GOOGLE: Google Patches 9 Security Flaws in New Chrome Browser Build. Google updated its browser Thursday patching nine security bugs, labeling four as “high” and two as a “medium” risk to computer users. The update was tied to a new Chrome browser build (50.0.2661.94) that fixes the flaws. Google also shelled out $14,000 tied to bug bounty payouts addressed in this security updates, according to a Google Chrome Team security bulletin. Read more
MICROSOFT: Is Microsoft Using Security Patch KB 3146706 to Break Pirate Copies of Windows 7? It’s not clear whether it’s intentional, but the patch is throwing blue screen error 0x0000006B on Ghost pirate copies of Windows 7. Read the rest
MOZILLA: Patches Firefox Flaw Discovered by GCHQ’s Information Security Arm. Mozilla has fixed a security flaw having high vulnerability impact on its Firefox web browser. The flaw was first discovered by the Communications-Electronics Security Group (CESG), the information security arm of the UK Government Communications Headquarters (GCHQ). In Firefox version 46 that was released on 26 April across desktop and Android devices, Mozilla patched as many as 10 vulnerabilities, of which some are rated either critical or of high severity. Find out more
OFFICE 365: Microsoft Patches Serious Office 365 Security Flaw. Microsoft has patched a vulnerability in Office 365 that could have allowed an attacker to gain access to any account at a business with a federated domain. Researchers Yiannis Kakavas and Klemen Bratec discovered the flaw and say Microsoft “mitigated” the threat within seven hours of notification. However, the group of companies that use federated domains includes some of the biggest names in technology, such as IBM, Cisco, BT, Vodafone and Microsoft itself, and high profile firms like British Airways, PwC and KPMG. Read more
NOW ON SLIDESHARE: Tech Update Summary from Blue Mountain Data Systems April 2016 http://www.slideshare.net/BMDS3416/tech-update-summary-from-blue-mountain-data-systems-april-2016.
IT SECURITY SUPPORT: Blue Mountain Data Systems is actively involved in implementing FISMA and NIST standards with Federal Civilian Agencies. Due to our extensive experience in this area, Blue Mountain has developed processes and organizational techniques to help ensure security deliverables are completed on time, and performed in the most efficient manner possible. We ensure that NIST-800-53 control requirements are treated consistently during definition, analysis, implementation, auditing, and reporting phases of a system. Find out more about Blue Mountain Data Systems IT Security Support Services. Call us at 703-502-3416.
BLUE MOUNTAIN DATA SYSTEMS HAS THE EXPERIENCE: 1994 to Present – U.S. Dept. of Labor, Employee Benefits Security Administration. Responsible to the Office of Technology and Information Systems for information systems architecture, planning, applications development, networking, administration and IT security, supporting the enforcement of Title I of the Employee Retirement Income Security Act — ERISA. Within the EBSA, Blue Mountain is responsible for design, development and support for its various enforcement database management systems, as well as all case tracking and customer service inquiry systems. Blue Mountain also provides IT security services to the EBSA, in the form of FISMA Assessment and Authorization, System Security Plans, Risk and vulnerability assessments, monitoring and investigation support. Read more.