HackDig : Dig high-quality web security articles for hacker

Flash Player is Dead, Long Live Flash Player!

Adobe last week detailed plans to retire its Flash Player software, a cross-platform browser plugin so powerful and so packed with security holes that it has become the favorite target of malware developers. To help eradicate this ubiquitous liability, Adobe is enlisting the help of Apple, Facebook, Google, Microsoft and Mozilla. But don’t break out th
Publish At:2017-08-02 22:00 | Read:3543 | Comments:0 | Tags:Other adobe apple Benjamin Smedberg exploit kits Facebook Fl

Do you use Adobe Flash Player? You should update it now!

Adobe released new versions of Flash Player and Connect web conferencing software to fix important and critical vulnerabilities. According to the security advisory published by Adobe for Flash Player, the new version 26.0.0.137 patches three critical vulnerabilities, including a remote code execution flaw tracked as CVE-2017-3099 that can be exploited by att
Publish At:2017-07-14 00:15 | Read:2371 | Comments:0 | Tags:Breaking News Hacking Adobe Connect Flash Player RCE XSS

Adobe patches tens of vulnerabilities in Flash Player, Shockwave Player, Captivate and Digital Editions

On Tuesday, Adobe released updates for Flash Player, Shockwave Player, Captivate and Digital Editions addressing a total of 20 vulnerabilities. Some vulnerabilities fixed by Adobe are critical remote code execution issue, the last release, version 26.0.0.126, addressed nine flaws in Flash Player. The vulnerabilities were tracked as CVE-2017-3075, CVE-2017-30
Publish At:2017-06-14 02:05 | Read:2681 | Comments:0 | Tags:Breaking News Hacking Adobe Flash Player

Security updates fix critical vulnerabilities in Flash player and Shockwave player

Adobe patches vulnerabilities in Flash Player and Shockwave for Windows, Mac, Linux and Chrome OS. Adobe issued security updates for Flash Player and Shockwave Player products. The security updates released by the company on Tuesday address seven vulnerabilities in Flash Player and one flaw in Shockwave Player. The Flash Player 25.0.0.127 version fixes criti
Publish At:2017-03-15 06:55 | Read:2524 | Comments:0 | Tags:Breaking News Security Adobe buffer overflow Flash Player pr

February Updates from Adobe, Microsoft

A handful of readers have inquired as to the whereabouts of Microsoft‘s usual monthly patches for Windows and related software. Microsoft opted to delay releasing any updates until next month, even though there is a zero-day vulnerability in Windows going around. However, Adobe did push out updates this week as per usual to fix critical issues in its F
Publish At:2017-02-20 04:10 | Read:2408 | Comments:0 | Tags:Other adobe Flash Player microsoft Patch Tuesday February 20

Adobe just fixed thirteen code execution flaws in Flash Player

Adobe addressed thirteen highest severity code execution vulnerabilities in Flash Player for Windows, MAC OS, and Chrome. Adobe released security updates that address two dozen vulnerabilities in Flash Player, Digital Editions, and the Campaigns marketing tool. Adobe has released security updates for Adobe Flash Player for Windows, Macintosh, Linux and Chrom
Publish At:2017-02-15 05:05 | Read:3289 | Comments:0 | Tags:Breaking News Hacking Adobe Flash Player

Adobe Flash Player flaws remain the most used by Exploit Kits

Experts from the firm Recorded Future published a report on the most common vulnerabilities used by threat actors in the exploit kits. Recorded Future published an interesting report on the most common vulnerabilities used by threat actors in the exploit kits. The experts observed that Adobe Flash Player and Microsoft products (Internet Explorer, Silverlight
Publish At:2016-12-06 21:20 | Read:3686 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Reports Adobe CVE-2016-018

Adobe issued security patches for 9 Flash Player flaws reported via ZDI

Adobe released security updates that address nine vulnerabilities in Flash Player that could be exploited for remote code execution. Adobe has released security updates to address one vulnerability in Connect for Windows and nine arbitrary code execution flaws in the Flash Player product. The patches issued by the company for Adobe Flash Player are availab
Publish At:2016-11-09 12:15 | Read:2676 | Comments:0 | Tags:Breaking News Security Adobe Adobe Connect Flash Player

