[347] in Security FYI
[IS&T Security-FYI] Newsletter, Jan. 25, 2007
daemon@ATHENA.MIT.EDU (Monique Yeaton)
Thu Jan 25 16:14:23 2007
Mime-Version: 1.0 (Apple Message framework v752.3)
To: ist-security-fyi@MIT.EDU
Message-Id: <B0A9BFE8-A3E5-438B-A470-8B35AF11D131@mit.edu>
From: Monique Yeaton <myeaton@MIT.EDU>
Date: Thu, 25 Jan 2007 16:09:55 -0500
Content-Type: multipart/mixed; boundary="===============1499119256=="
Errors-To: ist-security-fyi-bounces@MIT.EDU
--===============1499119256==
Content-Type: multipart/alternative; boundary=Apple-Mail-3-326151375
--Apple-Mail-3-326151375
Content-Transfer-Encoding: 7bit
Content-Type: text/plain;
charset=US-ASCII;
delsp=yes;
format=flowed
Hello readers,
I am changing the format of the IS&T Security FYI email a bit and
making it into a weekly or bi-weekly newsletter depending on what
makes most sense. As you may have noticed from the last email I sent,
there are plenty of topics to discuss, and this format makes it
easier to include more than one topic at a time. Please let me know
what you think when you have a chance. If there are any topics you
would like to see included, feel free to drop me a line at
myeaton@mit.edu.
This issue includes:
1. Apple QuickTime Update
2. Security @ MIT blog site
3. Safety Tip of the Week
--------------------------------
1. Apple QuickTime Update
--------------------------------
Two weeks ago I warned you about a vulnerability that exists in the
way Apple QuickTime handles specially crafted Real Time Streaming
Protocol URL strings. This week Apple released Security Update
2007-001 which addresses this issue.
The update can be downloaded manually from the Apple site here:
http://www.apple.com/support/downloads/.
Mac and Windows users who have Software Update turned on in their
preferences and already have QuickTime 7.1.3 installed, will
automatically receive the update. After downloading, you will be
required to restart your computer.
If applicable, you may want to first check with your local IT support
provider before installing patches on your system.
----------------------------
2. Security @ MIT Blog
----------------------------
At times there is information in the media or from other sources
relating to IT security that we like to post or make comments on. We
have developed a blog where our team contributes articles to on a
regular basis. Some of these articles were also included in our
regular Security-FYI emails. Please check out our blog and post a
comment. We are open to suggestions and ideas on how to improve this
tool for our audience.
https://bloggeroff.mit.edu/blogs/security/
-----------------------------
Safety Tip of the Week
-----------------------------
[As a regular feature of the newsletter, this section will include a
safety computing tip of the week. If you have any suggestions for a
tip, please pass it along!]
This week's tip:
Update your anti-virus program. I was talking to a colleague earlier
today who said to me that she gets regular notices from her anti-
virus program asking to update. She's been ignoring the messages
because she wasn't sure what to do about it. Many people aren't aware
how virus-protection software works and assume all is well just
because they have a virus-protection program running on their
computer. But that's not always the case.
Because new threats emerge all the time, your virus-protection
software needs to be regularly updated so that it can catch the
latest ones. You should therefor always update your virus protection
software. VirusScan for Windows and Virex for Mac come pre-configured
to do daily updates when downloaded off MIT's IS&T software website.
You should let the program update itself in the background so that
you aren't notified each time this happens. You can also manually
update your program by visiting the McAfee site at http://
www.mcafee.com/us/downloads/.
To learn more:
http://web.mit.edu/ist/topics/virus/
If you have any questions please contact us at security@mit.edu or if
you need help with your computer contact the Computing Help Desk at
computing-help@mit.edu.
