HackDig : Dig high-quality web security articles for hacker

Zepto Ransomware Packed into WSF Spam

ThreatTrack Labs has recently observed a surge of spam containing a zip attachment with a WSF (Windows Scripting File) to deliver Zepto ransomware. This tactic is a change from the common JavaScript and macro documents being spammed previously. Here are actual emails featuring familiar social engineering tactics: The zip attachments contain the WSF. &nbs
Publish At:2016-11-21 23:35 | Read:8041 | Comments:0 | Tags:Featured Security news Technology news ThreatTrack Security

Summer is here and that means it’s time to vote for your InfoSec heroes

Yes folks, it’s that time of year again – various infosec awards are being prepared and a few select people will be walking home with shiny new trophies over the coming months. How do you win one, I hear you say. Good question I reply. As things stand, there are two such events open for nominations – the EU Security Blogger awards and the S
Publish At:2016-11-19 14:10 | Read:4996 | Comments:0 | Tags:Security News

Security week-in-review: Danger, Will Robinson, we’ve been redirected

It’s hard to keep up with the hundreds of security-specific headlines published every week. So, we’re rounding up the top news that affect you, your business, and the security and technology industry overall. This week we explore regulations around data transfers, how much the data on a mobile device is really worth, and a number of noteworthy threats. Chec
Publish At:2016-02-06 10:30 | Read:2902 | Comments:0 | Tags:Security Enterprise mobile security google mobile security s

Security week-in-review: Attacks big, small, and not at all

Business Travel It’s hard to keep up with the hundreds of security-specific headlines published every week. So, we’re rounding up the top news that affect you, your business, and the security and technology industry overall. Knowledge is power. Check back every Friday to learn about the latest in security news. 1) This week, Ars Technica reported about “Sho
Publish At:2016-01-29 21:40 | Read:2621 | Comments:0 | Tags:Security Enterprise mobile security security news security w

Apple Updates XProtect to Detect Microsoft Silverlight Exploit

Following the discovery of a Microsoft Silverlight exploit, Apple has updated its XProtect.plist malware definitions file to version 2073. This update detects the minimum bundle version for Silverlight, protecting Mac users from Microsoft Silverlight 5 before version 5.1.41212.0.The vulnerability that is being exploited is described as follows:CVE-2016-0034 
Publish At:2016-01-23 02:35 | Read:3259 | Comments:0 | Tags:Malware Security News Apple CVE-2016-0034 Microsoft Silverli

Update Your iOS Devices – Your Cookies May Be at Risk!

If you own an iPhone or iPad chances are that you already know that there is an update to iOS available. With a few presses your device should be downloading iOS 9.2.1 which, according to Apple, includes a number of under-the-hood performance improvements and bug fixes.If you bothered to read the update dialog on your iDevice, you will have seen that iOS 9.2
Publish At:2016-01-21 14:25 | Read:2907 | Comments:0 | Tags:Security & Privacy Security News cookies CVE-2016-1730 iOS i

Microsoft Tackles Critical Flaws in Office for Mac Updates

Microsoft has issued Office 2016 version 15.17.0 updates to patch security vulnerabilities in its latest software, as well as Office 2011 14.6.0 to patch the earlier suite. Microsoft tackled “critical” vulnerabilities in the company’s flagship application software that can allow remote code execution.Multiple remote code execution vulnerabilities exist in no
Publish At:2016-01-14 01:35 | Read:3198 | Comments:0 | Tags:Security News CVE-2016-001 Microsoft Office 2011 14.6.0 Offi

Adobe Issues Final 2015 Flash Player Security Update

Adobe has released security updates for Adobe Flash Player, releasing version 20.0.0.235 as its final 2015 update of the year. Flash Player 20.0.0.235 addresses "critical vulnerabilities" that could potentially allow an attacker to take control of the affected system, according to Adobe's security bulletin (APSB15-32).Seventy-nine vulnerabilities were patche
Publish At:2015-12-14 22:15 | Read:3437 | Comments:0 | Tags:Security News Adobe Flash Player 20.0.0.235

