Apple has released Security Update 2014-002 with security fixes for OS X 10.9 Mavericks, as well as for those still using 10.8 Mountain Lion, 10.7 Lion, and 10.7 Lion Server. According to the release notes, the security update patches a vulnerability with HTTP headers that enabled attackers to obtain Web site credentials, which affected all three versions of OS X. It also fixes a particularly ugly vulnerability to a “triple handshake” attack that could affect both Mavericks and Mountain Lion. However, the bulk of the changes focus on Mavericks, addressing vulnerabilities with CoreServicesUIAgent Web site validation, Heimdal Kerberos authentication, ImageIO’s handling of JPEG images, and a power management issue that could prevent the system from going to sleep and keep the screen unlocked. (All updates are free. For 10.9 Mavericks, 80.5 MB; for 10.8 Mountain Lion, 135.9 MB; for 10.7 Lion, 126.9 MB; for 10.7 Lion Server, 177.2 MB.)
Trust Local Addresses in VirusBarrier X6's Antivandal
VirusBarrier X6's Antivandal feature stops all kinds of network attacks, including port scans, ping floods and more. However, you may have some devices on your network that send out pings or other requests that may be interpreted as attacks. To prevent this, add them to the Trusted Addresses list so they won't be blocked. You can even add a range of addresses with wildcards, such as 192.168.1.*.