Announcing 2022 Microsoft Security Excellence Awards winners

Spirits soared at the Microsoft Security Excellence Awards on June 5, 2022. And is it any wonder? The celebration marked the first time that Microsoft executives and Microsoft Intelligent Security Association MISA members had gathered in person in more than two years so it was a special night for...

FedRAMP and Its Applicability to ISVs Hosted on FedRAMP-Authorized IaaS

Independent Software Vendors ISVs often ask Coalfire about the FedRAMP compliance framework and how it applies to them. They hear that all software procured by the U.S. federal government must be FedRAMP authorized, and they come to the experts to help them navigate the process. The good news is...

Common Questions and Answers Salesforce ISVs Need to Know for FedRAMP

Many Salesforce Independent Software Vendors ISVs are interested in pursuing FedRAMP to serve federal customers, but have many questions about the process. The four questions below are the most common questions that Coalfire receives from these ISV partners; we have provided some basic responses ...

[SECURITY] Fedora 19 Update: nas-1.9.3-7.fc19

In a nutshell, NAS is the audio equivalent of an X display server. The Network Audio System NAS was developed by NCD for playing, recording, and manipulating audio data over a network. Like the X Window System, it uses the client/server model to separate applications from the specific drivers tha...

[SECURITY] Fedora 20 Update: nas-1.9.3-9.fc20

In a nutshell, NAS is the audio equivalent of an X display server. The Network Audio System NAS was developed by NCD for playing, recording, and manipulating audio data over a network. Like the X Window System, it uses the client/server model to separate applications from the specific drivers tha...

OpenSSL* vulnerability – Software Development Tools for Intel® Active Management Technology (Intel® AMT)

Summary: In response to the OpenSSL advisory CVE-2010-0740, Intel is releasing an update to the Intel® Active Management Technology Intel® AMT Software Development Kit SDKand Intel® Setup and Configuration Service Intel® SCS to mitigate this vulnerability. This issue does not affect the Intel®...

Gartner to Businesses: Eliminate Windows XP by 2012

As Microsoft prepares to pull the plug on support for Windows XP SP2, a move that stops the release of security updates for that operating system, research firm Gartner is urging businesses to start planning and testing Windows 7 this year with a plan to completely eliminate Windows XP by the end...

[GOODFELLAS-VULN] FileFind class from MFC Library cause heap overflow

:. GOODFELLAS Security Research TEAM .: :. http://goodfellas.shellcode.com.ar .: FileFind class from MFC Library cause heap overflow. =================================================== Internal ID: VULWKU200706142 introduction ------------ The GOODFELLAS security research team has found a bug in...