Safari 9.0.2 Released; Update Now or It Might Be Your Weakest Security Link

Apple has updated its Safari web browser to version 9.0.2, available for OS X Mavericks 10.9.5, OS X Yosemite 10.10.5, OS X El Capitan 10.11 and 10.11.1. If this update applies to you, it's a good idea to install the latest Safari version immediately — otherwise it may become your weakest security link.Software updates may seem trivial, but the truth is they
Publish At:2015-12-11 03:50 | Read:2824 | Comments:0 | Tags:Security News Apple Safari 9.0.2 web browser

50 Shades of Security Fixes: iOS 9.2 Update Available

Apple has released iOS 9.2 for iPhones and iPads, patching a wide range of security bugs while adding several new feature updates. iOS 9.2 includes fixes for a combined 50 vulnerabilities, found by researchers at Apple and other vendors, many of which relate to the remote execution of code and remote access to system privileges.iOS 9.2 is available for the f
Publish At:2015-12-10 09:45 | Read:3745 | Comments:0 | Tags:Security News Apple CVE-2015-7080 CVE-2015-7094 iOS iOS 9.2

VirusTotal Now Scans Mac Apps for Malware in a Sandbox

VirusTotal, a popular online file scanning service that analyzes files and URLs for the identification of malware, is now executing suspicious Mac apps inside a sandbox to improve its analysis and detection of Mac malware. VirusTotal now extracts behavioral information from scanned Mac executable files, an important step forward for the Google-owned file sca
Publish At:2015-11-20 01:30 | Read:3285 | Comments:0 | Tags:Security News antivirus apps Google Mac malware OS X Sandbox

Adobe: Flash Player 19.0.0.245 Released, Patches Security Flaws

Adobe Systems has released Flash Player 19.0.0.245 for Mac and Windows with patches for critical vulnerabilities that could potentially allow an attacker to take control of the affected system. Flash Player 19.0.0.245 addresses a combined 17 security flaws, most of which could lead to arbitrary code exaction.The affected Adobe software includes the following
Publish At:2015-11-11 19:10 | Read:5169 | Comments:0 | Tags:Security News Adobe Flash Player 19.0.0.245

Microsoft Office for Mac 14.5.8 Patches Mac Spoofing Vulnerability

Microsoft has released Office for Mac 14.5.8 with security patches for two memory corruption flaws and a Mac spoofing vulnerability. The most severe of the vulnerabilities "could allow remote code execution if a user opens a specially crafted Office file," said Microsoft in its security bulletin (MS15-116).This update applies to the following Microsoft softw
Publish At:2015-11-11 19:10 | Read:2868 | Comments:0 | Tags:Security News Mac Microsoft Office 2011 14.5.8 Office for Ma

Microsoft Office for Mac 14.5.7 Update Patches Remote Code Execution Flaws

Microsoft has released Office for Mac 14.5.7 as an update that patches two remote code execution flaws affecting Microsoft Excel for Mac 2011."The most severe of the vulnerabilities could allow remote code execution if a user opens a specially crafted Microsoft Office file. An attacker who successfully exploited the vulnerabilities could run arbitrary code i
Publish At:2015-10-20 07:00 | Read:2895 | Comments:0 | Tags:Security News Mac Microsoft Office 2011 14.5.7 Office for Ma

Adobe Flash Player 19.0.0.226 Patches Vulnerability in the Wild

Last Friday, Adobe Systems released an ahead-of-schedule update to resolve a widely known vulnerability in Flash Player being actively exploited in the wild. The Flash Player updates address vulnerabilities that could potentially allow an attacker to take control of the affected system.“Adobe is aware of a report that an exploit for CVE-2015-7645 is being us
Publish At:2015-10-20 07:00 | Read:2765 | Comments:0 | Tags:Security News Adobe CVE-2015-7645 Flash Player 19.0.0.226 Vu

Announce

Share high-quality web security related articles with you:)

Tools

Tag Cloud