Apple Notarized Malware by Mistake, Hackers Ran it Through Third-Party Website

Notarized apps should be safe on macOS Threat actors try to deploy “approved” malware through website Apple revoked certificates, but malware is still up Apple’s notarization system let a piece of malware into the macOS ecosystem, allowing attackers to… Continue reading Apple Notarized Malware by Mistake, Hackers Ran it Through Third-Party Website

Microsoft Patch Tuesday, May 2020 Edition

Microsoft today issued software updates to plug at least 111 security holes in Windows and Windows-based programs. None of the vulnerabilities were labeled as being publicly exploited or detailed prior to today, but as always if you’re running Windows on any of your machines it’s time once again to prepare to get your patches on. Continue reading Microsoft Patch Tuesday, May 2020 Edition

Adobe Addresses Critical Flash, Framemaker Flaws

Overall, Adobe patched flaws tied to 42 CVEs as part of its regularly scheduled updates. Continue reading Adobe Addresses Critical Flash, Framemaker Flaws

North Korean APT Group Targets Academia via Malicious Chrome Extensions

Security researchers have uncovered an APT group with possible ties to North Korea that has targeted academic institutions since May. The group, dubbed Stolen Pencil by researchers from Netscout, send spear-phishing emails which direct users to a webs… Continue reading North Korean APT Group Targets Academia via Malicious Chrome Extensions

Adobe Patches Zero-Day Flaw in Flash Player

Adobe Systems fixed a critical vulnerability in Flash Player that was publicly disclosed by a researcher earlier this month. The vulnerability, tracked as CVE-2018-15981, is a type confusion issue that can lead to arbitrary code execution. It was fixe… Continue reading Adobe Patches Zero-Day Flaw in Flash Player

Patch Tuesday, November 2018 Edition

Microsoft on Tuesday released 16 software updates to fix more than 60 security holes in various flavors of Windows and other Microsoft products. Adobe’s also got security patches available for Flash, Acrobat and Adobe Reader users. 
The post Patch… Continue reading Patch Tuesday, November 2018 Edition

Patch Tuesday, September 2018 Edition

Adobe and Microsoft today each released patches to fix serious security holes in their software. Adobe pushed out a new version of its beleaguered Flash Player browser plugin. Redmond issued updates to address at least 61 distinct vulnerabilities in Microsoft Windows and related programs, including several flaws that were publicly detailed prior to today and one “zero-day” bug in Windows that is already being actively exploited by attackers. Continue reading Patch Tuesday, September 2018 Edition