Outlook.com Android App Leaves Email Messages Exposed

Kelly Higgins reports at darkreading.com that the Outlook Android app leaves email unencrypted and possibly vulnerable to discovery. "Outlook.com does have a PIN feature, but it only protects the user interface to the app, not the stored data on the file...

iTunes 11.2 opens security hole: Update to 11.2.1 ASAP

The update to Apple’s iTunes 11.2 opened some security holes for users of Mac OS X, particularly on multi-user systems. Apple has already fixed the problem and released iTunes 11.2.1. More info: Apple 11.2.1 bug fix (Macrumors.com) Official Apple...

Recent Adobe Advisories

Adobe has released three new security bulletins–and updates to close those vulnerabilities. Products affected: Adobe Reader, Acrobat, Flash Player, Illustrator (CS6). For more information: Reader & Acrobat Flash Player...

New Android worm detected

Welivesecurity.com has published information on a worm that is causing problems for Android users. They indicate that The main characteristic feature of any computer worm is that it uses a more-or-less automated mechanism for spreading and finding new victims. The...

More on April IE vulnerability

Here’s some more information about the IE Zero-Day vulnerability mentioned yesterday in IT-Pros: http://www.fireeye.com/blog/uncategorized/2014/04/new-zero-day-exploit-targeting-internet-explorer-versions-9-through-11-identified-in-targeted-attacks.html...

IE vulnerability

Microsoft has released a security advisory about a vulnerability in Internet explorer that’s being exploited in the wild. The current exploit is targeting IE9-IE11 but the vulnerability exists in IE6 and later. EMET 4.1 will mitigate the vulnerability....

More mailbox scams

We’ve seen these scams before. Every so often, a non-UDel email account messages you to inform you that your mailbox is almost full. Unfortunately for them, these would-be scammers make so many mistakes that it’s hard to believe they’re still in...

Beware of Heartbleed scams

Everyone who’s been online in the past couple days knows the net has basically been on fire. News about the Heartbleed Open SSL exploit is all over the place, and people are scrambling to change their passwords. But maybe we shouldn’t be so hasty – not...

More vish

The AT&T vishing scams are still going around. AT&T subscribers are reminded to visit only the official AT&T website, www.att.com, for matters concerning their phones or billing statements. Below is a list of caller numbers confirmed to be vishers: (800)...

They’re targeting us…

The phishing scams are back. This one is better than most, but it’s definitely fake. This phish was reported to us with the HTML written in plain text, so I’ve recreated the email minus the gibberish and plus the formatting. First, the email opens with a...