Patches

Microsoft readies permanent fix for Internet Explorer bug used in energy attacks

By

Microsoft is prepping a whopper of a security update that will close 33 vulnerabilities, likely including an Internet Explorer (IE) flaw that has been used in targeted website attacks against the U.S. government.

Microsoft issues replacement for botched patch

By

Microsoft is now issuing a replacement patch for a fix that was shelved two weeks ago after customers reported problems resulting after they installed it.

Oracle releases 42 fixes for Java bugs as part of wider security update

By

An improved notification system will help protect users from running risky applications from untrusted sources.

Microsoft shelves patch, asks customers to uninstall, after error discovered

By

The software giant said applying the update could prevent machines and applications from properly restarting and loading.

Microsoft fixes three "critical" flaws with Patch Tuesday release

By

The biggies are two vulnerabilities in Internet Explorer and a single weakness in Remote Desktop Connection.

April's Patch Tuesday from Microsoft includes another Internet Explorer patch

April's Patch Tuesday from Microsoft includes another Internet Explorer patch By

The software giant expects to distribute eight other fixes to correct vulnerabilities in Windows, Office, Server Software and Security Software.

Microsoft pushes seven patches, including fix for "evil maid"-style attack

By

The vulnerability allows anyone with "casual physical access, such as a custodian sweeping your office at night or a security guard making his rounds" to plug in a USB device and become an administrator, according to Microsoft.

Microsoft schedules seven security patches for monthly Patch Tuesday

By

They address flaws in Internet Explorer (IE), Windows, Office, Server Software and Silverlight.

Adobe hurries update to fix Flash zero-day vulnerabilities

By

Adobe this week released an update to its Flash Player to close three vulnerabilities, two of which are under active attack.

Adobe patches against PDF exploits that overran sandbox

By

Adobe on Wednesday made available a security update to its Reader and Acrobat software to close two vulnerabilities that are under active attack.

Microsoft patch fixes critical IE flaws

By

One security bulletin fixes 13 flaws that could allow an attack to remotely execute code in several versions of IE.

Adobe updates Flash to address targeted exploits

By

The software company has updated its ubiquitous Flash software because of two pressing zero-day vulnerabilities.

Microsoft to plug 57 security holes next week

By

The software giant expects to release a dozen patches on Tuesday, but all eyes are on two bulletins that address security flaws in Internet Explorer.

Oracle speaks, promises to get Java "fixed up"

By

Milton Smith, Java's security lead, said Oracle will focus on browser-based Java attacks, the largest threat for users.

Oracle quarterly update offers 86 security fixes

By

Oracle on Tuesday shipped its quarterly security update to close 86 vulnerabilities across its product line.

As exploits climb, Oracle patches Java 7

By

Responding to a widening outbreak of Java malware, Oracle on Sunday dispensed an urgent fix for the latest version of the software platform.

Microsoft rushes fix for Internet Explorer vulnerability

By

The software giant is taking the rare step of issuing an out-of-cycle patch for a dangerous IE bug that is being used in ongoing spy attacks.

Firefox 18 includes security fixes, app features Safe Browsing

Firefox 18 includes security fixes, app features Safe Browsing By

A majority of the bugs patched in the latest version of Mozilla's web browser were deemed "critical."

Yahoo patches XSS flaw affecting mail users

By

But a researcher said the fix is not adequate and can be evaded by tweaking the malicious code. Meanwhile, it's unclear if the bug is related to a wave of Yahoo account takeovers affecting users in recent days.

Adobe preps ColdFusion update to deter active exploits

By

Adobe also plans to patch its Reader and Acrobat products on Tuesday.

News briefs: The latest security events

News briefs: The latest security events By

This month's news briefs include President Obama issuing guidance for the information security threat posed by insiders, charges in Butterfly botnet case and hack of AT&T website, and other security news.

2 minutes on: Will ad blockers be regulated?

By

Stretched across websites, carefully placed beside content and at times popping out of nowhere to steal one's attention, we can run from online advertisements, but we certainly can't hide.

The ghosts of Microsoft: Patch, present and future

The ghosts of Microsoft: Patch, present and future

When you consider how many stakeholders are invested in Microsoft's Patch Tuesday, it's no wonder the monthly affair stirs up so much energy in the cyber world.

Microsoft, Adobe patch a range of vulnerabilities

By

IT administrators will scramble amid the holiday chaos to update their systems with the latest patches. So far, no exploits have been seen, but that could change now that the fixes are out.

Security fixes for Internet Explorer, Exchange coming Tuesday

By

Microsoft next week is scheduled to release seven patches to cover 11 security vulnerabilities, the software giant announced Thursday.

Firefox 17 includes security fixes, Social API debut

By

Mozilla has packaged fixes for nearly 30 security vulnerabilities into the latest version of its web browser, Firefox 17.

Skype dispatches swift fix for password reset flaw

By

First divulged in a Russian online community, a Skype password reset vulnerability could have given attackers the ability to run amuck in users' Skype accounts.

Microsoft drops IE, Windows fixes on Patch Tuesday

By

Microsoft deemed two of the four "critical" patches to be the highest priority. One provides a cumulative update for Internet Explorer 9, the other addresses three TrueType font vulnerabilities.

Microsoft to patch 19 vulnerabilities on Tuesday

By

Microsoft released an advanced notification highlighting six fixes that will be a part of their Patch Tuesday cycle.

Adobe releases updates for Flash Player, AIR

By

The scheduled patch addresses seven "critical" flaws that could allow attackers to take over affected systems.

Advertisement

How to Prevent Insider Threats!

POLL