Items tagged with Exploits
It seems as though most (if not all) Internet users are awaiting the day when Adobe Flash is finally eradicated from the face of the earth. The Adobe Flash Player plugin has long been a security liability, resource nightmare and battery hog (for mobile users). Although Adobe has announced that it is winding down the use of Flash in favor of HTML5 development, we still have to deal with critical exploits until judgment day arrives. Hence the company has rushed out an emergency patch for Adobe Flash player. According to Adobe, the most serious exploit, CVE-2016-1010, has already been “used in limited, targeted attacks.” In all, the latest security bulletin covers over 20 known security issues in...
Read more...
If our not-too-subtle hint a couple of weeks ago about the perils of having Java installed wasn't enough to convince you to uninstall, you should waste no time in heading on over to the official site and grabbing the latest version (7u13). When it comes to Java, the Swiss-cheese of the software world, it's important to snag updates whenever they're rolled-out - but this one is in a league of its own. Oracle managed to pack 50 fixes with this single update - the largest bulk of fixes ever seen in the software's history. For those interested in getting into the nitty gritty of what's been patched up, you can head on over to this very in-depth advisory page. Given the number of holes and exploits...
Read more...
No less than three different browser platforms have succumbed to zero-day exploits by the end of the first day of the three-day long, third-annual Pwn2Own contest being held at the CanSecWest 2009 digital security conference in Vancouver, British Columbia. Safari on Mac OS X was the first to fall, followed by Internet Explorer 8 (IE8) on Windows 7, and then a second Mac OS X Safari exploit, and finally Firefox (the specific OS-version of Firefox was not supplied in the announcement). Making this even more impressive is that the first winner of the day, Charlie Miller, was the same guy who was the first winner in last year's contest; and the three additional exploits from day one were all cracked...
Read more...
How many times have you forgotten to lock your car, or a door? While that's bad enough, what about essentially leaving a back door open for hackers, by "forgetting" about an old administrative system?A hacker infiltrated an eBay server and disabled accounts of several members on Friday. Representatives of eBay say that the hacker used vestigial components of an old eBay administrative system that has long been unused. The code exploited by the hacker has since been taken down, and eBay claims that no financial information was exposed. An individual who identifies himself as Vladuz has taken responsibility for the hack. Many believe that Vladuz was behind a massive disclosure of user information...
Read more...
