As part of its monthly security update cycle, Microsoft on Tuesday released 11 security bulletins to resolve multiple vulnerabilities in Internet Explorer, Edge, Office, JScript and VBScript, and .NET Framework.
read more
Adobe Patches Critical Vulnerabilities in Flash, Acrobat, Reader
Adobe today released security updates for Flash Player, Acrobat, Reader, and XMP Toolkit for Java, to address multiple Critical vulnerabilities affecting Windows, Mac OS X, ChromeOS, and Linux users.
read more
Persistent XSS Flaws Patched in Popular WordPress Plugins
Persistent cross-site scripting (XSS) vulnerabilities were patched over the past several days in three popular WordPress plugins, including Activity Log, All in One SEO Pack, and WP Live Chat Support.
read more
Furtim’s Parent: State-Sponsored Malware Targets Energy Sector
Endpoint security firm SentinelOne has found and analyzed the dropper framework of the Furtim malware discovered in May. It describes this as the mother ship, and has named it SFG: Furtim's Parent.
read more
Hacking is Sexy, But Defending is the Grown-up Thing To Do
Defending is an Important Piece of the Security Puzzle That Too Often Missing From the Broader Dialogue
read more
Code Execution Flaw Plagues Intel Graphics Driver
A local code execution vulnerability that affects the Intel HD Graphics Kernel Mode Driver for Windows could allow an attacker to run arbitrary code on a target system or cause denial of service, Cisco Talos researchers discovered.
read more
Threat Intel Firm Flashpoint Raises $10 Million
Flashpoint, a threat intelligence and research company that focuses on combing the Deep & Dark Web, has raised $10 million in Series B funding, and announced its expansion into the Business Risk Intelligence (BRI) market.
read more
EU Launches Controversial Internet Privacy Deal With U.S.
The European Union on Tuesday launched a controversial deal with the United States aimed at curbing government spying on the personal internet information of European citizens.
read more
India-Linked Threat Actor Targets Military, Political Entities Worldwide
Patchwork is a new threat actor that has been targeting numerous entities around the world using code that has been copied from various online forums, Cymmetria researchers reveal.
read more
U.S. Has Most Internet Connected Industrial Control Systems
Over the past few years, industrial control systems (ICS) components have proven to be increasingly vulnerable and more frequently accessible from the Internet, which significantly amplifies the risk they are exposed to, Kaspersky Lab researchers warn.
read more
