Microsoft November 2017 Patch Tuesday addresses 53 security vulnerabilities in six of it’s main product categories. Amoung these 19 CVE’s are rated as Critical, 31 are rated as Important, and 3 are moderate. None of the Windows OS patches are rated as critical, and there are no zero days patched in this month. But according […]

Read More →

Adobe has unleashed security patches for most of its major products in its November security updates. Security updates include products, Adobe Flash Player, Adobe Photoshop CC, Adobe InDesign, Adobe Connect, Adobe Acrobat and Reader, Adobe DNG Converter, Adobe Digital Editions, and Adobe shock player. Total of 83 vulnerabilities have been issued with patch, which includes […]

Read More →

A major ransomware attack named “BadRabbit” is disrupting systems across Europe. The attack has been spreading wildly. BadRabbit locks out a user from login and demands a ransom worth of ~300$ in BitCoin. Some of the countries that are targeted are Russia, Ukraine, Bulgaria, and Turkey. Russian victims were the biggest targets accounting to about 71% of […]

Read More →

  Source: thehackernews.com Return of Coppersmith’s Attack, or ROCA for short is a cryptographic weakness in generation of RSA keys, that allows the private key of a key pair to be recovered from the public key. RSA is a public key cryptosystem widely used for secure data transmission. The vulnerability tracked as CVE-2017-15361, affects RSA key […]

Read More →

Introduction Security attacks and breaches happen routinely, costing companies millions of dollars, along with a decline in their reputation and the public’s trust in them. Attackers are constantly innovating on the different methods and paths to infiltrate networks and steal confidential information. Major data breaches occur because companies fail to patch critical vulnerabilities in time. […]

Read More →

Adobe has released a critical security patch (APSB17-32) for Adobe Flash Player. This update addresses a critical type confusion vulnerability that could lead to code execution. Windows, Macintosh and Linux operating systems are affected. This vulnerability is identified with CVE-2017-11292. A security researcher from Kaspersky Labs have uncovered this new zero-day remote code execution vulnerability […]

Read More →