Vista, 2008 and older Offices. Not XPSP3 or Windows 7+
“The vulnerability is a remote code execution vulnerability that exists in the way affected components handle specially crafted TIFF images. An attacker could exploit this vulnerability by convincing a user to preview or open a specially crafted email message, open a specially crafted file, or browse specially crafted web content. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.” Microsoft
If you receive an email from “email@example.com” or the Maintenance department, please just delete it.
“ at DEF CON 21, a pool of 10 men and 10 women, from diverse backgrounds and experience levels, tested their social engineering abilities against 10 of the biggest global corporations, including Apple, Boeing, Exxon, General Dynamics and General Electric. The complete results of the competition are in, and they don’t bode well for businesses.” Help-Net
“It sounds like something out of a James Bond movie – GPS bullets that can track the location of a suspect’s car.” BBC
“It also appears that the already massive source code leak at Adobe is broadening to include the company’s Photoshop family of graphical design products.” Krebs
Ten new security fixes. You can download it from Slug.
If you’re still using XP, you need to seriously consider upgrading. Browsers support on XP will soon end.
”Firefox and Chrome Will Soon EOL On XP”
The next generation of ransomware is very dangerous. Once you are infected, the only choice is to pay the ransom unless you have good backups. Edit: There may be a way to restore some files.
It’s a good idea to create some restore media for your OS to supplement your backup strategy (you are backing up, correct?). Apple has Recovery Disk Assistant while Windows (8.1, 8.0, 7.0)has its own method. Some manufacturers also have recovery disk options but you’ll have to search Google for your model.
The WinSuperSite has a guide on how to upgrade. Make sure to create restore media before the upgrade.