AusCERT - Australia's Leading Computer Emergency Response Team

copyright | disclaimer | privacy | contact

HOME

About AusCERT

Membership

Contact Us

PKI Services

Publications

Sec. Bulletins

Conferences

News & Media

Services

Web Log

Site Map

Site Help

Member login



		AusCERT is the premier Computer Emergency Response Team (CERT) in Australia and a leading CERT in the Asia/Pacific region. AusCERT operates within a worldwide network of information security experts to provide computer incident prevention, response and mitigation strategies for members and assistance to affected parties in Australia. As a not-for-profit, self-funded organisation based at The University of Queensland, AusCERT relies on member subscriptions to cover its operating costs.



		ESB-2014.0518 - ALERT [Appliance] EMC Cloud Tiering Appliance & EMC File Management Appliance: Multiple vulnerabilities - EMC Cloud Tiering Appliance XML External Entity (XXE) and Information Disclosure Vulnerabilities. (17/04/2014) ESB-2013.1561.2 - UPDATE [Win] HP LoadRunner Virtual User Generator: Execute arbitrary code/commands - Remote/unauthenticated - (17/04/2014) AusCERT Week in Review for 11th April 2014 - The last week's worth of bulletins, advisories and news. (11/04/2014) ASB-2014.0042 - ALERT [Win][UNIX/Linux][Appliance][Mobile] Products using OpenSSL: Multiple vectors for exploitation - Exploit vectors of the OpenSSL vulnerability CVE-2014-0160 aka Heartbleed are more serious and far reaching than initially described by the vendor. (10/04/2014) ESB-2014.0463 - ALERT [Win] Internet Explorer: Execute arbitrary code/commands - Remote with user interaction - This security update resolves six privately reported vulnerabilities in Internet Explorer. (09/04/2014) More.. denotes AusCERT member only content.



		AusCERT Week in Review for 17th April 2014 - The last week's worth of bulletins, advisories and news. (17/04/2014) AusCERT Week in Review for 11th April 2014 - The last week's worth of bulletins, advisories and news. (11/04/2014) AusCERT Week in Review for 4th April 2014 - The last week's worth of bulletins, advisories and news. (04/04/2014) More..



		Security on the Move, Perth - You are invited to attend Security on the Move in Perth. Hear from a range of industry experts. Tickets only $99. (04/11/2013) Registrations now open for Security on the Move- Brisbane - Connect with talented industry neighbours and speak face-to-face with the experts at AusCERT who sit at the coal face of emerging threats. Tickets only $99! (25/09/2013) AusCERT Week in Review for 20th September 2013 - The last week's worth of bulletins, advisories and news. (20/09/2013) AusCERT Incident Metrics June 2013 - AusCERT has released its incident metrics for the period to 30 June 2013 (11/07/2013) AusCERT Vulnerability Disclosure Policy - This policy is about responsible vulnerability disclosure. The policy outlines how AusCERT will handle the disclosure of new information about computer software or hardware vulnerabilities that have been reported to AusCERT and which are not yet in the public domain. (19/09/2012)



		AusCERT PGP Public Key AUSCERT's PGP Public Key. You can verify the contents of this file by loading the key into your keyring, and issuing the command: pgp -kvc auscert@auscert.org.au Choosing good passwords Choosing a good password is a trade off between something that is difficult to guess versus something that is easy to remember. This article provides some simple rules of thumb on choosing good passwords (and good password policies). AusCERT Membership AusCERT member subscribers receive benefits not available to non-members. ESB-2014.0457 - ALERT [Win][UNIX/Linux] OpenSSL: Access privileged data - Remote/unauthenticated A vulnerability has been discovered in OpenSSL's support for the TLS/DTLS Hearbeat extension. How to become an AusCERT Member AusCERT is a not-for-profit organisation which relies on member subscriptions to cover its operating costs. By becoming an AusCERT member, your organisation will have access to timely, threat and vulnerability alerts and priority access to incident management services.