New ransomware named CryptoLocker threatens to destroy data unless a payment is made.
Critical Java Vulnerability included in Exploit Kit
This bulletin details four recently published, critical rated, vulnerabillies in Adobe ColdFusion and ways to mitigate the risk of them being exploited including the hotfix for supported versions.
As the use of Java applets on websites continues to diminish and in light of the rash of recent vulnerability exploits, the implications of installing Java for use in web browsers should be considered carefully.
On January 10, 2013, security researchers reported a zeroday vulnerability in Oracle Java 1.7u10.
On November 5th, 2012, the United States Computer Emergency Readiness Team (US-CERT) website announced their researcher had discovered a vulnerability in the way some versions of Symantec Endpoint Protections handle CAB files. This vulnerability may allow an unauthenticated remote or local attacker to execute arbitrary code with SYSTEM privileges on a targeted computer.
On September 17, 2012 Microsoft released Security Advisory 2757760 acknowledging an unpatched vulnerability in multiple versions of Internet Explorer.
Unpatched Vulnerability In Oracle Java Version 7 (aka 1.7)
See an email about a wire transfer? You're right to be suspicious. These are definitely phishing/SPAM; you should simply delete them.
A remote code execution vulnerability exists such that an attacker who successfully exploited this vulnerability could run abitrary code on the target system, then install programs; view, change, or delete data; or create new accounts with full rights.