HackDig : Dig high-quality web security articles

Sloppy patches are a breeding ground for zero-day exploits, says Google

Security researchers at Google have claimed that a quarter of all zero-day software exploits could have been avoided if more effort had been made by vendors when creating patches for vulnerabilities in their software.In a blog post, Maddie Stone of Google’s Project Zero team says that 25% of the zero-day exploits detected in 2020 are closely related to
Publish At:2021-02-04 15:02 | Read:799 | Comments:0 | Tags:Featured Articles Vulnerability Management patches vendors z

Hat trick for Google as it patches two more zero-days in Chrome

Slightly over a week ago we advised you to update your Chrome browser. That warning came only a week or so after we advised you to update your Chrome browser. Things are getting a bit repetitive round here. Today, we are compelled to repeat that statement as Google has issued patches for two new zero-day vulnerabilities. Someone tipped Google off about
Publish At:2020-11-12 21:23 | Read:1589 | Comments:0 | Tags:Exploits and vulnerabilities chrome cve-2020-16013 cve-2020-

Apple’s latest updates are out for iPhones and Macs – get them now!

byPaul DucklinWhen it comes to updates, Apple doesn’t do “predictable”.Other organisations such as Microsoft, Mozilla and Adobe are well-known for publishing updates not only frequently but also regularly.Indeed, with those companies, you don’t just get updates at least once a month (or once every four weeks for Mozilla), but the pre-
Publish At:2020-07-17 15:55 | Read:1502 | Comments:0 | Tags:Apple Apple Safari iOS OS X Exploit ios iPhone macOS Patches

Exchange servers are under attack: patch them without delay

Cyber-incidents that stem from security vulnerabilities have always been, and still are, a major cyber-security issue. Notable cyber-attacks that have exploited vulnerabilities include WannaCry, the Equifax data breach, and Stuxnet, among many others. There is a tendency to believe that zero-day vulnerabilities represent the greatest threat, as victims are u
Publish At:2020-07-09 04:45 | Read:3316 | Comments:0 | Tags:News Security advanced cybersecurity b2b patches vulnerabili

Delayed Adobe patches fix long list of critical flaws

byJohn E DunnNotice anything missing from last week’s Microsoft Patch Tuesday?Obscured by a long list of Microsoft patches and some fuss about a missing SMB fix, the answer is Adobe, which normally times its update cycle to coincide with the OS giant’s monthly schedule.It’s mostly a practical convenience – admins and end-users get all the important cli
Publish At:2020-03-19 08:57 | Read:1824 | Comments:0 | Tags:Adobe Microsoft Security threats Vulnerability Acrobat Reade

Nvidia patches severe flaws affecting GeForce, Quadro NVS and Tesla

byJohn E DunnDenial of service, local escalation of privileges, and information disclosure are not security worries most computer users will associate with their racy graphics card or its drivers.And yet fixes for precisely these issues are part of February’s Nvidia GPU display update, all of which could compromise Windows or Linux PCs, allowing an attacker
Publish At:2020-03-03 08:07 | Read:2245 | Comments:0 | Tags:Linux Microsoft Operating Systems Security threats Vulnerabi

What You Don’t Know About Linux Open Source Could Be Costing to More Than You Think

Guest post by Marc Fisher If you would like to test out Linux before completely switching it as your everyday driver, there are a number of means by which you can do it. Linux was not intended to run on Windows, and Windows was not meant to host Linux. To begin with, and perhaps most of all, Linux is open source computer software. In any event, Linux outperf
Publish At:2019-10-18 04:40 | Read:3054 | Comments:0 | Tags:Articles Opinion Employing Linux open source projects operat

Adobe fixes 46 critical bugs in patchfest

byDanny BradburyAdobe patched a total of 82 vulnerabilities across a range of products on Tuesday, including 46 critical bugs.The lion’s share of the patches, which the company flagged on 11 October, came in a single advisory covering Acrobat and Acrobat Reader on the Windows and macOS platforms, extending back to the Classic 2015 versions.There were
Publish At:2019-10-17 06:05 | Read:2758 | Comments:0 | Tags:Adobe Organisations Security threats Acrobat Acrobat Reader

Microsoft fleshes out seismic change to Windows patching

Microsoft has elaborated on the new patching policy for Windows 7 and Windows 8.1 that takes effect Tuesday.In a post to a company blog accompanied by graphics that resembled a periodic table, Michael Niehaus, a product marketing director for Windows 10, fleshed out the massive change in how Windows 7, the standard in business and the most popular OS on
Publish At:2016-10-10 21:00 | Read:5636 | Comments:0 | Tags:Desktops Windows Security Patches

Cisco, Fortinet issue patches against NSA malware

Customers of certain Cisco and Fortinet security gear need to  patch exploits made public this week after a purported hack of NSA malware.Both companies have issued fixes to address exploits that were posted online and after they found the exploits represent real threats to some of their products, including versions of Cisco’s popular PIX and ASA
Publish At:2016-08-18 14:00 | Read:6132 | Comments:0 | Tags:Security Malware Patches

August Android Security Bulletin: a year of patches

One year into Google’s monthly patching for Android, the August 2016 bulletin contains 103 patches, just short of the high of 108 from last month. This makes a total of 373 vulnerabilities reported via the monthly Android security bulletin for 2016 and a total of 454 since Google started publicly publishing these monthly reports a year ago. The vulnerabilit
Publish At:2016-08-06 06:55 | Read:5074 | Comments:0 | Tags:Security android Android Security Bulletin patches vulnerabi

Security week-in-review: The Oracle vulnerability enterprises should know about

It’s hard to keep up with the hundreds of security-specific headlines published every week. So, we’re rounding up the top news that affect you, your business, and the security and technology industry overall. This week we explore patches to Oracle’s SDKs, Google’s Chrome browser, Apple’s iOS, and more . Check back every Friday to learn about the latest in
Publish At:2016-07-22 19:35 | Read:4751 | Comments:0 | Tags:Security Apple Chrome DDoS Firefox google Library of Congres

Dell patches critical flaws in SonicWALL Global Management System

Dell has patched several critical flaws in its central management system for SonicWALL enterprise security appliances, such as firewalls and VPN gateways.If left unfixed, the vulnerabilities allow remote, unauthenticated attackers to gain full control of SonicWALL Global Management System (GMS) deployments and the devices managed through those sy
Publish At:2016-07-22 03:35 | Read:6253 | Comments:0 | Tags:Security Networking Firewalls Patches

Cisco patches critical exposure in management software

Cisco has patched what it called a critical vulnerability in its Unified Computing System (UCS) Performance Manager software that could let an authenticated, remote attacker execute commands.+More on Network World: Quick look: Cisco Tetration Analytics+Cisco UCS Performance Manager versions 2.0.0 and prior are affected and the problem is resolved
Publish At:2016-07-21 09:20 | Read:5745 | Comments:0 | Tags:Security Data Center Patches Networking Storage Virtualizati

A closer look at iOS 9.3.3: Apple patches 43 security vulnerabilities

Apple released the latest version of iOS version 9.3.3 on July 18 including patches for 43 security vulnerabilities. Industry watchers have been anticipating this update as one of the final patch cycles for iOS 9 before iOS 10 is released in the fall. For enterprises with iOS deployments, regardless if they are corporately- or personally-provided, it’s impor
Publish At:2016-07-21 07:05 | Read:4720 | Comments:0 | Tags:Security Apple iOS iOS 9.3.3 mobile security patches remote

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3

Tag Cloud