HackDig : Dig high-quality web security articles

Update now! Microsoft fixes two zero-days in August's Patch Tuesday

Microsoft has published fixes for 141 separate vulnerabilities in its batch of August updates, fixing a total of 118 CVEs in multiple products. This is a new monthly record if you look at the CVE count. Publicly disclosed computer security flaws are listed in the Common Vulnerabilities and Exposures (CVE) database. Its goal is to make it easier to share
Publish At:2022-08-11 23:59 | Read:244 | Comments:0 | Tags:Exploits and vulnerabilities News Microsoft patch Tuesday MS

Tripwire Patch Priority Index for July 2022

Tripwire’s July 2022 Patch Priority Index (PPI) brings together important vulnerabilities for Microsoft and Adobe.First on the patch priority list this month are patches that resolve 2 vulnerabilities in Edge.Next is a patch that resolves a security feature bypass vulnerability in Office.Up next are patches for Adobe Reader and Acrobat that resolve 22
Publish At:2022-08-02 06:20 | Read:575 | Comments:0 | Tags:Featured Articles VERT Adobe microsoft patch priority index

Update now—July Patch Tuesday patches include fix for exploited zero-day

It’s time to triage a lot of patching again. Microsoft’s July Patch Tuesday includes an actively exploited local privilege escalation vulnerability in the Windows Client/Server Runtime Subsystem (CSRSS). This vulnerability immediately made it to the Cybersecurity & Infrastructure Security Agency (CISA) list of known to be exploited in the wild list that
Publish At:2022-07-13 11:52 | Read:429 | Comments:0 | Tags:Exploits and vulnerabilities adobe azure site recovery Cisco

Update now!  Microsoft patches Follina, and many other security updates

The June 2022 Patch Tuesday may go down in history as the day that Follina got patched, but there was a host of other important updates. And not just from Microsoft. Many other software vendors follow the pattern of monthly updates set by the people in Redmond. Microsoft Microsoft released updates to deal with 60 security vulnerabilities. Undoubtedly t
Publish At:2022-06-15 13:00 | Read:1132 | Comments:0 | Tags:Exploits and vulnerabilities adobe Atlassian citrix confluen

Update now! Microsoft releases patches, including one for actively exploited zero-day

Microsoft has released patches for 74 security problems, including fixes for seven “critical” vulnerabilities, and an actively exploited zero-day vulnerability that affects all supported versions of Windows. First, we’ll look at the actively exploited zero-day. Then we’ll discuss two zero-days that are publicly disclosed, but so far no in the
Publish At:2022-05-11 12:59 | Read:793 | Comments:0 | Tags:Exploits and vulnerabilities adobe Azure chrome Cisco cve-20

Microsoft Patch Tuesday, May 2022 Edition

Microsoft today released updates to fix at least 74 separate security problems in its Windows operating systems and related software. This month’s patch batch includes fixes for seven “critical” flaws, as well as a zero-day vulnerability that affects all supported versions of Windows. By all accounts, the most urgent bug Microsoft addresse
Publish At:2022-05-11 00:35 | Read:1496 | Comments:0 | Tags:Time to Patch adobe CVE-2022-26925 CVE-2022-26937 Dustin Chi

Tripwire Patch Priority Index for April 2022

Tripwire’s April 2022 Patch Priority Index (PPI) brings together important vulnerabilities for Microsoft, Google Chrome, Oracle, and Adobe.First on the patch priority list this month is an elevation of privilege vulnerability in the Microsoft Windows User Profile Service. This vulnerability has been added to the Metasploit Exploit Framework and any vul
Publish At:2022-05-02 02:08 | Read:2397 | Comments:0 | Tags:Featured Articles VERT Adobe Google Chrome microsoft Oracle

A week in security (February 14 – February 20)

