HackDig : Dig high-quality web security articles

Microsoft Patch Tuesday, September 2021 Edition

Microsoft today pushed software updates to plug dozens of security holes in Windows and related products, including a vulnerability that is already being exploited in active attacks. Also, Apple has issued an emergency update to fix a flaw that’s reportedly been abused to install spyware on iOS products, and Google‘s got a new version of Chrome t
Publish At:2021-09-14 19:05 | Read:220 | Comments:0 | Tags:Time to Patch adobe Allan Liska apple chrome CVE-2021-28316

Adobe fixes critical flaws in Magento, patch it immediately

Adobe security updates for August 2021 have addressed critical vulnerabilities in Magento and important bugs in Adobe Connect. Adobe security updates for August 2021 address a total of 29 flaws, including critical vulnerabilities in Magento and important issues in Adobe Connect: APSB21-64 Security updates available for MagentoAPSB21-66 Secur
Publish At:2021-08-11 05:35 | Read:360 | Comments:0 | Tags:Breaking News Security Adobe Cybersecurity cybersecurity new

Tripwire Patch Priority Index for July 2021

Tripwire’s July 2021 Patch Priority Index (PPI) brings together important vulnerabilities from VMware, Adobe, Oracle, and Microsoft.First on the patch priority list this month are patches for Microsoft Print Spooler (CVE-2021-34527, CVE-2021-1675) and vSphere Client (CVE-2021-21985). Exploits for these vulnerabilities have been recently added to the Me
Publish At:2021-08-02 01:35 | Read:611 | Comments:0 | Tags:VERT Adobe microsoft Microsoft Office Oracle patch priority

A week in security (July 12 – July 18)

Last week on Malwarebytes Labs: DNS-over-HTTPS takes another small step towards global dominationNope, that isn’t Elon Musk, and he isn’t offering a free Topmist Dust watch eitherFour in-the-wild exploits, 13 critical patches headline bumper Patch TuesdayIs crypto’s criminal rollercoaster approaching a terminal dip?Ransomware’s Russia problemSonicWall war
Publish At:2021-07-19 06:33 | Read:809 | Comments:0 | Tags:A week in security adobe cryptomining DNS-over-HTTPS elon mu

Microsoft fixes seven zero-days, including two PuzzleMaker targets, Google fixes serious Android flaw

This patch Tuesday harvest was another big one. The Windows updates alone included seven zero-day vulnerability updates, two of them are actively being used in the wild by a group called PuzzleMaker, four others that have also been seen in the wild, plus one other zero-day vulnerability not known to have been actively exploited. Add to that 45 vulnerabilitie
Publish At:2021-06-09 11:16 | Read:406 | Comments:0 | Tags:Exploits and vulnerabilities adobe Android Cisco microsoft p

Microsoft Patches Six Zero-Day Security Holes

Microsoft today released another round of security updates for Windows operating systems and supported software, including fixes for six zero-day bugs that malicious hackers already are exploiting in active attacks. June’s Patch Tuesday addresses just 49 security holes — about half the normal number of vulnerabilities lately. But what this month
Publish At:2021-06-08 19:10 | Read:468 | Comments:0 | Tags:Time to Patch adobe Automox Christopher Hass CVE-2021-28550

Using Fake Reviews to Find Dangerous Extensions

Fake, positive reviews have infiltrated nearly every corner of life online these days, confusing consumers while offering an unwelcome advantage to fraudsters and sub-par products everywhere. Happily, identifying and tracking these fake reviewer accounts is often the easiest way to spot scams. Here’s the story of how bogus reviews on a counterfeit Micr
Publish At:2021-05-29 13:22 | Read:702 | Comments:0 | Tags:A Little Sunshine Breadcrumbs adobe Amazon brookice100@gmail

Tripwire Patch Priority Index for May 2021

Tripwire’s May 2021 Patch Priority Index (PPI) brings together important vulnerabilities from Google Chrome, Adobe and Microsoft.First on the patch priority list this month are patches for macOS (CVE-2021-30657) and Google Chrome (CVE-2021-21220). Exploits for these vulnerabilities have been recently added to the Metasploit Exploit Framework. These sys
Publish At:2021-05-27 02:47 | Read:645 | Comments:0 | Tags:VERT Adobe Google Chrome microsoft patch priority index vuln

