Zero-Day Bug Fixed by Microsoft in December Patch Tuesday

Microsoft patches nine critical bugs as part of December Patch Tuesday roundup.

Microsoft Releases December 2018 Security Updates

Original release date: December 11, 2018 Microsoft has released updates to address multiple vulnerabilities in Microsoft software. An attacker could exploit some of these vulnerabilities to obtain access to sensitive information. The National Cybersecurity and Communications Integration Center (NCCIC), part of the Cybersecurity and Infrastructure Security Agency (CISA), encourages users and administrators to review Microsoft’s December 2018 Security Update Summary and Deployment Information and apply the necessary updates. This product is provided subject to this Notification and this Privacy & …
Read More »

Adobe December 2018 Security Update Fixes Reader, Acrobat

The update includes a raft of critical code-execution problems.

Cobalt Group Pushes Revamped ThreadKit Malware

Threat actors have updated their malware to include a macro-based delivery framework.

Biometrics: Security Solution or Issue?

Issues still exist when it comes to securing biometrics.

Google Accelerates Google+ Shutdown After New Bug Discovered

The consumer version of Google+ will now be shut down in April instead of August after a bug was found that impacts at least 50 million users.

SB18-344: Vulnerability Summary for the Week of December 3, 2018

Original release date: December 10, 2018 The US-CERT Cyber Security Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. The NVD is sponsored by the Department of Homeland Security (DHS) National Cybersecurity and Communications Integration Center (NCCIC) / United States Computer Emergency Readiness Team (US-CERT). For modified or updated entries, please visit the NVD, which contains historical vulnerability information. The vulnerabilities …
Read More »

Ransomware Abettor Sentenced

A man who profited from the ransomware known as Reveton, which appropriated the FBI logo to scare victims into paying to unlock computers infected with the malware, will be spending time in prison.

Infected WordPress Sites Are Attacking Other WordPress Sites

Researchers identified a widespread campaign of brute force attacks against WordPress websites.

Adobe Flash Zero-Day Leveraged Via Office Docs in Campaign

Adobe issued a patch for the zero-day on Wednesday.