We are currently under constrution. However here is a sneak preview!
Please contact us by email staff@tdatechnologies.biz if you need anything!
New Facebook Page
March 1, 2013
Like us on facebook here at our new facebook page. New website is being designed now stay tuned for that!
Scheduled Downtime
Febuary 3, 2013
Hello all we will be going through some standard website maintenance today where you might see sites go up and down we are testing new upgrades to our enviornment so stay tuned and if you have any issues email staff@tdatechnologies.biz.
Java Zero-Day Vulnerability CVE-2013-0422
January 16, 2012
SUMMARY
Windows PC and Mac users who have the Oracle Java JRE web plug-in version 7u10 and below should immediately update to the latest release of Java JRE 7u11 [1], or disable Java from their computer browsers [2].
BACKGROUND
On January 10, 2013, security researchers reported an unpatched vulnerability in Oracle Java 1.7u10. This vulnerability has been labeled CVE-2013-0422
Security professionals comment that attack code that exploits the vulnerability is being “massively exploited in the wild.” Miscreants use such exploits to turn compromised websites into platforms for silently installing keyloggers and other types of malicious software on the computers of unsuspecting website visitors.
IMPACT
Browsing the web with a vulnerable version of Java installed and enabled means that simply visiting a website or clicking on a link in an e-mail message is enough for an attacker to compromise your computer. This is known as a “drive-by download” [3]. The malicious software installed through these attacks may collect usernames and passwords used on the compromised computer, including credentials for sensitive websites, bank accounts, email etc.
While “safe browsing” to only trusted websites may limit your exposure to drive-by downloads, it does not address the underlying vulnerability and prevent exploitation. Please see “Recommendations” and “Workarounds” below for further steps that should be taken.
PLATFORMS AFFECTED
All versions of Oracle Java 7 (aka JRE 1.7) from the initial release up through update 10 are vulnerable. This affects both Windows PC and Mac OS if you have installed the JRE web plug-in. Oracle maintains that earlier versions of Java are not affected by this particular exploit[6].
RECOMMENDATIONS
Update Java Immediately - Regularly check for updates and remove old versions of Java. Java 7 update 11 is available at the website http://www.java.com [1]. Update Anti-Virus/Anti-Malware software – MU campus users who have the latest version of Symantec Endpoint Protection (SEP) 12.1.2015 [9] installed will receive additional protection thru the ‘Proactive Threat Protection’ and ‘Network Threat Protection’ modules. This includes a browser-protection technology which can detect and prevent malicious Java from being executed on client computers. Use an alternative web browser – it has been reported that users of the latest versions of Mozilla Firefox, Google Chrome, and Apple’s Safari browsers are provided additional security protections not currently found in the default Windows IE9 web browser [7]. Exercise caution - Don’t click on web popups, but close the window instead. If they won’t close, open your process list and force your browser to close.
WORKAROUNDS
Disable Java. [2] NOTE: This workaround may prevent certain websites from working correctly, and must be considered in relation to essential enterprise applications like Banner which currently depends on Java 6 – note both Java 6 and Java 7 can both be installed at the same time, but keeping both versions updated may require the use of manual updates).
Windows PC and Mac users who have the Oracle Java JRE web plug-in version 7u10 and below should immediately update to the latest release of Java JRE 7u11 [1], or disable Java from their computer browsers [2].
BACKGROUND
On January 10, 2013, security researchers reported an unpatched vulnerability in Oracle Java 1.7u10. This vulnerability has been labeled CVE-2013-0422
Security professionals comment that attack code that exploits the vulnerability is being “massively exploited in the wild.” Miscreants use such exploits to turn compromised websites into platforms for silently installing keyloggers and other types of malicious software on the computers of unsuspecting website visitors.
IMPACT
Browsing the web with a vulnerable version of Java installed and enabled means that simply visiting a website or clicking on a link in an e-mail message is enough for an attacker to compromise your computer. This is known as a “drive-by download” [3]. The malicious software installed through these attacks may collect usernames and passwords used on the compromised computer, including credentials for sensitive websites, bank accounts, email etc.
While “safe browsing” to only trusted websites may limit your exposure to drive-by downloads, it does not address the underlying vulnerability and prevent exploitation. Please see “Recommendations” and “Workarounds” below for further steps that should be taken.
PLATFORMS AFFECTED
All versions of Oracle Java 7 (aka JRE 1.7) from the initial release up through update 10 are vulnerable. This affects both Windows PC and Mac OS if you have installed the JRE web plug-in. Oracle maintains that earlier versions of Java are not affected by this particular exploit[6].
RECOMMENDATIONS
Update Java Immediately - Regularly check for updates and remove old versions of Java. Java 7 update 11 is available at the website http://www.java.com [1]. Update Anti-Virus/Anti-Malware software – MU campus users who have the latest version of Symantec Endpoint Protection (SEP) 12.1.2015 [9] installed will receive additional protection thru the ‘Proactive Threat Protection’ and ‘Network Threat Protection’ modules. This includes a browser-protection technology which can detect and prevent malicious Java from being executed on client computers. Use an alternative web browser – it has been reported that users of the latest versions of Mozilla Firefox, Google Chrome, and Apple’s Safari browsers are provided additional security protections not currently found in the default Windows IE9 web browser [7]. Exercise caution - Don’t click on web popups, but close the window instead. If they won’t close, open your process list and force your browser to close.
WORKAROUNDS
Disable Java. [2] NOTE: This workaround may prevent certain websites from working correctly, and must be considered in relation to essential enterprise applications like Banner which currently depends on Java 6 – note both Java 6 and Java 7 can both be installed at the same time, but keeping both versions updated may require the use of manual updates).
Project Reboot [Completed]
November 29, 2012
New storage added to all of our servers with no client downtime. We are still doing mantance on the main site as well as some lower level VM's. We will keep you notified of these changes as they are completed.
All physical servers have been virtualized as well on these new data stores with no issues.
[..The Mangement..]
All physical servers have been virtualized as well on these new data stores with no issues.
[..The Mangement..]
Top Downloads
Latest Threats
Partners