“Have I been pwnd?”– What is it and what to do when you *are* pwned

Adobe. Yahoo!. The US Department of Energy (DoE). The New York Times. What these names have in common is that they have all experienced at least one breach in 2013—the year when threat actors started targeting organizations across industries to either steal data for profit or leak them to “teach companies a lesson about cybersecurity.” The
Publish At:2021-05-19 18:08 | Read:695 | Comments:0 | Tags:Awareness 2fa adobe department of energy DoE facebook have i

Hackers target Windows users exploiting a Zero-Day in Reader

Adobe confirmed that a zero-day vulnerability affecting Adobe Reader for Windows has been exploited in the wild in limited attacks. Adobe security updates for May 2021 address at least 43 CVEs in Experience Manager, InDesign, Illustrator, InCopy, Adobe Genuine Service, Acrobat and Reader, Magento, Creative Cloud Desktop, Media Encoder, Medium, and Animate
Publish At:2021-05-11 19:49 | Read:570 | Comments:0 | Tags:Breaking News Security Adobe Cybersecurity cybersecurity new

Adobe addresses two critical vulnerabilities in Photoshop

Adobe has addressed security vulnerabilities in Adobe Photoshop, Adobe Digital Editions, Adobe Bridge, and RoboHelp. Adobe has fixed ten security vulnerabilities in Adobe Photoshop, Adobe Digital Editions, Adobe Bridge, and RoboHelp. Seven vulnerabilities have been rated as critical, some of them could be exploited by remote attackers to execute arbitr
Publish At:2021-04-13 14:14 | Read:827 | Comments:0 | Tags:Breaking News Security Adobe Hacking hacking news informatio

Adobe addresses a critical vulnerability in ColdFusion product

Adobe has released security updates to address a critical vulnerability in the ColdFusion product (versions 2021, 2016, and 2018) that could lead to arbitrary code execution.  Adobe has released security patches to address a critical vulnerability in Adobe ColdFusion that could be exploited by attackers to execute arbitrary code on vulnerable systems
Publish At:2021-03-22 19:00 | Read:861 | Comments:0 | Tags:Breaking News Security Adobe Adobe ColdFusion Hacking inform

Adobe fixes a buffer overflow issue in Reader which is exploited in the wild

Adobe released security patches for 50 flaws affecting six products, including a zero-day flaw in Reader that has been exploited in the wild. Adobe has released security updates that address 50 vulnerabilities affecting its Adobe Acrobat, Magento, Photoshop, Animate, Illustrator, and Dreamweaver products. Adobe fixed 23 CVEs in Adobe Reader, 17 of whic
Publish At:2021-02-10 04:00 | Read:1390 | Comments:0 | Tags:Breaking News Security Adobe Hacking information security ne

Today Adobe Flash Player reached the end of life (EOL)

Today Adobe Flash Player has reached its end of life (EOL), its vulnerabilities were exploited by multiple threat actors in attacks in the wild over the years. Adobe Flash Player has reached the end of life (EOL) today, over the years, threat actors have exploited multiple vulnerabilities in the popular software. Adobe will no longer release updates fo
Publish At:2021-01-01 12:24 | Read:1797 | Comments:0 | Tags:Breaking News Security Adobe Adobe Flash Player Hacking hack

Patch Tuesday, Good Riddance 2020 Edition

Microsoft today issued its final batch of security updates for Windows PCs in 2020, ending the year with a relatively light patch load. Nine of the 58 security vulnerabilities addressed this month earned Microsoft’s most-dire “critical” label, meaning they can be abused by malware or miscreants to seize remote control over PCs without any h
Publish At:2020-12-08 20:54 | Read:1188 | Comments:0 | Tags:Security Tools Time to Patch adobe Allan Liska Microsoft Off

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3

Tag Cloud