Application security, Security, Threats & Malware, Vulnerabilities
January 29, 2018
Via: Security AffairsOn Saturday Malwarebytes issued a buggy update to its home and enterprise products that caused serious problems for the users, including excessive memory usage, connectivity issues, and in some cases system crashes. A buggy update rolled out over the weekend […]
January 24, 2018
Via: Security WeekDell, HP and other system manufacturers have advised customers not to install the recent BIOS updates designed to address the Spectre and Meltdown CPU vulnerabilities due to unstable code delivered by Intel. The Spectre and Meltdown vulnerabilities, which allow malicious […]
January 17, 2018
Via: Security WeekOracle on Tuesday released its first Critical Patch Update for 2018 to deliver 237 new security fixes across its product portfolio. Over half of the addressed vulnerabilities could be remotely exploited without authentication. As part of the January 2018 Critical […]
January 12, 2018
Via: Dark ReadingMicrosoft’s insistence on a specific registry key setting for offering the updates on systems appears to be the issue, security vendor Barkly says. The results of a small survey suggest that many organizations could still be waiting to receive updates […]
January 9, 2018
Via: Security WeekUpdates released by Apple on Monday for iOS, macOS and Safari should mitigate the effects of the vulnerabilities exploited by the recently disclosed attack method named Spectre. Apple informed customers that iOS 11.2.2 and macOS High Sierra 10.13.2 Supplemental Update […]
December 13, 2017
Via: Threat PostMicrosoft patched 34 vulnerabilities that are part of its December Patch Tuesday release. A total of 20 vulnerabilities were rated critical and another 12 were rated important. Impacted are Internet Explorer, Microsoft Edge, Microsoft Windows, Microsoft Office, SharePoint and Exchange. […]
November 14, 2017
Via: Dark ReadingThe more frequently you release apps, the more security vulnerabilities you are likely to introduce in the code, a new study confirms. The frequency with which you release and update software has more of an impact on application security than […]
October 24, 2017
Via: Dark ReadingMicrosoft protects machines from common attacker behaviors with security updates in Windows 10. Microsoft unlocked a host of new security and management features in the Windows 10 Fall Creators Update, which started rolling out last week. One of its new […]
October 18, 2017
Via: Threat PostOracle patched 250 vulnerabilities across hundreds of different products as part of its quarterly Critical Patch Update released today. Rounding out the list of products with the most patches is Oracle Fusion Middleware with 38, Oracle Hospitality Applications with 37 […]
October 4, 2017
Via: Dark ReadingCustom roles for Cloud Identity and Access Management will give users full control of 1,287 public permissions in the Google Cloud. Google today released a beta version of custom roles for Cloud Identity and Access Management (IAM) on the Google […]
December 28, 2016
Via: Naked SecurityYou may be relieved to learn that the $50 Barnes & Noble Nook Tablet 7, which was shipping with Adups backdoor-planting firmware preinstalled, has got a fix. Sort of. Hold on to your wallets: some say you still shouldn’t buy it, […]
October 20, 2016
Via: InfoWorldBigger is not necessarily better, but it’s beginning to look like Oracle will release a monster Critical Patch Update (CPU) every quarter. These security updates affect databases, networking components, operating systems, applications server, Java, and ERP systems, leaving IT administrators […]
September 22, 2016
Via: Security WeekApple on Tuesday released the final version of macOS Sierra 10.12 as a free update and announced that no less than 65 security vulnerabilities were addressed in this operating system version. Plagued by 16 flaws, the “apache_mod_php” module responsible for […]
July 20, 2016
Via: We Live SecurityA major data breach on the Ubuntu Forums has not compromised the passwords of its affected users. In an update to its announcement that an incident had taken place, its developer Canonical Ltd was keen to highlight that this information […]
July 11, 2016
Via: Help Net SecurityClick-ad-fraud Kovter malware, packaged as a legitimate Firefox browser update, is being delivered to unsuspecting victims via drive-by-download attacks. Kovter, which also occasionally installs other malware, has been around for a few years now, and has gone through many changes […]
July 1, 2016
Via: Help Net SecurityMicrosoft has scheduled the release of Windows 10 Anniversary Update for August 2. Aside from new and/or improved tools to aid with productivity, gaming, device set-up, and a better, more efficient and helpful Edge browser, this Anniversary Update also brings […]
May 18, 2016
Via: InfoSecurity LiveAdobe Systems has released a security update for Flash Player in order to fix a publicly known vulnerability, as well as 24 privately reported security flaws. The company issued a warning about the zero-day previously unknown and unpatched . The […]
May 11, 2016
Via: TrendMicro BlogThere’s been a recent development in the threat environment around the Remote Root Vulnerability in HID Door Controllers that we wanted to alert customers to. You might recall on March 30, 2016, our Zero Day Initiative published an advisory around […]
April 14, 2016
Via: Security WeekSAP on Tuesday released its latest patch update for its products, which includes 19 patch notes, 10 of which had a high priority rating. There were 16 security notes included in the latest SAP Security Patch Day, to which the […]
April 5, 2016
Via: The HillA draft of the Senate Intelligence Committee’s encryption bill is expected to circulate sometime this week, Chairman Richard Burr (R-N.C.) told reporters on Monday. The measure — a response to concerns that criminals are increasingly using encrypted devices to hide […]