windows Kernel, Privilege Escalation

Patch Tuesday

• Apple Patch Release– 2010-001, 11 CVEs covered

• Adobe, 2 patches– APSB10-04 ColdFusion information disclosure issue – APSB10-03 Shockwave Player

• IE 0-day

• MS10-002, out of band patch

• Google Chrome

Holes / Patches

Hacking • Tor Server Breach

• Metasploit plug-in for google/china hack

• Clickjacking Facebook apps

• De-anonymoizing social networks

• Firefox add-on Google Sharing Proxy

• Dallas Hacker Space?

Corp. Hell• Boston Dynamics gets 32Mil contract for BigDog

Papers

Mac Security Report

HITB ezine

WTF

nmap 5.20

bot hunter 1.5

Adobe javascript blacklist framework

vimeo html5 player

firefox 3.6

burp suite 1.3

GroundspeedFirefox web app sec add-on

Updates

• Australia outlaws anonymous speech

• No Scan No Fly at Heathrow

CON Events

ShmooCon

All images scavenged without permission

All images scavenged without permission