December 14, 2021
Via: Naked SecurityAmongst all the brouhaha about Log4Shell, it’s easy to forget all the other updates that surround us. Not only is it Patch Tuesday (keep your eye on our sister site news.sophos.com for the latest on that score later in the […]
Threats & Malware, Vulnerabilities
October 7, 2019
Via: Help Net SecurityCisco has fixed 18 high-impact vulnerabilities affecting several of its security offerings and is advising administrators to test and implement the offered security updates as soon as possible. “Successful exploitation of the vulnerabilities could allow an attacker to gain unauthorized […]
Application security, Network security, Security
October 3, 2019
Via: Help Net SecurityAccording to the latest Alert Logic’s research, most devices in small and midsize businesses (SMBs) run Windows versions that are expired or are about to expire soon. Luckily for SMBs that don’t want or can’t upgrade from Windows 7, Microsoft […]
August 27, 2019
Via: Security WeekMicrosoft will be providing some of its customers with one year of free Windows 7 Extended Security Updates (ESU) after January 2020, when extended support for the platform officially ends. In September last year, the company announced plans to provide […]
Application security, Cyber-crime, Mobile, Security
July 5, 2019
Via: Security AffairsOver ten million users have installed a fake Samsung app named “Updates for Samsung” that poses as firmware updates. The malicious app redirects users to a website offering and charging for firmware downloads. Technical details of the attack were shared […]
October 25, 2018
Via: Security AffairsGoogle continues the battle for securing devices of its users, this time making mandatory for device makers two years of Android security updates. One of the main problems with patch management is related to the distribution of security patches issued […]
Application security, Mobile security
July 11, 2018
Via: Dark ReadingApple updates software for nearly every hardware platform, though one new feature almost steals the security show. Apple has released a set of updates to its operating system across its range of hardware, from the Apple Watch to the Mac. […]
Application security, Mobile security
December 14, 2017
Via: Naked SecurityAt the beginning of the month, Android relased two new security bulletins for December, with Google noting that Android users who can update this month should patch as soon as possible to receive mitigations and fixes for 47 vulnerabilities across all […]
September 29, 2017
Via: Threat PostSince the Thunderstrike bootkit attacks targeting Apple firmware were disclosed in 2015, Apple has bundled subsequent EFI updates with its regular macOS security and software updates in an attempt to improve protection around its hardware. Researchers at Duo Security, however, […]
March 16, 2017
Via: Naked SecurityThere’s good and bad news on the phishing front. The good news: attackers don’t seem to be coming up with many new tactics to target their victims. The bad news: they don’t have to. They’re doing just fine hooking their prey with […]
January 18, 2017
Via: DataBreach TodayThe National Institute of Standards and Technology has published a draft of its first revision to its cybersecurity framework, describing it as an update, not a major overhaul. “Just to be clear, we’re not headed toward a version 2.0 right […]
Mobile security, Vulnerabilities
January 6, 2017
Via: SoftpediaGoogle rolled out the January 2017 Android security updates only a few days ago, and in documentation posted on the official website, the company reveals that these fix a total of 95 vulnerabilities in the mobile operating system. Google says […]
January 5, 2017
Via: Panda SecurityThe latest version of the Microsoft OS has become once again a topic of discussion, and this time it may carry bad news for your company’s security. As the cybersecurity expert Sami Laiho revealed on his blog, every Windows 10 […]
November 11, 2016
Via: We Live SecurityTesco Bank, which recently saw thousands of its customers lose funds to cybercriminals, has been found on the target list of the so-called Retefe malware. This trojan horse goes after users’ online banking credentials, which can be then misused to […]
October 12, 2016
Via: TrendMicro BlogAdobe released three updates for October. The first update covers 12 CVEs in Flash – two of which were submitted through the ZDI program. While the update is marked is critical, there’s no indication any of these bugs are being […]
October 10, 2016
Via: CIOAs more connected devices are used to get business done remotely and in the office, IT leaders are challenged with keeping those devices secure. Practicing these safety tips will help their users become better online citizens. Keep Patches Up to […]
September 22, 2016
Via: Security AffairsMicrosoft finally fixed a set of vulnerabilities in Internet Explorer years after they were discovered by black-hats in the hacking underground. I have contacted a black hat in the underground that who made a catastrophic prediction: “And millions of people affected […]
September 20, 2016
Via: Security WeekThe OpenSSL Project announced on Monday that it will soon release updates that patch several vulnerabilities, including one rated as having “high” severity. OpenSSL versions 1.1.0a, 1.0.2i and 1.0.1u will be released on Thursday, September 22, at around 8:00 UTC. […]
Application security, Cyber warfare
August 17, 2016
Via: CSO OnlineMicrosoft is getting into the Windows 10 spirit for Windows 7 and 8.1 users. No, the company is not returning to its nagging tactics for the (now expired) free upgrade to Windows 10. What Microsoft is doing is making updates […]
Privacy protection, Vulnerabilities
July 20, 2016
Via: Hot for SecurityApple issued security updates for OS X and iOS yesterday. Have you downloaded and installed them? Perhaps you should, because there are a number of serious vulnerabilities addressed that – if left unpatched – could leave your privacy and security […]