News

A remote code execution vulnerability has been discovered in Joomla versions 1.5.0 to version 2.4.5. Exploits for this vulnerability have been observed in the wild. Patches are available and users are advised to upgrade immediately.

This phishing message was forged to appear to come from the UCB Human Resources office. Beware of "URGENT" message from HR concerning "Your New Salary Notification".

A serious vulnerability in Apache Commons, a library that contains a widely used set of Java components maintained by the Apache Software Foundation, puts thousands of Java applications and servers at risk of remote code execution attacks.

Effective July 14th, 2015 Microsoft is discontinuing extended support for its Windows Server 2003 operating system. Please read our bulletin to prevent your Windows Server 2003 systems from being blocked on campus networks.

A critical vulnerability that can be exploited remotely without authentication has been discovered in Drupal 7.

A major flaw, dubbed POODLE, has been discovered by Google in the design of SSL version 3.0.

A remotely exploitable flaw has been discovered in GNU Bash that allows code execution through specially-crafted environment variables.

A critical information disclosure flaw dubbed "Heartbleed" has been discovered in the OpenSSL library.

Effective April 8, 2014, Microsoft is discontinuing support for its Windows XP operating system. After April 8th of 2014, there will be no security patches for this operating system from Microsoft. All Windows XP machines must be upgraded or removed from the network by April 8th of 2014.