Advisories & Alerts

  • [SingCERT] Security Updates for Adobe Reader and Acrobat December 2014 10 December 2014

    Adobe has released security updates for Adobe Reader and Acrobat for Windows and Macintosh.

  • [SingCERT] Security Updates for Adobe Flash Player December 2014 10 December 2014

    Adobe has released security updates for Adobe Flash Player 15.0.0.242 and earlier versions for Windows and Macintosh and Adobe Flash Player 11.2.202.424 and earlier versions for Linux.

  • [SingCERT] Security Hotfixes for ColdFusion 10 December 2014

    Adobe has released security hotfixes for ColdFusion versions 10 and 11. The hotfixes address a resource consumption issue that could potentially result in a denial of service.

  • [SingCERT] Microsoft Security Updates for December 2014 10 December 2014

    Microsoft has released 7 security bulletins this month to address vulnerabilities in Microsoft Windows, Internet Explorer, Microsoft Office and Microsoft Exchange.

  • [SingCERT] CryptoPHP 28 November 2014

    CryptoPHP is a malware that is embedded in pirated versions of Joomla, Drupal and WordPress themes and plugins. It integrates itself into the Content Management System (CMS) when the software is installed and uses encryption to communicate with the command and control (C&C) server to execute codes. It also compromises their web servers and forces it to perform illegal search engine optimization (blackhat SEO) which is the use of unethical techniques to boost the search ranking of a website or webpage

  • [SingCERT] Out-of-Band Security Updates for Adobe Flash Player 26 November 2014

    Adobe has released security updates for Adobe Flash Player 15.0.0.223 and earlier versions for Windows and Macintosh and Adobe Flash Player 11.2.202.418 and earlier versions for Linux.

  • [SingCERT] Malicious SMS 24 November 2014

    SingCERT has received reports of individuals receiving an SMS message from their contacts.

  • [SingCERT] Unsecured Webcams Online 10 November 2014

    A site, known as Insecam, has listed more than 73,000 unsecured webcams and is currently broadcasting the feeds/surveillance footage over the Internet.
    Insecam claims that they've been able to access the feeds because owners have not changed their passwords from the generic ones that come with the devices – like 1234, or admin.

  • [SingCERT] SSLv3 "POODLE" Vulnerability 16 October 2014

    The Secure Sockets Layer version 3.0 is an old version of security technology for establishing an encrypted link between a server and a client.