SECURITY PATCHES
MICROSOFT: Microsoft patches 27 flaws in Windows, Office, IE, and Edge. Many of the flaws could allow for remote code execution attacks through websites and malicious documents. Read the rest
[PCWORLD.COM]
ANDROID: AOSP Changelogs Posted for August Security Patches. The odds are pretty good that if you’re using a still-supported Nexus device, it’s probably running August’s security update by now. The factory images became available on August 1 and OTAs have been intermittently rolling out since then. The push to AOSP took a little longer and finally included a couple of other tags that were behind schedule. All of the changes have been compiled into their respective lists and the changelogs are ready for perusal. Find out more
[ANDROIDPOLICE.COM]
MORE ANDROID: ‘Quadrooter’ Flaws Affect Over 900 Million Android Phones. All versions of Android are vulnerable to these flaws, which won’t be fully patched until the September security release next month. Four previously undisclosed security vulnerabilities found in Android phones and tablets that ship with Qualcomm chips could let a hacker take full control of an affected device. Almost a billion Android devices are affected by the “high” risk privilege escalation vulnerabilities, dubbed “Quadrooter,” say researchers at security firm Check Point. Read more
[ZDNET.COM]
APPLE: Apple Security Bug Lets Hackers Nab Your Mac and iPhone Passwords With 1 Text. Apple software contains flaws that could allow hackers to steal people’s passwords by doing nothing more than sending a single nefarious message. Apple patched the vulnerabilities in its July 20 batch of software updates. Still, it is incumbent upon people to download the updates. Read more
[FORTUNE.COM]
==========
NOW ON SLIDESHARE: Tech Update Summary from Blue Mountain Data Systems July 2016 http://www.slideshare.net/BMDS3416/tech-update-summary-from-blue-mountain-data-systems-july-2016.
IT SECURITY SUPPORT: Blue Mountain Data Systems is actively involved in implementing FISMA and NIST standards with Federal Civilian Agencies. Due to our extensive experience in this area, Blue Mountain has developed processes and organizational techniques to help ensure security deliverables are completed on time, and performed in the most efficient manner possible. We ensure that NIST-800-53 control requirements are treated consistently during definition, analysis, implementation, auditing, and reporting phases of a system. Find out more about Blue Mountain Data Systems IT Security Support Services. Call us at 703-502-3416.
BLUE MOUNTAIN DATA SYSTEMS HAS THE EXPERIENCE: 1994 to Present – U.S. Dept. of Labor, Employee Benefits Security Administration. Responsible to the Office of Technology and Information Systems for information systems architecture, planning, applications development, networking, administration and IT security, supporting the enforcement of Title I of the Employee Retirement Income Security Act — ERISA. Within the EBSA, Blue Mountain is responsible for design, development and support for its various enforcement database management systems, as well as all case tracking and customer service inquiry systems. Blue Mountain also provides IT security services to the EBSA, in the form of FISMA Assessment and Authorization, System Security Plans, Risk and vulnerability assessments, monitoring and investigation support. Read more.
==========