A European aeronautical supplier's website has been infected with a state-sponsored zero-day exploit, according to security firm, Sophos. Business IT administrators and other computer users should use caution in the light of the discovery ...
Tags: European aeronautical supplier, website, Microsoft software
Researchers from security firm Security Explorations have claimed to have discovered a vulnerability in the Java 7 security update released Thursday that can be exploited to escape the Java sandbox and execute arbitrary code on the ...
Tags: Adam Gowdiak, highlightedpost, Java 7, Java 7 vulnerability
Microsoft has released further information on a patch for the zero-day vulnerability in Internet Explorer that affects versions IE6 to IE9. The Internet Explorer maker has made available a "fix-it" that uses its application compatibility ...
Tags: Microsoft, emergency patch, IE
A vulnerability in Oracle's Java software that attackers can use to remotely seize control of systems running the program is being sold for"five digits". The security hole is being sold by an established member of an ...
Tags: Oracle, Java zero-day exploit, MidiDevice, sold for'five digits'
Windows XP has fewer than 500 days left to live,according to Microsoft and third-party countdown clocks. Microsoft will end support for XP on April 8,2014,when it will issue a final security update for the 11-year-old operating ...
Tags: Windows XP, Microsoft, operating system, PC
Apple yesterday started scrubbing most Macs of older Java browser plug-ins,a move that will force users to download the software from Oracle.The company also patched Java for OS X,the second time Apple synchronized its Java security update ...
Tags: Apple, older Java browser plug-ins, Oracle, Snow Leopard
Any organisations that have not yet replaced outdated security certificates will have to act quickly to meet the Microsoft deadline. From 9 October, Microsoft systems will require all public key infrastructure (PKI) digital certificates ...
Tags: Microsoft, outdated security, Microsoft deadline, key length
Samsung is facing calls to issue a security update for the Galaxy S3 smartphone after it was discovered that the device can be reset by code hidden in a web page. German security researchers have demonstrated how an 11-character code can ...
Tags: Samsung, Galaxy S3, smartphone, vulnerability, hackers
Security researchers have discovered a new vulnerability in all supported versions of Oracle Java that enables attackers to bypass sandbox defences. The vulnerability, which affects Java Standard Edition versions 5, 6 and 7, can be used ...
Tags: Java Flaw, Bypass Sandbox, vulnerability, Security Explorations
A security researcher known for finding Java bugs has uncovered a new critical zero-day vulnerability in all currently-supported versions of the popular Oracle software. The bug,which was publicly reported on the Full Disclosure security ...
Tags: Zero-Day Java Bug, security researcher, Security Explorations
Microsoft has released an emergency out-of-cycle patch for the latest zero-day vulnerability in Internet Explorer that affects versions IE6 to IE9. The security update also addresses four other unrelated vulnerabilities,which were ...
Tags: Microsoft, update IE security, emergency out-of-cycle patch
Apple yesterday quietly released a security update for OS X 10.6, aka Snow Leopard, effectively extending support for the three-year-old OS beyond the normal lifecycle. The Snow Leopard update shipped alongside larger updates for Lion and ...
Tags: Apple, security update, US, Mac OS X
Microsoft says it is investigating reports of a vulnerability in Internet Explorer 6,7,8,and 9 as well as targeted attacks that have attempted to exploit the vulnerability. The zero-day flaw,which does not affect Explorer 10,was ...
Tags: Microsoft Investigates, IE ZeroDay Flaw, targeted attacks
Battle.net, the service that hosts videogames company Blizzard's massively multiplayer online game World of Warcraft, has come under attack from hackers, according to a security update on the game's website. Mike Morhaime, president and ...
Tags: Blizzard, Warcraft Game Servers, Mike Morhaime, SRP
Retail chip and PIN devices can be attacked easily,exposing banks,retailers and customers to fraud. Researchers from Basingstoke-based MWR InfoSecurity demonstrated at the 2012 Black Hat conference in Las Vegas that it is possible to ...
Tags: Retail chip and PIN devices, MWR Infosecurity, 2012 Black Hat, Las Vegas