Recently discovered vulnerabilities are being used by the Russian APT28 group to spy on government targets and steal politically sensitive data.
Showing results 1 to 20 of 530
Researchers claim a flaw that's existed for two-decades even affects the yet-to-be-released Windows 10. But Microsoft downplayed the severity of the vulnerability.
In this month's Patch Tuesday, Microsoft is serving up a dozen security-related updates for Windows, including two fixes for vulnerabilities that have been publicly disclosed. In addition to five Critical security updates, today's list includes fixes for the cross-platform FREAK flaw.
Redmond has said that the FREAK security flaw is found in versions of its Windows operating system from Windows Server 2003, Windows Vista, and higher.
Adobe says it will deliver a fix for a newly discovered flaw that is being used in drive-by download attacks, but the patch won't be ready until at least next Monday.
Four days after Google's Project Zero team disclosed an unpatched security bug in Windows, and drew rebuke from Redmond, another bug has exceeded Google's deadline and been made public.
The Redmond giant isn't exactly chipper after Google disclosed a Windows bug just two days before Microsoft planned to issue a fix.
Google's Project Zero bug hunters have published details of a critical vulnerability in Adobe Reader for Windows that was patched in September.
On Tuesday, about the time that Microsoft issues its Patch Tuesday Windows updates, Adobe will release new versions of Reader and Acrobat.
UPDATED. A new version of MS14-045 has been pushed to Windows Update and the Download Center. Microsoft strongly recommends that users uninstall the old version first.
A flaw in Adobe Acrobat and Reader for Windows is being exploited in the wild. Critical vulnerabilities affect all versions of Flash Player.
At least one critical vulnerability affecting supported versions of both Adobe Reader and Acrobat on both Mac and Windows will be patched next week.
[UPDATED] A vulnerability in Flash Player for Windows, Mac and Linux is being exploited in the wild. An update is available from Adobe (and Google and Microsoft for their browsers).
Microsoft has not said whether WordPad, the free word processor included with Windows, is vulnerable to the zero day flaw announced yesterday in Microsoft Word.
With the end of Windows XP support looming, ATMs worldwide are left vulnerable -- and cyberattackers are taking advantage of the fact.
Three vulnerabilities, including one being exploited in the wild, are fixed in another emergency update of the Flash Player from Adobe.
Memory corruption vulnerabilities in the Player could lead to complete system compromise. The new version is 18.104.22.168.
Microsoft issued a security alert and is investigating a report issued by FireEye Labs warning of an MS Windows/Adobe Reader local privilege escalation zero-day in the wild.
A critical vulnerability in Acrobat and Reader 11.x for Windows has been patched. Adobe calls it a critical regression error.
September's roundup of Patch Tuesday updates includes 14 bulletins in total, fixing issues in Windows, and Internet Explorer, but also Microsoft Office.