This security update resolves a privately reported vulnerability in Microsoft Windows Kerberos KDC that could allow an attacker to elevate unprivileged domain user account privileges to those of the domain administrator account. An attacker could use these elevated privileges to compromise any computer in the domain, including domain controllers. Read more at https://technet.microsoft.com/library/security/MS14-068
A large scale phishing campaign that utilises malicious links, used to bypass Anti-Virus defences, and connect to malicious servers hosting Dyre/Dyreza malware. The emails are propagated through spam messages, many of which appear to be messages from financial institutions. Dyre/Dyreza is a banking trojan that exploits vulnerabilities within the infected machine’s systems, potentially giving malicious actors […]
The next group meeting will be on 16th December in Stirling. The venue and agenda are still to be confirmed so more information will follow as soon as we have it.
Microsoft has patched a critical bug in its software that had existed for 19 years. IBM researchers found the bug which has been present since Windows 95 and have been working with Microsoft to fix it, the full story can be read on http://www.bbc.co.uk/news/technology-30019976