Update your Flash Player if you don't want ransomware

It didn't take long for exploit kit authors to incorporate an exploit for the recently discovered zero-day Adobe Flash vulnerability (CVE-2015-3113) into their malicious wares.

Cisco finds, removes more default SSH keys on its software

Cisco has pushed out security updates to address two vulnerabilities in its Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Content Security Management Virtual Appliance (SMAv) software.

Samsung disables Windows Update, undermines the security of your devices

Another example of how vendors sometimes choose to improve usability to the detriment of user security has been recently discovered by security researcher and Microsoft MVP Patrick Barker.

Deadly Windows, Reader font bugs can lead to full system compromise

A researcher shared his discovery of fifteen flaws of varying severity in a number of font engines used by Microsoft's Windows, Adobe's Reader software, popular modern browsers, and so on.

Critical RubyGems vulns can lead to installation of malicious apps

A serious vulnerability in RubyGems, a package manager for the Ruby programming language, can be exploited to trick end users into installing malware from attacker-controlled gem servers.

Spotlight

5 ways to stop the Internet of Things from becoming the Internet of Thieves

Attacks on the IoT can sound like the stuff of a movie thriller, but they are very real. The highly skilled and organized cybercriminals of today have the potential to tamper with a car’s firmware to kill its brakes.


What's New
Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  
DON'T
MISS

Tue, Jun 30th
Events
(ISC)2 Security Congress
28 September - 01 October 2015.

Editor's choice

Major Xen update fixes over 20 vulns, including guest/host escape flaw

The newest version (v4.5.1) of popular hypervisor Xen has been released last week, and includes a bucketload of improvements and bug-fixes, including nearly 20 security fixes.

Researcher tests Tor exit nodes, finds not all operators can be trusted

A security researcher tested around 1,400 Tor exit nodes by setting up a Bitcoin-themed phishing site.

Samsung disables Windows Update

Another example of how vendors sometimes choose to improve usability to the detriment of user security has been recently discovered by security researcher and Microsoft MVP Patrick Barker.

Six key facts about malicious macros and the cybercrime economy

Cybercriminals have increasingly returned to cost-effective macros to reach more targets and see a greater return on their financial investment.

Flash Player 0-day exploited in the wild, patch immediately!

Adobe has released an emergency patch for its notoriously buggy Flash Player software.


    COPYRIGHT 1998-2015 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //