iFone? |
Posted by Sean @ 15:19 GMT |
|
 The presentations here are great, there are six concurrent tracks, and this year they've introduced Geek Zone which is very much hands-on. And to give you an idea of what's going on, today Jacomo Piccolini from CAIS/RNP in Brazil and Francisco Monserrat from IRIS-CERT here in Spain will let everyone play around with IRC based botnets. Right now Robert Hensing from Microsoft CERT is giving a presentation and demo on how targeted attacks based on Office Documents work. More importantly, he's talking about how the new file format used in Office 2007 should help in making Office based attacks more difficult to perform. Hasta la vista, Patrik
Dang |
Posted by Mikko @ 06:17 GMT |
|
Over the next several weeks, users worldwide will be prompted to update to a new version of Yahoo! Messenger upon signing into the service. If you choose not to update and you have not updated via this page or at messenger.yahoo.com, the vulnerability will still exist. Yahoo has a very good track record of fixing security issues quickly. However, I feel it is not proactive enough in communicating the security advisories to their users. For instance, for the current issues, there is no notice or link on the Yahoo Messenger home page or any other part of the website asking users to install the urgent security upgrade. You won't find the advisory unless you are looking for it. Update (10th June): I just noticed that Yahoo has now added a prominent "Security Update" notice to the Yahoo Messenger home page. Good work, Yahoo! Signing Off, Masood
|
|