Infosecurity – one size fits all. Really?

InfoSecurity Europe, London, closed its doors yesterday, with an estimated 20,000 attendees coming through the doors over the last 3 days (up from 15,000 last year). The investment in exhibition equipment, marketing-freebies and volume of new attendees is really impressive.

Certainties in life – death, taxes and email scams…

Email scams appear to be inevitable – with phishing and spear phishing causing incredible pain to individuals and organizations.

New Year, New BIND Security Vulnerabilities.

[vc_row][vc_column width=”2/3″][vc_column_text]We are barely into the new year, and BIND users have more patching to do. Today, the Internet Software Consortium (ISC) announced the availability of patches to fix two critical BIND security vulnerabilities: • CVE-2015-8704 • CVE-2015-8705 Both of these vulnerabilities

The Grinch Comes Early for BIND Users

[vc_row][vc_column width=”2/3″][vc_column_text]The grinch showed up early for BIND users this year, in the form of two new critical security vulnerabilities that can crash BIND. The two vulnerabilities are: • CVE-2015-8000 • CVE-2015-8461 ISC has released patches of its BIND software that correct the problem. Users of BIND-based appliances from vendors such as Infoblox, Bluecat Networks, […]

When It Rains, It Pours. More BIND Vulnerabilities.

September 2, 2015 was not a good day for BIND users. Two new critical security vulnerabilities were announced today – both of them are remotely exploitable vulnerabilities that crash the server. The two vulnerabilities are: CVE-2015-5986 CVE-2015-5722 ISC has release patches of its BIND software that correct the problem. Users of BIND-based appliances from vendors such […]

Secure64 DNS Products Not Vulnerable to BIND Security Flaw

On July 28, 2015, the Internet Systems Consortium reported a critical security vulnerability in BIND, CVE-2015-5477. This vulnerability, which affects both BIND recursive and authoritative servers, is caused by an error in the handling of TKEY queries, allowing a remote attacker to crash BIND by sending a deliberately constructed query. This vulnerability is considered critical, as it cannot […]