Last week on Malwarebytes Labs: Adobe patches actively exploited Magento/Adobe Commerce zero-dayRansomware gang hits 49ers’ network before Super Bowl kick offDon’t let scammers ruin your Valentine’s DayCISA Ransomware report warns “triple threat” attacks still on the prowlCity: Skylines developers warn of rogue modUpdate now! Chrome patches actively explo
Publish At:2022-02-21 12:46 | Read:2135 | Comments:0 | Tags:A week in security 49ers adobe chrome KOSA LinkedIn magento

Adobe patches actively exploited Magento/Adobe Commerce zero-day

Adobe has released an emergency advisory for users of its Commerce and Magento platforms. It explains that a critical zero-day vulnerability is actively being exploited in attacks against sites that use these two content management system (CMSs). Users should apply the patch as soon as possible. The vulnerability Publicly disclosed computer security fl
Publish At:2022-02-14 12:46 | Read:2010 | Comments:0 | Tags:Exploits and vulnerabilities adobe CMS commerce cve-2022-240

Tripwire Patch Priority Index for January 2022

Tripwire’s January 2022 Patch Priority Index (PPI) brings together important vulnerabilities for Apache, Open Source Policy Kit, Adobe, and Microsoft.First on the patch priority list this month are patches for Apache Log4j2 vulnerabilities, most importantly for the Log4j2 “LogShell” remote code execution vulnerability (CVE-2021-44228). This
Publish At:2022-02-01 06:02 | Read:2251 | Comments:0 | Tags:Featured Articles VERT Adobe Apache microsoft Open Source pa

Adobe fixes 4 critical Reader bugs that were demonstrated at Tianfu Cup

Adobe released security updates to address multiple vulnerabilities affecting several products, including Acrobat and Reader. Adobe patches for January address 41 vulnerabilities in Windows and macOS versions of Acrobat and Reader products, Illustrator, Adobe Bridge, InCopy, and InDesign. 22 of these vulnerabilities were reported through the ZDI program.
Publish At:2022-01-12 06:24 | Read:1330 | Comments:0 | Tags:Breaking News Security Adobe Adobe Reader Adpbe RCE

Microsoft Patch Tuesday, December 2021 Edition

Microsoft, Adobe, and Google all issued security updates to their products today. The Microsoft patches include six previously disclosed security flaws, and one that is already being actively exploited. But this month’s Patch Tuesday is overshadowed by the “Log4Shell” 0-day exploit in a popular Java library that web server administrators ar
Publish At:2021-12-14 20:31 | Read:3463 | Comments:0 | Tags:Time to Patch adobe chrome CVE-2021-41379 CVE-2021-43883 CVE

Adobe addresses over 60 vulnerabilities in multiple products

Adobe warns of threat actors that could exploit critical vulnerabilities in multiple products running on Windows and macOS systems. Adobe has issued critical warnings for more than 60 vulnerabilities in multiple products running on Windows and macOS machines. The vulnerabilities can be exploited by threat actors for code execution, privilege escalatio
Publish At:2021-12-14 18:45 | Read:3204 | Comments:0 | Tags:Breaking News Security Adobe Hacking hacking news informatio

Patch now! Microsoft plugs actively exploited zero-days and other updates

On what might seem a relatively calm Patch Tuesday with 55 vulnerabilities being patched, the fact that six of them were rated “Critical” and two of them actively exploited spoils the Zen factor somewhat. Publicly disclosed computer security flaws are listed in the Common Vulnerabilities and Exposures (CVE) database. Its goal is to make it easier to share
Publish At:2021-11-10 12:44 | Read:3975 | Comments:0 | Tags:Exploits and vulnerabilities 3d viewer adobe Android Cisco c

Tripwire Patch Priority Index for October 2021

Tripwire’s October 2021 Patch Priority Index (PPI) brings together important vulnerabilities from Squid, Microsoft, and Adobe.First on the patch priority list this month are patches for Squid (CVE-2021-31807, CVE-2021-31806). Exploits for these vulnerabilities have been recently added to the Metasploit Exploit Framework. These systems should be patched
Publish At:2021-11-03 11:23 | Read:1468 | Comments:0 | Tags:VERT Adobe microsoft patch priority index PPI

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3

Tag Cloud