Happy computing,
Monique
=========================
Monique Yeaton
IT Security Awareness Consultant
MIT Information Services & Technology (IS&T)
(617) 253-2715
http://web.mit.edu/ist/security
--Apple-Mail-3-326151375
Content-Transfer-Encoding: quoted-printable
Content-Type: text/html;
charset=ISO-8859-1
<HTML><BODY style=3D"word-wrap: break-word; -khtml-nbsp-mode: space; =
-khtml-line-break: after-white-space; "><DIV>Hello =
readers,</DIV><DIV><BR class=3D"khtml-block-placeholder"></DIV><DIV>I am =
changing the format of the IS&T Security FYI email a bit and making =
it into a weekly or bi-weekly newsletter depending on what makes most =
sense. As you may have noticed from the last email I sent, there are =
plenty of topics to discuss, and this format makes it easier to include =
more than one topic at a time. Please let me know what you think when =
you have a chance. If there are any topics you would like to see =
included, feel free to drop me a line at <A =
href=3D"mailto:myeaton@mit.edu">myeaton@mit.edu</A>.</DIV><DIV><BR =
class=3D"khtml-block-placeholder"></DIV><DIV>This issue =
includes:</DIV><DIV><BR class=3D"khtml-block-placeholder"></DIV><DIV>1. =
Apple QuickTime Update</DIV><DIV>2. Security @ MIT blog =
site</DIV><DIV>3. Safety Tip of the Week</DIV><DIV><BR =
class=3D"khtml-block-placeholder"></DIV><DIV><BR =
class=3D"khtml-block-placeholder"></DIV><DIV>-----------------------------=
---</DIV>1. Apple QuickTime =
Update<DIV>--------------------------------</DIV><DIV>Two weeks ago I =
warned you about a vulnerability that exists in the way Apple QuickTime =
handles specially crafted Real Time Streaming Protocol URL strings. This =
week Apple released Security Update 2007-001 which addresses this =
issue.=A0</DIV><DIV><BR class=3D"khtml-block-placeholder"></DIV><DIV>The =
update can be downloaded manually from the Apple site here:=A0<A =
href=3D"http://www.apple.com/support/downloads/">http://www.apple.com/supp=
ort/downloads/</A>.=A0</DIV><DIV>Mac and Windows users who have Software =
Update turned on in their preferences and already have QuickTime 7.1.3 =
installed, will automatically receive the update. After downloading, you =
will be required to restart your computer.</DIV><DIV><BR =
class=3D"khtml-block-placeholder"></DIV><DIV>If applicable, you may want =
to first check with your local IT support provider before installing =
patches on your system.=A0</DIV><DIV><BR =
class=3D"khtml-block-placeholder"></DIV><DIV><BR =
class=3D"khtml-block-placeholder"></DIV><DIV>----------------------------<=
/DIV><DIV>2. Security @ MIT =
Blog</DIV><DIV>----------------------------</DIV><DIV>At times there is =
information in the media or from other sources relating to IT security =
that we like to post or make comments on. We have developed a blog where =
our team contributes articles to on a regular basis. Some of these =
articles were also included in our regular Security-FYI emails. Please =
check out our blog and post a comment. We are open to suggestions and =
ideas on how to improve this tool for our audience.</DIV><DIV><BR =
class=3D"khtml-block-placeholder"></DIV><DIV><A =
href=3D"https://bloggeroff.mit.edu/blogs/security/">https://bloggeroff.mit=
.edu/blogs/security/</A></DIV><DIV><BR =
class=3D"khtml-block-placeholder"></DIV><DIV><BR =
class=3D"khtml-block-placeholder"></DIV><DIV>-----------------------------=
</DIV><DIV>Safety Tip of the =
Week</DIV><DIV>-----------------------------</DIV><DIV>[As a regular =
feature of the newsletter, this section will include a safety computing =
tip of the week. If you have any suggestions for a tip, please pass it =
along!]</DIV><DIV><BR class=3D"khtml-block-placeholder"></DIV><DIV>This =
week's tip:</DIV><DIV><BR =
class=3D"khtml-block-placeholder"></DIV><DIV><SPAN =
class=3D"Apple-style-span"><B>Update your anti-virus program</B>. I was =
talking to a colleague earlier today who said to me that she gets =
regular notices from her anti-virus program asking to update. She's been =
ignoring the messages because she wasn't sure what to do about it. Many =
people aren't aware how virus-protection software works and assume all =
is well just because they have a virus-protection program running on =
their computer. But that's not always the case.</SPAN></DIV><DIV><BR =
class=3D"khtml-block-placeholder"></DIV><DIV>Because new threats emerge =
all the time, your virus-protection software needs to be regularly =
updated so that it can catch the latest ones. You should therefor always =
update your virus protection software. VirusScan for Windows and Virex =
for Mac come pre-configured to do daily updates when downloaded off =
