Microsoft patches nine critical bugs as part of December Patch Tuesday roundup.
Original release date: December 11, 2018 Microsoft has released updates to address multiple vulnerabilities in Microsoft software. An attacker could exploit some of these vulnerabilities to obtain access to sensitive information. The National Cybersecurity and Communications Integration Center (NCCIC), part of the Cybersecurity and Infrastructure Security Agency (CISA), encourages users and administrators to review Microsoft’s December 2018 Security Update Summary and Deployment Information and apply the necessary updates. This product is provided subject to this Notification and this Privacy & …
Read More »
The update includes a raft of critical code-execution problems.
Threat actors have updated their malware to include a macro-based delivery framework.
Issues still exist when it comes to securing biometrics.
The consumer version of Google+ will now be shut down in April instead of August after a bug was found that impacts at least 50 million users.
Original release date: December 10, 2018 The US-CERT Cyber Security Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. The NVD is sponsored by the Department of Homeland Security (DHS) National Cybersecurity and Communications Integration Center (NCCIC) / United States Computer Emergency Readiness Team (US-CERT). For modified or updated entries, please visit the NVD, which contains historical vulnerability information. The vulnerabilities …
Read More »
A man who profited from the ransomware known as Reveton, which appropriated the FBI logo to scare victims into paying to unlock computers infected with the malware, will be spending time in prison.
Researchers identified a widespread campaign of brute force attacks against WordPress websites.
Adobe issued a patch for the zero-day on Wednesday.