- Location
Zero Day Vulnerability
"-
The Website of a U.S. Organisation Specialising Was Compromised with Malware
Nov 19, 2013The website of a U.S. organisation specialising in national and international security policy was compromised with malware that targeted a previously unknown vulnerability in Internet Explorer. A nation-state looking to compromise the ...
Tags: Nation-state, attack, IE, flaw
-
Google Wants Vendors to Fix or Offer Mitigation Advice for Previously Unknown
May 30, 2013IDG News Service - Google wants vendors to fix or offer mitigation advice for previously unknown and actively exploited software vulnerabilities within seven days of their discovery. "After 7 days have elapsed without a patch or advisory, ...
Tags: Google, Software Vendor
-
Microsoft Has Released a Temporary Fix for a Zero-Day Vulnerability in Internet Explorer 8
May 13, 2013Microsoft has released a temporary fix for a zero-day vulnerability in Internet Explorer 8, which was used by hackers in a prominent attack against the U.S. Department of Labor's website. The problem is particularly dangerous since it can ...
Tags: Microsoft, Internet Explorer
-
Internet Explorer Zero-Day Exploit Discovered on Hacker Servers Microsoft Patch
May 9, 2013A so-called "watering hole" hacking attack on the US Department of Labor website last week has spread to nine more global websites over the weekend, including those used by European aerospace and nuclear researchers. Originally discovered ...
Tags: IE, Military Sites, Computer Products
-
Java Were Likely Launched by The Same Attackers That Previously Targeted Security Firm Bit
Mar 6, 2013The attacks discovered last week that exploited a previously unknown Java vulnerability were likely launched by the same attackers that previously targeted security firm Bit9 and its customers, according to researchers from antivirus vendor ...
Tags: Java, Bit9, technology
-
Adobe Would Release an Emergency Patch for Two Reader Zero-Day Vulnerabilities
Feb 20, 2013Adobe on Saturday said it would release an emergency patch for two Reader zero-day vulnerabilities this week. Hackers have already been exploiting the bugs using rigged PDF documents sent as email attachments. "Adobe plans to make ...
Tags: Adobe, Windows, viewing software
-
Attackers Are Actively Using a Remote Code Execution Exploit Working Against Adobe Reader
Feb 17, 2013Researchers from security firm FireEye claim that attackers are actively using a remote code execution exploit that works against the latest versions of Adobe Reader 9, 10 and 11. "Today, we identified that a PDF zero-day [vulnerability] ...
Tags: FireEye, remote code, Adobe Reader
-
Adobe Has Released an Emergency Patch to Fix at Least Two Zero-Day Vulnerabilities
Feb 17, 2013Adobe has released an emergency patch to fix at least two zero-day vulnerabilities being used to install malware in its Flash Player software that could allow attackers to control affected systems. Hackers had exploited security loopholes ...
-
Oracle's Head of Java Security Has Assured Users of The Software
Jan 29, 2013Oracle's head of Java security, Milton Smith, has assured users of the software that the vendor will fix its security issues and improve communication efforts. In a conference call with Java User Group leaders, Smith outlined the ...
Tags: Oracle, Java security, software
-
Oracle's Bad Java Week Got Worse on Wednesday
Jan 18, 2013Oracle’s bad Java week got worse on Wednesday, after it was announced that a previously unknown flaw in the programming language still threatens the security of millions of PCs. This is despite the fact that Oracle issued an emergency ...
Tags: Oracle, bad Java, unknown flaw
-
Oracle Will Have to Fight a War of Attrition to Keep Java Secure
Jan 17, 2013Infoworld - Oracle will have to fight a war of attrition to keep Java secure, a security analyst said this week in reflecting on the latest malady affecting the standard edition of Java. While Java is again under attack, as it has been ...
Tags: Java security, Java realm, Java
-
Microsoft Shipped an Emergency Update for IE to Stymie Attacks
Jan 16, 2013Microsoft today shipped an emergency update for Internet Explorer (IE) to stymie attacks that have been occurring since at least Dec. 7. The "out-of-band" update -- the label for a security fix outside a vendor's normal schedule -- was ...
-
Homeland Security Has Warned That Java Is Still Open to Attacks
Jan 16, 2013The United States Department of Homeland Security has warned that Java is still open to attacks, despite Oracle's attempts to fix its vulnerabilities. Last week, it was discovered that the web browser software contained a zero-day ...
-
Internet Users Should Consider Disabling Java in Their Browsers
Jan 15, 2013Internet users should consider disabling Java in their browsers because of an exploit that can allow remote attackers to execute code on a vulnerable system, the U.S. Computer Emergency Readiness Team (US-CERT) recommended late Thursday. ...
Tags: Internet user, Java, vulnerable system
-
Oracle Should Rewrite The Programming Language Completely and Start Again From Scratch
Jan 15, 2013Going on the most recent security flaw in Java, Oracle should rewrite the programming language completely and start again from scratch, according to Bogdan Botezatu, Senior E-Threat Analyst with Bitdefender, a Romanian-based antivirus ...
Tags: Java, security flaw, Oracle, programming language