MIT's IS&T software website. You should let the program update =
itself in the background so that you aren't notified each time this =
happens. You can also manually update your program by visiting the =
McAfee site at=A0<A =
href=3D"http://www.mcafee.com/us/downloads/">http://www.mcafee.com/us/down=
loads/</A>.</DIV><DIV><BR class=3D"khtml-block-placeholder"></DIV><DIV>To =
learn more:</DIV><DIV><A =
href=3D"http://web.mit.edu/ist/topics/virus/">http://web.mit.edu/ist/topic=
s/virus/</A></DIV><DIV><BR class=3D"khtml-block-placeholder"></DIV><DIV>If=
you have any questions please contact us at <A =
href=3D"mailto:security@mit.edu">security@mit.edu</A> or if you need =
help with your computer contact the Computing Help Desk at <A =
href=3D"mailto:computing-help@mit.edu">computing-help@mit.edu</A>.</DIV><D=
IV><BR class=3D"khtml-block-placeholder"></DIV><DIV>Happy =
computing,</DIV><DIV><BR =
class=3D"khtml-block-placeholder"></DIV><DIV>Monique</DIV><DIV><BR><DIV> =
<SPAN class=3D"Apple-style-span" style=3D"border-collapse: separate; =
border-spacing: 0px 0px; color: rgb(0, 0, 0); font-family: Helvetica; =
font-size: 14px; font-style: normal; font-variant: normal; font-weight: =
normal; letter-spacing: normal; line-height: normal; text-align: auto; =
-khtml-text-decorations-in-effect: none; text-indent: 0px; =
-apple-text-size-adjust: auto; text-transform: none; orphans: 2; =
white-space: normal; widows: 2; word-spacing: 0px; "><SPAN =
class=3D"Apple-style-span" style=3D"border-collapse: separate; =
border-spacing: 0px 0px; color: rgb(0, 0, 0); font-family: Helvetica; =
font-size: 14px; font-style: normal; font-variant: normal; font-weight: =
normal; letter-spacing: normal; line-height: normal; text-align: auto; =
-khtml-text-decorations-in-effect: none; text-indent: 0px; =
-apple-text-size-adjust: auto; text-transform: none; orphans: 2; =
white-space: normal; widows: 2; word-spacing: 0px; "><SPAN =
class=3D"Apple-style-span" style=3D"border-collapse: separate; =
border-spacing: 0px 0px; color: rgb(0, 0, 0); font-family: Helvetica; =
font-size: 12px; font-style: normal; font-variant: normal; font-weight: =
normal; letter-spacing: normal; line-height: normal; text-align: auto; =
-khtml-text-decorations-in-effect: none; text-indent: 0px; =
-apple-text-size-adjust: auto; text-transform: none; orphans: 2; =
white-space: normal; widows: 2; word-spacing: 0px; "><SPAN =
class=3D"Apple-style-span" style=3D"border-collapse: separate; =
border-spacing: 0px 0px; color: rgb(0, 0, 0); font-family: Helvetica; =
font-size: 12px; font-style: normal; font-variant: normal; font-weight: =
normal; letter-spacing: normal; line-height: normal; text-align: auto; =
-khtml-text-decorations-in-effect: none; text-indent: 0px; =
-apple-text-size-adjust: auto; text-transform: none; orphans: 2; =
white-space: normal; widows: 2; word-spacing: 0px; "><DIV =
style=3D"font-size: 12px; "><SPAN class=3D"Apple-style-span" =
style=3D"font-size: 12px; "><SPAN class=3D"Apple-style-span" =
style=3D"font-size: 12px; =
">=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D</SPAN></SPAN></DIV><DIV style=3D"font-size: 12px; "><SPAN =
class=3D"Apple-style-span" style=3D"font-size: 12px; "><SPAN =
class=3D"Apple-style-span" style=3D"font-size: 12px; ">Monique =
Yeaton</SPAN></SPAN></DIV><DIV style=3D"font-size: 12px; "><SPAN =
class=3D"Apple-style-span" style=3D"font-size: 12px; "><SPAN =
class=3D"Apple-style-span" style=3D"font-size: 12px; ">IT Security =
Awareness Consultant</SPAN></SPAN></DIV><DIV style=3D"font-size: 12px; =
"><SPAN class=3D"Apple-style-span" style=3D"font-size: 12px; "><SPAN =
class=3D"Apple-style-span" style=3D"font-size: 12px; ">MIT Information =
Services & Technology (IS&T)</SPAN></SPAN></DIV><DIV =
style=3D"font-size: 12px; "><SPAN class=3D"Apple-style-span" =
style=3D"font-size: 12px; "><SPAN class=3D"Apple-style-span" =
style=3D"font-size: 12px; ">(617) 253-2715</SPAN></SPAN></DIV><DIV =
style=3D"font-size: 12px; "><SPAN class=3D"Apple-style-span" =
style=3D"font-size: 12px; "><SPAN class=3D"Apple-style-span" =
style=3D"font-size: 12px; "><A =
href=3D"http://web.mit.edu/ist/security">http://web.mit.edu/ist/security</=
A></SPAN></SPAN></DIV><DIV style=3D"font-size: 12px; "><BR =
class=3D"khtml-block-placeholder"></DIV><BR =
class=3D"Apple-interchange-newline"></SPAN></SPAN></SPAN></SPAN> =
</DIV><BR></DIV></BODY></HTML>=
--Apple-Mail-3-326151375--
--===============1499119256==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
_______________________________________________
ist-security-fyi mailing list
ist-security-fyi@mit.edu
http://mailman.mit.edu/mailman/listinfo/ist-security-fyi
--===============1499119256==--
