10 Apr 2019

It’s raining patches, Hallelujah! Microsoft and Adobe put out their latest major fixes

As part of this month’s patch Tuesday, Microsoft and Adobe have issued a total of 117 fixes for security flaws. Microsoft released patches for 74 vulnerabilities, 15 of which are critical flaws. Two of the Windows vulnerabilities are zero-days that have been actively exploited in the wild. The flaws, classified

Read More
08 Apr 2019

CIOs and CISOs hold off on crucial updates due to potential impact on business operations

A new Tanium survey reveals that organizations may not adopt critical updates if these could interfere with business operations. According to the research, the vast majority (81%) of Chief Information Officers (CIOs) and chief information security officers (CISOs) have declined to install a security patch or other type of critical

Read More
13 Mar 2019

25% of software vulnerabilities remain unpatched for more than a year

While it may seem logical that larger organizations are better at handling patch management than small firms with limiter resources, new research by Kenna Security and the Cyentia Institute shows that the opposite is true. The report also highlights the poor state of patch management in general. On average, organizations

Read More
08 Mar 2019

Google: Chrome zero-day was used together with a Windows 7 zero-day

Threat actors have been exploiting a recently patched security flaw in Google Chrome by combining the flaw with a vulnerability affecting Windows 7 machines. The combination of vulnerabilities is critical, as it can enable hackers to take over targeted computers. While Windows is working to find a fix for the

Read More
24 Jan 2019

Apple Patches Dozens of Vulnerabilities in iOS, macOS

Apple has released security patches and other fixes for a host of flaws affecting iOS, macOS, tvOS, watchOS, Safari and iCloud. Many of the 31 iOS patches fixed arbitrary code execution vulnerabilities affecting various features including Bluetooh, FaceTime and Kernel. Other iOS security flaws that were addressed could have enabled

Read More
09 Jan 2019

Remote Code Execution Bugs Are Primary Focus of January Patch Tuesday

Microsoft has fixed a total of 49 vulnerabilities as part of January’s Patch Tuesday, including 7 critical, 40 important and 2 moderate flaws. Almost half of all patched bugs were remote code execution (RCE) vulnerabilities, eleven of which involved the Jet Database Engine. However, some experts note that when it

Read More