Category Archives: internet explorer

Flash, Windows Users: It’s Time to Patch

Posted on by

Adobe and Microsoft each pushed critical security updates to their products today. Adobe’s got a new version of Flash Player available, and Microsoft released 14 updates covering more than 75 vulnerabilities, two of which were publicly disclosed prior to today’s patch release.

The Microsoft updates affect all supported Windows operating systems, as well as all supported versions of Internet Explorer/Edge, Office, Sharepoint and Exchange Server.

All of the critical vulnerabilities from Microsoft are in browsers and browser-related technologies, according to a post from security firm Qualys. Continue reading Flash, Windows Users: It’s Time to Patch

Drive-by download campaign targets Chinese websites, experiments with exploits

Posted on by

This custom made drive-by download attack targets some Chinese websites and their visitors while experimenting with exploits.
Categories:

Threat analysis

Tags: Chinesecoinhivedrive-byEKexploit kitexploitsFlash PlayerInternet Explorersvchost.exe… Continue reading Drive-by download campaign targets Chinese websites, experiments with exploits

Drive-by download campaign targets Chinese websites, experiments with exploits

Posted on by

This custom made drive-by download attack targets some Chinese websites and their visitors while experimenting with exploits.
Categories:

Threat analysis

Tags: Chinesecoinhivedrive-byEKexploit kitexploitsFlash PlayerInternet Explorersvchost.exe… Continue reading Drive-by download campaign targets Chinese websites, experiments with exploits

Patch now! Microsoft fixes over 50 serious security flaws

Posted on by

This week saw the second Tuesday of the month, and everyone who is responsible for protecting Windows computers knows what that means: another bundle of security patches have been released by Microsoft.
Read more in my article on the We Live Security b… Continue reading Patch now! Microsoft fixes over 50 serious security flaws

Attackers Exploiting Unpatched Flaw in Flash

Posted on by

Adobe warned on Thursday that attackers are exploiting a previously unknown security hole in its Flash Player software to break into Microsoft Windows computers. Adobe said it plans to issue a fix for the flaw in the next few days, but now might be a good time to check your exposure to this still-ubiquitous program and harden your defenses.

Adobe said a critical vulnerability (CVE-2018-4878) exists in Adobe Flash Player 28.0.0.137 and earlier versions. Successful exploitation could potentially allow an attacker to take control of the affected system. Continue reading Attackers Exploiting Unpatched Flaw in Flash

Browser makers move to mitigate risk of Spectre browser attacks

Posted on by

Apple has confirmed that it has already pushed out security updates for iOS, macOS and tvOS that mitigate the danger of users being affected by Meltdown attacks. (watchOS did not require mitigation.) The updates were released in early December, and app… Continue reading Browser makers move to mitigate risk of Spectre browser attacks

Microsoft December Patch Tuesday Update Fixes 34 Bugs

Posted on by

Microsoft patched 34 vulnerabilities in all on Tuesday with most of the bugs impacting Microsoft Edge, Microsoft Office and Microsoft’s Scripting Engine. Continue reading Microsoft December Patch Tuesday Update Fixes 34 Bugs

Adobe, Microsoft Patch Critical Cracks

Posted on by

It’s Nov. 14 — the second Tuesday of the month (a.k.a. “Patch Tuesday) — and Adobe and Microsoft have issued gobs of security updates for their software. Microsoft’s 11 patch bundles fix more than four-dozen security holes in various Windows versions and Office products — including at least four serious flaws that were publicly disclosed prior to today. Meanwhile, Adobe’s got security updates available for a slew of titles, including Flash Player, Photoshop, Reader and Shockwave. Continue reading Adobe, Microsoft Patch Critical Cracks