Please turn on your JavaScript for this page to function normally.
Adobe patches latest Flash Player zero-day

Adobe has released Flash Player 16.0.0.305, a new version that fixes the latest zero-day flaw (CVE-2015-0313) that is currently exploited in mass malvertising campaigns. An …

New OS X Yosemite version fixes critical security issues, including Thunderstrike

Apple has released the latest version of OS X Yosemite (v10.10.2) and the first security update (2015-001) for this year, and among the problems fixed is one affecting the CPU …

Why Google won’t be updating pre-KitKat WebKit anymore

Two weeks ago, Rapid 7 researchers discovered that Google will no longer be providing security patches for WebView used in pre-KitKat (v4.4) Android versions, meaning that …

Adobe updates Flash Player again, plugs 0-day exploited by Angler

Adobe made good on its promise to make available by this week a fix for the recently discovered critical zero-day Flash Player vulnerability (CVE-2015-0311) preyed on by the …

Critical Flash Player hole plugged, another still unpatched and exploited

Adobe has released an out-of-band update for Flash Player, which fixes a security flaw (CVE-2015-0310) that could be used to circumvent memory randomization mitigations on the …

GoDaddy fixes domain-hijacking vulnerability

Security engineer Dylan Saccomanni has discovered a critical CSRF vulnerability that can be exploited to take over domains registered with Go Daddy, and has forced the popular …

Oracle patches 169 vulns across its products, many are critical

On Tuesday Oracle released its quarterly Critical Patch Update, which addressed a total of 169 vulnerabilities across multiple products, including Java SE (Standard Edition). …

January’s Patch Tuesday marks the start of a new era

Microsoft’s January 2015 patch Tuesday marks the start of a new era. It seems that Microsoft’s trend towards openness in security has reversed and the company that …

Over 930M Android users in danger as Google stops delivering critical patches

Nearly a billion of Android users – over half of the total number of worldwide users – are in danger of being targeted by cyber attackers exploiting …

OpenSSL release patches 8 vulnerabilities

The OpenSSL Project has released updates for the popular eponymous open-source library that implements the SSL and TLS protocols. The new releases – 1.0.1k, 1.0.0p and …

Pre-Patch Tuesday alerts no longer publicly available

Microsoft’s Advanced Notification Service (ANS), which for over a decade provided advanced warning about the patches and updates that the company would push out on its …

Critical Git flaw allows attackers to compromise developers’ machines

A critical vulnerability affecting all versions of the official Git client and all related software that interacts with Git repositories has been found and patched, and …

Don't miss

Cybersecurity news