HackDig : Dig high-quality web security articles for hacker

Microsoft patches two critical remote code execution (RCE) flaws that have been exploited in attacks

Microsoft released the June 2017 Patch Tuesday to address more than 90 security flaws, including two critical RCE that have been exploited in attacks. Microsoft released June Patch Tuesday updates that address more than 90 vulnerabilities, including two critical remote code execution (RCE) vulnerabilities that have been exploited in attacks. The first vulner
Publish At:2017-06-14 02:05 | Read:2491 | Comments:0 | Tags:Breaking News Hacking Uncategorized critical remote code exe

Microsoft Addresses Zero-Day Vulnerability Ahead of Patch Tuesday

Due to its highly critical nature, a zero-day vulnerability (CVE-2017-0290) that exploits Microsoft Malware Protection Engine (MsMpEng) was addressed by the company in an out-of-band security update just before May’s patch Tuesday. Discovered and disclosed to Microsoft by Google Project Zero’s Natalie Silvanovich and Tavis Ormandy, this vulnerability a
Publish At:2017-05-13 14:15 | Read:3139 | Comments:0 | Tags:Exploits Vulnerabilities Patch Tuesday Vulnerability

April Patch Tuesday: Microsoft Patches Office Vulnerability Used in Zero-Day Attacks

One of the major updates for this month’s Patch Tuesday addresses CVE-2017-0199, a zero-day remote code execution vulnerability that allowed attackers to exploit a flaw that exists in the Windows Object Linking and Embedding (OLE) interface of Microsoft Office. This flaw is currently being exploited by the notorious DRIDEX banking trojan. Threat actors lever
Publish At:2017-04-16 14:45 | Read:2436 | Comments:0 | Tags:Vulnerabilities Patch Tuesday Vulnerability

VERT Threat Alert: March 2017 Patch Tuesday Analysis

Today’s VERT Alert addresses 18 new Microsoft Security Bulletins. VERT is actively working on coverage for these bulletins and expects to ship ASPL-716 on Wednesday, March 15th.Ease of Use (published exploits) to Risk TableAutomated ExploitEasyModerateDifficultExtremely DifficultMS17-006MS17-007MS17-008MS17-013MS17-014MS17-017MS17-018 MS17-012No Known Exploi
Publish At:2017-03-15 23:31 | Read:4633 | Comments:0 | Tags:Featured Articles Vulnerability Management Adobe microsoft P

Microsoft Patch Tuesday of March 2017: 18 Security Bulletins; 9 Rated Critical, 9 Important

Patch Tuesday for March is a hefty one, with essentially two months’ worth of updates after Microsoft quietly delayed its February patch release. Notable among the critical bulletins is MS17-012, which resolves several vulnerabilities including CVE-2017-0016, a zero-day vulnerability involving  Windows Server Message Block (SMB). This vulnerability potential
Publish At:2017-03-15 13:20 | Read:2436 | Comments:0 | Tags:Exploits Vulnerabilities Patch Tuesday

Patch Tuesday of January 2017: Microsoft Releases Four Bulletins, One Rated Critical

Microsoft begins its monthly set of bulletins for 2017 with relatively few bulletins released in January. Four security bulletins make up this month’s Patch Tuesday—one of which is rated Critical to address vulnerabilities seen in Adobe Flash Player while the other three are tagged as Important to patch vulnerabilities in Microsoft Office, Edge, and the Loca
Publish At:2017-01-11 22:00 | Read:3594 | Comments:0 | Tags:Exploits Vulnerabilities Patch Tuesday

VERT Threat Alert: January 2017 Patch Tuesday Analysis

Today’s VERT Alert addresses 4 new Microsoft Security Bulletins. VERT is actively working on coverage for these bulletins in order to meet our 24-hour SLA and expects to ship ASPL-706 on Wednesday, January 11th.Ease of Use (published exploits) to Risk TableAutomated ExploitEasy MS17-001ModerateDifficultExtremely Difficult MS17-004No Known Exploit  MS17-002 M
Publish At:2017-01-10 17:20 | Read:3786 | Comments:0 | Tags:Featured Articles Vulnerability Management Adobe microsoft P

Patch Tuesday of December 2016: Microsoft Releases 12 Bulletins, Six Critical

For the last Patch Tuesday of 2016, Microsoft adds 12 bulletins split evenly into six rated Critical and six rated Important. Among the critical updates was MS16-148, which patches several vulnerabilities in Microsoft Office. If exploited, the most severe of these vulnerabilities could allow attackers to run arbitrary code in the guise of the user. Other cri
Publish At:2016-12-14 20:40 | Read:3126 | Comments:0 | Tags:Vulnerabilities December 2016 Patch Tuesday

VERT Threat Alert: December 2016 Patch Tuesday Analysis

Today’s VERT Alert addresses 12 new Microsoft Security Bulletins. VERT is actively working on coverage for these bulletins in order to meet our 24-hour SLA and expects to ship ASPL-703 on Wednesday, December 14th.Ease of Use (published exploits) to Risk TableAutomated ExploitEasyModerateDifficultExtremely Difficult  MS16-144 MS16-145   No Known ExploitMS16-1
Publish At:2016-12-14 12:31 | Read:3857 | Comments:0 | Tags:Vulnerability Management microsoft Patch Tuesday VERT

Patch Tuesday of November 2016: Six Critical Bulletins, Eight Important

November is the second-to-last Patch Tuesday of 2016, and it brings a slightly higher than typical number of bulletins: six Critical bulletins and eight Important bulletins. The 8th is the earliest date that Patch Tuesday can take place in a month; December’s Patch Tuesday (and the last of 2016) takes place in exactly five weeks. Among the items fixed
Publish At:2016-11-19 12:05 | Read:2578 | Comments:0 | Tags:Vulnerabilities November 2016 Patch Tuesday

VERT Threat Alert: November 2016 Patch Tuesday Analysis

Today’s VERT Alert addresses 14 new Microsoft Security Bulletins. VERT is actively working on coverage for these bulletins in order to meet our 24-hour SLA and expects to ship ASPL-698 on Wednesday, November 9th.Ease of Use (published exploits) to Risk TableAutomated Exploit   MS16-132MS16-135Easy    Moderate    Difficult    Extremely DifficultMS16-129MS16-1
Publish At:2016-11-10 04:46 | Read:3822 | Comments:0 | Tags:Vulnerability Management Adobe Flash internet explorer micro

VERT Threat Alert: October 2016 Patch Tuesday Analysis

Today’s VERT Alert addresses 10 new Microsoft Security Bulletins. VERT is actively working on coverage for these bulletins in order to meet our 24-hour SLA and expects to ship ASPL-693 on Wednesday, October 12th.EASE OF USE (PUBLISHED EXPLOITS) TO RISK TABLEAutomated ExploitEasyModerateDifficult  MS16-118MS16-119MS16-120MS16-121   Extremely Difficult      No
Publish At:2016-10-11 20:10 | Read:2418 | Comments:0 | Tags:Vulnerability Management Adobe microsoft Patch Tuesday VERT

VERT Threat Alert: September 2016 Patch Tuesday Analysis

Today’s VERT Alert addresses 14 new Microsoft Security Bulletins. VERT is actively working on coverage for these bulletins in order to meet our 24-hour SLA and expects to ship ASPL-689 on Wednesday, September 14th.Ease of Use (published exploits) to Risk TableAutomated ExploitEasyModerateDifficultExtremely DifficultNo Known ExploitMS16-113MS16-115MS16-104MS1
Publish At:2016-09-14 10:25 | Read:4512 | Comments:0 | Tags:Vulnerability Management Infosec Patch Tuesday security VERT

VERT Threat Alert: August 2016 Patch Tuesday Analysis

Today’s VERT Alert addresses 9 new Microsoft Security Bulletins. VERT is actively working on coverage for these bulletins in order to meet our 24-hour SLA and expects to ship ASPL-684 on Wednesday, August 10th.EASE OF USE (PUBLISHED EXPLOITS) TO RISK TABLEAutomated ExploitEasyModerateDifficultExtremely DifficultNo Known ExploitMS16-100MS16-103 MS16-095MS16-0
Publish At:2016-08-10 09:50 | Read:3250 | Comments:0 | Tags:Vulnerability Management internet explorer microsoft Patch T

20-year-old Windows bug lets printers install malware—patch now

For more than two decades, Microsoft Windows has provided the means for clever attackers to surreptitiously install malware of their choice on computers that connect to booby-trapped printers, or other devices masquerading as printers, on a local area network. Microsoft finally addressed the bug on Tuesday during its monthly patch cycle.The vulnerability res
Publish At:2016-07-14 15:25 | Read:3526 | Comments:0 | Tags:Risk Assessment Technology Lab exploits Microsoft Windows pa

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud