flaw

Wed
09
Apr
John Lister's picture

Zero-Day SSL Flaw: Change All Passwords, Experts Say

A massive number of websites could be affected by a critical security flaw used in conjunction with web sites and web browsers. Experts suggest that all web users change their passwords to all major web sites (including banking, social media, etc) - ... but doing so comes with a number of caveats. The security flaw is related to SSL (secure sockets layer) and is expected to affect approximately six percent of all websites world-wide. According to a recent survey that reviewed approximately 959 million websites, "66% ... are powered by technology built around SSL, and that doesn't include ... (view more)

Thu
19
Sep
Dennis Faas's picture

Microsoft Releases Emergency Internet Explorer Fix

Microsoft has issued an emergency software fix for a critical flaw in its Internet Explorer web browser. According to reports, hackers have already exploited the vulnerability. Microsoft released the "Fix It" software in an attempt to prevent what ... it calls "targeted attacks" on a vulnerability in its Internet Explorer browser. Microsoft is calling this a "zero day" vulnerability, meaning software developers were unaware of the issue before it was exploited by hackers. Hackers Launch Remote Code Execution Attacks Reports indicate that hackers have used the flaw to carry out remote code ... (view more)

Mon
28
Jan
Dennis Faas's picture

Printer Networks Vulnerable to Hackers: Report

Printers using server software offered by Hewlett-Packard (HP) are reportedly vulnerable to attack. In fact, it's possible for a hacker to use the flaw to bypass security defenses, steal documents, and crash every machine connected to the same ... network. Security researcher Sebastian Guerrero says the problem affects printers using HP's JetDirect software. That software is used for print servers, meaning it can handle any printing request made by a network-connected computer. Hackers Could Bypass Security Defenses Guerrero says that a flaw in the JetDirect software could allow an attacker to ... (view more)

Fri
11
Jan
Dennis Faas's picture

Java Flaw: Web Users Vulnerable to Attack

Internet users are now being warned about a new zero-day security vulnerability in Java software that could allow a hacker to gain unauthorized access to their computers. The vulnerability is related to a recently-discovered flaw in the popular Java ... software system, which is used all over the web to create a great many applications and associated plug-ins. Security experts say even fully-updated installations of Java are vulnerable to this new round of attacks. Only by completely disabling the Java browser plug-in can Internet users be sure their computers are safe from hackers attempting to ... (view more)

Mon
07
Jan
Dennis Faas's picture

Microsoft Patch Tuesday: IE Security Fix Not Ready

Microsoft's January 8, 2013 Patch Tuesday includes a total of seven patches, two of which Microsoft is labeling 'critical,' the firm's highest security rating. Notably absent from the lineup of fixes will be a patch for a recently-outed Internet ... Explorer security flaw. This Patch Tuesday's critical fixes address security vulnerabilities that, like so many other previously patched vulnerabilities, could potentially allow a hacker to remotely execute malicious files and take control of an unpatched computer. As usual, hackers could do this by convincing a computer user to visit a malicious ... (view more)

Tue
01
Jan
Dennis Faas's picture

Major Internet Explorer Security Flaw Discovered

A newly-discovered flaw in Microsoft's popular Internet Explorer (IE) web browser could allow hackers to take control of a Windows-based computer. The Redmond, Washington-based firm has acknowledged that the problem exists and that it affects older ... versions of IE. The firm has also released a temporary fix for the problem. Microsoft Advises: Avoid Suspicious Links "Microsoft is aware of targeted attacks that attempt to exploit this vulnerability through Internet Explorer 8," Microsoft said in a security advisory issued on Sunday, December 30, 2012. Microsoft says the remote code ... (view more)

Thu
13
Dec
Dennis Faas's picture

Microsoft: 'Critical' Internet Explorer Flaw Fixed

Microsoft has released a series of updates designed to fix several 'critical' security vulnerabilities in its software. Adobe has also released a new security patch for its Flash Player software. Both Adobe and Microsoft are urging their users to ... make sure their computers have installed these repair modules, and if not, to install them manually as soon as possible. Microsoft says most of the ten vulnerabilities addressed by this week's Patch Tuesday updates have been rated 'critical,' the firm's highest security threat level. Adobe has also rated its patch as 'critical.' Internet Explorer ... (view more)

Thu
14
Jun
Dennis Faas's picture

Beware Internet Explorer Zero-Day Hack: Microsoft

Microsoft is warning its customers that a newly discovered flaw in its Internet Explorer (IE) web browser could allow hackers to execute malicious code and take control of an unsuspecting user's computer. That would give a cyber-criminal the ability ... to use the computer and all its resources for unknown, possibly illegal, purposes. Microsoft has indicated that users of every recent version of the Windows operating system (OS), including Windows XP, Windows Vista, and Windows 7, are vulnerable to such an attack. Beware Email Links from Suspicious Sources The Redmond, Washington-based software ... (view more)

Tue
20
Mar
Dennis Faas's picture

Microsoft Suffers Major Security Leak

Microsoft suffered a significant security setback last weekend, with a guideline for fixing a major software vulnerability being leaked to a Chinese hacking website. The guideline is known as a "proof-of-concept" code, and is essentially an outline ... of how hackers might exploit a specific security flaw. In this case, the guideline was related to a recently patched Remote Desktop Protocol (RDP) issue. If exploited, the flaw it covers could allow hackers to infiltrate a remote computer system. Prior to issuing the patch, Microsoft had rated the RDP flaw "critical," its highest security rating. ... (view more)

Wed
14
Mar
Dennis Faas's picture

Microsoft Fixes Major PC Flaw with Security Update

Microsoft says it has fixed only one 'critical' security flaw this Patch Tuesday. However, it appears to be a highly significant vulnerability. For those not familiar with the terminology, 'critical' vulnerabilities are those rated to be most in ... need of addressing. Flaw Could Allow Remote Code Execution The 'critical' security flaw is a remote code execution vulnerability in Microsoft's Remote Desktop Protocol (RDP). Every version of Windows is reportedly left vulnerable by the problem. So long as the vulnerability remains unpatched, Microsoft says, a hacker who is able to convince a computer ... (view more)

Pages

Subscribe to RSS - flaw