Mac users have been advised to install a patch after Apple warned of a serious flaw in Mac OS X.
Apple posted a security advisory after discovering the vulnerability that would allow hackers to create specially crafted image files capable of running malicious code without the user's authorisation.
Affected image file formats include PNG, Canon RAW and OpenEXR. Apple has issued the security update 2009-003 to users to update themselves to Mac OS X v10.5.8.
Graham Cluley, senior technology consultant at Sophos, said: “Owners of Mac computers would be wise to follow Apple's advice, else put their systems at risk of infection via rigged image files created by hackers.
“This year has seen a number of attacks against users of Apple Mac OS X. Many of these have relied upon social engineering to fool Mac owners into installing Trojan horses on their computers. There is no doubt, however, that cybercriminals would love to be able to exploit software vulnerabilities instead to make infection even easier.”
As part of our ongoing goal to add new and improved functionality to all of our products, we will be launching a brand new hardware token to Defender's already extensive token list.
The Defender “SlimToken” is the latest addition to our hardware token list and provides full two-factor functionality in a token the size of a credit card.
The great thing about the SlimToken is not only its size & weight, but also the fact that it can easily be carried in something you take pretty much everywhere you go, your wallet!
This means there’s no more hassle of dragging a physical token along in your laptop bag and unless you forget your wallet, you’ll never forget your token behind when you need it.
Here’s a summary of some of the top features:
* Please contact Quest for further details.
foreach ($token in (Get-QADObject -IncludeAllProperties -Type "defender-tokenClass"))
{ Write-Output $token.Name $token."defender-tokenUsersDNs" }
foreach ($token in (Get-QADObject -IncludeAllProperties -Type "defender-tokenClass"))3. “Who can log in based on (direct) group membership allowed on the DAN (defender Access Node?”:
{
Write-Output $token.Name;
foreach ($user in $token."defender-TokenUsersDNs" | Where-Object{$token."defender-TokenUsersDNs".Count -gt 0})
{
Get-QADUser -Identity $user -IncludeAllProperties | Format-List samAccountName, "defender-violationCount",
"defender-resetCount", "defender-lockoutTime" ;
}
}
foreach ($dan in Get-QADObject -Type "defender-danClass" -IncludeAllProperties)I'm hoping that the simple yet effective examples Dmitry has provided for Defender will encourage others to embrace using PowerShell with Defender.
{
write-output "---";
Write-Output $dan.Name;
foreach ($ADGroup in Get-QADGroup -Identity $dan."defender-DANMembers")
{
Write-Host $ADGroup;
$ADGroup.Members | Get-QADUser | Format-List sAMAccountName;
}
}
@ Quest we're all about evolving our products to meet our customers needs.GrIDsure, the innovative alternative to PINs and passwords, today announced that it has formed a strategic partnership with Quest Software, Inc., to integrate GrIDsure's technology into the Quest ‘One Identity’ solution portfolio. Quest’s two factor authentication solution, Defender, is the first Quest product that will be enhanced with GrIDsure to extend the product’s existing two-factor authentication capability.
GrIDsure’s solution is based on its groundbreaking yet simple invention that allows users to authenticate themselves by remembering a minimum of a four block sequential pattern on a five by five grid. By integrating GrIDsure’s software-based solution, Quest will be able to offer its customers an enhanced level of scalable security at a very competitive price point, whilst enhancing the user experience.
Quest Defender is a standards-based strong authentication solution built to leverage Microsoft’s Active Directory for administration and management, and the addition of GrIDsure will maintain its level of interoperability for enterprises looking for a cohesive and holistic security strategy. Quest currently has approximately 300,000 users of Defender across many sectors such as healthcare, financial services and public sector. Quest expects Defender with GrIDsure to be commercially available in the summer of 2009.
Jonathan Craymer, Chairman, GrIDsure commented: “GrIDsure is a perfect fit for Quest’s product line and this is a great example of how our technology can become an extra ingredient for an existing product. Our technology has been easily integrated into Quest’s solution to enhance the security of the system whilst being much more cost effective than existing alternatives.”
Stuart Harrison, Product Manager, Quest, commented: “GrIDsure is a completely unique concept and we see great potential in this technology as our customers are always looking for enhanced security without the headache and cost of extra hardware. GrIDsure is very difficult to compromise and is a significant step in right direction for security both in terms of usability and cost effectiveness for the customer and the end user alike.”
More about GrIDsure:
The aim of GrIDsure is simple, to offer everyone an easier and more secure way to protect their own identity and authenticate themselves.
GrIDsure is a new ingredient in the security mix, able to generate 'one-time' codes that are more secure and resilient to 'spyware' threats, creating an extra security layer which can work on its own or alongside all existing or future technologies such as biometrics and PKI.
GrIDsure neatly replaces all fixed passwords, PINs or combinations, on any electronic device or system, ranging from computers and mobiles to the world of physical security. GrIDsure is more secure and more cost effective than traditional hardware-based alternatives, is highly scalable and reduces administrative time to run the system.
GrIDsure was awarded ‘Cool Vendor in Application Security and Authentication 2008' status by Gartner.
Press Contact:
David Atkinson
+44 (0) 207 608 4684
