Silent security updates coming to Apple’s OS X Mountain Lion

he latest update to the Mountain Lion Developer Preview, includes the “OS X Security Update Test 1.0″ feature which silently downloads and installs the latest security updates.

According to AppleInsider, in the latest update to the Mountain Lion Developer Preview, includes the “OS X Security Update Test 1.0″ feature, which will run daily or whenever a Mac restarts in an attempt to silently download and install the latest security updates. Continue reading Silent security updates coming to Apple’s OS X Mountain Lion

How ‘Flame’ virus works!

Earlier , we published about the new virus making headlines ‘The flame’. We already discussed about its ability to leak documents and large amounts of data from the affected system. However, as this piece of malware has been designed to spy on computers located in industrial environments, the attackers expected to that the malware would encounter some restrictions and security policies enforced at the protected network perimeter. Continue reading How ‘Flame’ virus works!

Microsoft patches IE, RDP security vulnerabilities

Microsoft distributed its July security update on Tuesday, naming two of the seven patches as ones which IT departments should move quickly to deploy to users.

In total, the software giant released seven bulletins to address 27 vulnerabilities.

Among the high-priority fixes is MS12-037, which shores up a baker’s dozen of security flaws affecting all supported versions of Internet Explorer. Cumulative updates for the popular web browser are nearly always considered pressing because of the ease by which malware writers can use the defects to spread malware. Continue reading Microsoft patches IE, RDP security vulnerabilities

Thousands of Twitter accounts wide open after TweetGif hack

Part of a database containing the credentials for more than 8,000 Twitter accounts, apparently obtained from the TweetGif image hosting service, is currently circulating online. The extract contains access tokens and the associated access token secrets which can be used to access users’ Twitter accounts.

Users log into the third-party TweetGif app using their Twitter account, and Twitter then provides TweetGif with an access token. This token allows TweetGif to access the user’s Twitter account in perpetuity without having to request permission each time it wishes to do so.

The tokens remain valid even when the account password is changed. As a precautionary measure, anyone who has used TweetGif in the past is advised to revoke the service’s access rights under Settings ➤ Apps on twitter.com. The LulzSecReborn Hacker group has already claimed responsibility for leaking the user data. The group was also responsible for publishing data from the MilitarySingles.com e-dating web site and from security services provider CSS Corp earlier this year.

demostrates how to use twitter to build password cracking wordlist , click here to view!

HP Security Bulletin HPSBMU02776 SSRT100852

HP Security Bulletin HPSBMU02776 SSRT100852 – Potential security vulnerabilities have been identified with HP Onboard Administrator (OA). The vulnerabilities could be exploited remotely resulting in unauthorized access to data, unauthorized disclosure of information, and Denial of Service (DoS).