Mobile security, Vulnerabilities
December 7, 2016
Via: Security WeekGoogle this week released the December 2016 set of monthly patches for the Android platform which resolved a total of 74 vulnerabilities, 11 which were rated Critical severity. The December 2016 Android Security Bulletin has been split in two, namely […]
November 17, 2016
Via: Threat PostMozilla addressed 29 vulnerabilities, three rated critical, when it released the latest iteration of its flagship browser, Firefox 50 and Firefox ESR 45.5, on Tuesday. Firefox developers said this week that it might take some effort, but at least two […]
September 22, 2016
Via: Security WeekApple on Tuesday released the final version of macOS Sierra 10.12 as a free update and announced that no less than 65 security vulnerabilities were addressed in this operating system version. Plagued by 16 flaws, the “apache_mod_php” module responsible for […]
September 14, 2016
Via: Security WeekMicrosoft announced on Tuesday the availability of 13 security bulletins that patch 50 vulnerabilities in Windows, Internet Explorer, Edge, Office and Exchange. The company said one of the browser flaws has been exploited in the wild. Two of the bulletins […]
August 18, 2016
Via: CIOCustomers of certain Cisco and Fortinet security gear need to patch exploits made public this week after a purported hack of NSA malware. Both companies have issued fixes to address exploits that were posted online and after they found the […]
July 14, 2016
Via: Security AffairsThe July Microsoft Patch Tuesday includes security bulletins that address 50 security holes. Six security bulletins are rated critical, reading the them one advisory will catch the attention of the reader. Microsoft has fixed a security flaw, coded CVE-2016-3238, in the Windows […]
July 13, 2016
Via: Security WeekAs part of its monthly security update cycle, Microsoft on Tuesday released 11 security bulletins to resolve multiple vulnerabilities in Internet Explorer, Edge, Office, JScript and VBScript, and .NET Framework. Microsoft’s security bulletin MS16-084 resolves 15 bugs in Internet Explorer […]
April 14, 2016
Via: Security WeekSAP on Tuesday released its latest patch update for its products, which includes 19 patch notes, 10 of which had a high priority rating. There were 16 security notes included in the latest SAP Security Patch Day, to which the […]
Application security, Vulnerabilities
March 29, 2016
Via: Security WeekZen Cart on Friday released an updated version of the popular online open source shopping cart application to address multiple Cross-Site Scripting (XSS) vulnerabilities. The security issues were discovered by Trustwave and are said to affect Zen Cart 1.5.4 and […]
March 9, 2016
Via: SecurelistMicrosoft releases thirteen bulletins this month, patching a total of 44 vulnerabilities. More than half of the critical vulnerabilities fixed this month support the web browsers, Internet Explorer and Microsoft Edge. Vulnerabilities rated critical also exist in Opentype font parsing […]
February 16, 2016
Via: Security WeekMozilla released updates for the standard and ESR versions of Firefox last week to address vulnerabilities classified as having “critical” impact. Earlier this month, researchers at Cisco’s Talos team reported finding several vulnerabilities in the Libgraphite library, used for font […]
February 11, 2016
Via: Security WeekMicrosoft’s February 2016 Patch Tuesday updates include a total of 13 bulletins designed to address dozens of vulnerabilities in the company’s products. It’s worth pointing out that one of the bulletins, MS16-022, fixes the 22 Flash Player flaws resolved by […]
February 10, 2016
Via: SC MagazineAdobe’s February 2016 Patch Tuesday includes 32 fixes for various versions of Photoshop and Bridge, Flash Player, Experience Manager and Connect—many of which secure critical vulnerabilities. In four separate security bulletins, Adobe named the impacted products as: Read More on […]
January 21, 2016
Via: Security WeekApple has released a series of updates for the iOS and OS X platforms, aimed at resolving a series of security vulnerabilities in both products. Published on Tuesday, the security advisory for the iOS update reveals a set of 13 patches […]
December 8, 2015
Via: Help Net SecurityGoogle’s December security update for Android has been pushed out to Nexus devices on Monday, and it contains fixes for 19 vulnerabilities, four of which are deemed “critical”. Among these is an elevation of privilege vulnerability (CVE-2015-6619) in the system […]
Mobile security, Vulnerabilities
November 4, 2015
Via: ThreatpostGoogle’s Nexus Android devices are considered the most secure by default since they’re guaranteed to receive all security patches for vulnerabilities found internally and those disclosed by third parties. Google’s Project Zero research team, however, decided to expand its reach […]
October 22, 2015
Via: hackerWhen Ryan Kazanciyan investigated data breaches as an incident response expert for his former employer Mandiant, the theme was always the same. “Every single one had an antivirus, HIPS, SIEM, network- and host-based IDS solutions, and all were compromised. They […]