CVE-2016-7855 flaw in Adobe Flash Player exploited in targeted attacks

Adobe has issued a security patch for its Flash Player that fixes a critical vulnerability, tracked as CVE-2016-7855, used in targeted attacks. Adobe has released a security update for its Flash Player that address a critical vulnerability, tracked as CVE-2016-7855,  that has been exploiting in the wild by threat actors. According to the security advisory is
Publish At:2016-10-26 18:00 | Read:3705 | Comments:0 | Tags:Breaking News Hacking Security Adobe CVE-2016-7855 Flash Pla

Got Microsoft? Time to Patch Your Windows

Microsoft churned out a bunch of software updates today fix some serious security problems with Windows and other Microsoft products like Internet Explorer (IE), Edge and Office. If you use Microsoft, here are some details about what needs fixing. As usual, patches for IE and for Edge address the largest number of “critical” vulnerabilities. Crit
Publish At:2016-08-10 19:55 | Read:3070 | Comments:0 | Tags:A Little Sunshine Time to Patch Flash Player microsoft patch

Adobe Update Plugs Flash Player Zero-Day

Adobe on Thursday issued a critical update for its ubiquitous Flash Player software that fixes three dozen security holes in the widely-used browser plugin, including at least one vulnerability that is already being exploited for use in targeted attacks. The latest update brings Flash to v. 22.0.0.192 for Windows and Mac users alike. If you have Flash instal
Publish At:2016-06-19 06:15 | Read:2948 | Comments:0 | Tags:Time to Patch adobe Flash Player zero day

CVE-2016-4117 – FireEye revealed the exploit chain of recent attacks

The FireEye researcher Genwei Jiang revealed the exploit chain related to phishing attacks leveraging CVE-2016-4117 flaw recently fixed by Adobe. Security experts at FireEye have recently spotted an attack leveraging on an Adobe zero-day vulnerability (CVE-2016-4117) recently patched. The CVE-2016-4117 flaw affects older versions of the Adobe Flash, a few d
Publish At:2016-05-16 10:05 | Read:3096 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Adobe CVE-2016-4117 Flash

CVE-2016-4117 Adobe Flash Zero-Day is being exploited in the wild

CVE-2016-4117 is a zero-day vulnerability affecting the Adobe Flash Player that is being exploited to launch malware-based attacks in the wild. According to Adobe, a new zero-day vulnerability in the Flash Player software is being exploited in cyber attacks in the wild, and the worrisome new is that it will not be patched until May 12th. The  security vulner
Publish At:2016-05-11 02:20 | Read:3818 | Comments:0 | Tags:Breaking News Hacking Adobe CVE-2016-4117 Flash Player targe

Zerodium offers $100,000 for bypass Flash Player heap isolation

The zero-day exploit broker Zerodium is offering up to $100,000 to security experts who can provide an exploit for bypassing the Flash heap isolation. Once again, the zero-day exploit trader Zerodium is in the headlines, this time the company is offering $100,000 for the Flash Exploit Mitigation bypass. Adobe announced in Dece
Publish At:2016-01-06 22:05 | Read:2582 | Comments:0 | Tags:Breaking News Hacking Adobe Flash Player heap isolation zero

Adobe Releases Security Update for 19 ‘Critical’ Vulnerabilities in Flash Player

Adobe has released an out-of-band security update that fixes 19 ‘critical’ vulnerabilities found in Flash Player.On Monday, the United States Computer Emergency Readiness Team (US-CERT) issued an alert advising users and administrators alike to refer to Adobe Security Bulletin APSB16-01.In that bulletin, Adobe provides some context on the reason
Publish At:2015-12-29 13:20 | Read:2700 | Comments:0 | Tags:Latest Security News Adobe Brian Krebs Flash Player Huawei s

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud