21st Century Learning and Teaching

WordPress 4.2.1 is now available. This is a critical security release for all previous versions and we strongly encourage you to update your sites immediately.

A few hours ago, the WordPress team was made aware of a cross-site scripting vulnerability, which could enable commenters to compromise a site. The vulnerability was discovered by Jouko Pynnönen.

WordPress 4.2.1 has begun to roll out as an automatic background update, for sites that support those.

For more information, see the release notes or consult the list of changes.

Download WordPress 4.2.1 or venture over to Dashboard → Updates and simply click “Update Now”.

Patches are released for Mavericks, Mountain Lion, OS X Server and iTunes. A fix for the POODLE bug is included where appropriate. Most of the bugs are old ones in iTunes.

Learn more:

- http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

- http://gustmees.wordpress.com/2012/11/05/naivety-in-the-digital-age/

And NOBODY talks about it!!! Are THEY ALL on NAIVETY status!!!???

Buy something and keep it long enough, and in time it will become vintage: cool, unique and a throwback to days gone by. But while vintage w...

Keeping software up-to-date is a critical piece of the overall business security picture. Outdated software contains security flaws which cybercriminals can use as avenues to infiltrate the corporate network.

70 to 80 percent of the top ten malware detected by F-Secure Labs could have been prevented with up-to-date software.

Learn more:

• http://gustmees.wordpress.com/2012/05/03/update-your-third-party-applications/
  

Adobe Flash users are once again being told they need to update their software, after a new zero-day exploit was discovered.

The critical security flaw in in Adobe Flash Player was uncovered after hackers targeted visitors to a number of different foreign and economic policy websites dealing with matters of national security.

Our initial research of the exploit indicates that this vulnerability is capable of affecting Microsoft Office versions 2003, 2007, and 2010 (Office 2010 vulnerability is limited to Windows XP and Server 2003 operating systems) and that it will fail on machines viewing the documents in protected mode (ActiveX support in documents disabled). While it is not easy to determine if computers have ActiveX enabled for Office documents, it is possible to profile vulnerable combinations of Microsoft Windows and Office to help understand the attack surface.

Our telemetry feeds indicate the following breakdown of Microsoft Office versions deployed in enterprise environments:

- Office 2003 - 5%

- Office 2007 - 30%

- Office 2010 - 41%

- Office 2013 - 14%

Beyond practicing due diligence in opening any attachments arriving by email, it is recommended that all users of the affected Office versions install Microsoft Fix it 51004. Websense will continue to monitor any developments related to the use of this vulnerability in future attacks.

===> Beyond practicing due diligence in opening any attachments arriving by email, it is recommended that all users of the affected Office versions install Microsoft Fix it 51004. <===

Websense will continue to monitor any developments related to the use of this vulnerability in future attacks.   - 

Firefox 25 is due to officially launch on Tuesday, but you can grab the desktop version right now. Download links for Windows, Mac, and Linux are available on Mozilla's servers here: ...

Updates of any software, programs, OS are a MUST!!! Update asap!!!

Joomla! - le portail dynamique et système de gestion de contenu, Association Francophone des Utilisateurs de Joomla!

Correctif de vulnérabilité pour Joomla 1.5

Un problème de sécurité a été détecté dans toutes les versions de Joomla, lié aux téléchargements de fichiers non autorisés. Les versions 2.5 et 3.1 sont corrigées lors de la mise à jour en 2.5.14 ou 3.1.5.

Patch Tuesday is coming on 11 June 2013.

Paul Ducklin gives you a quick preview of what we know so far, and who'll be affected by the updates...

(Mac users, that might include you.)

Apple diffuse une mise à jour pour son navigateur Safari. Elle permet de corriger plusieurs vulnérabilités de sécurité affectant le moteur de rendu WebKit.

Apple publie Safari 8.0.4, Safari 7.1.4 et Safari 6.2.4. Ces mises à jour pour le navigateur de la firme à la pomme sont à destination du système d'exploitation OS X Mountain Lion, Mavericks et Yosemite.

Ces mises à jour peuvent être obtenues depuis le menu Apple et le bouton " Mises à jour " ou depuis le Mac App Store. Elles ont pour but de corriger un total de dix-sept vulnérabilités de sécurité affectant le moteur de rendu WebKit.

En savoir plus / Learn more / Mehr erfahren:

- http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

Les trois premiers navigateurs web du marché, Chrome, Internet Explorer et Firefox, sont mis à jour, afin d’éliminer des failles de sécurité.

En savoir plus :

- http://gustmees.wordpress.com/2012/05/02/get-smart-with-5-minutes-tutorialsit-securitypart-1-browsers/

Updates to Acrobat, Reader, Flash Player and Illustrator are for critical vulnerabilities and will be available today.

Adobe has issued a series of updates to address a large number of vulnerabilities in their products. All updated products have at least one critical vulnerability.

The update to Adobe Acrobat and Reader fixes 11 vulnerabilities in the Windows and Mac products. The update to Flash Player fixes five vulnerabilities in all versions of the product: Windows, Mac and Linux, including the versions embedded in Google Chrome and Internet Explorer.

The Illustrator update addresses a single vulnerability in the Windows and Mac products.

=========> UPDATE asap!!! <==========

Whether you’re fleeing to a new OS or battening down the XP hatches, read this to survive unscathed.

It's coming: XPocalypse—the end of Microsoft’s support of Windows XP on April 8. Anyone who still has a PC with Windows XP is either scrambling to figure out what to do with it—or in some state of blissful denial about it all. Or, they are lashing themselves to the mast of their old XP schooner, determined to ride out the storm.

But what storm, really? Windows 8.1 Spring Update becomes available the same day, and it addresses the biggest complaints most people had with the radical reimagining of Microsoft's operating system.

Google has fixed four high risk vulnerabilities in Chrome before the Pwn2Own contest.

===> Update asap!!! <===

Apple users are updating to OS X Mavericks in large numbers, but not fast enough. Corporate users in particular have been slow to upgrade, which could have serious security implications.

Apple is famous for the secrecy around its product and service launches.

===> It's unfortunate it has decided that the safety of Mac users should also require reading tea leaves. <===

Google hat angekündigt, dass Chrome künftig Downloads von browserverändernder Malware automatisch blockieren soll. Wer die Funktion schon ausprobieren will, muss die aktuellste Fassung von Chrome

Adobe released security updates for Flash Player, Adobe Reader and Shockwave Player on Tuesday to address critical vulnerabilities that could allow attackers to take control of systems running vulnerable versions of those programs.

Users of Google Chrome and Internet Explorer 10 on Windows 8 will automatically receive updates for the Flash Player plug-in bundled with those browsers through their respective update mechanisms.

Users of Adobe Reader or Acrobat XI for Windows and Mac OS X are advised to upgrade to Adobe Reader XI (11.0.04) or Adobe Acrobat XI (11.0.04), respectively. Adobe Reader and Acrobat X for Windows and Mac have also been updated to version 10.1.8.