Mike Mimoso and Chris Brook discuss the news of the week, including Pwn2Own 2017, Microsoft’s silence around February’s Patch Tuesday, and a nasty SAP bug.
Tag Archives: patch Tuesday
Microsoft Waits for Patch Tuesday to Fix SMB Zero Day
Microsoft said a Windows SMB zero day, which has a public proof-of-concept exploit available, is low risk and won’t be patched until an upcoming Patch Tuesday.
Threatpost News Wrap, December 16, 2016
Mike Mimoso and Chris Brook discuss the news of the week including Yahoo’s latest breach announcement, a DDoS-for-hire crackdown, hackers seeking help with Mirai, and some new Adobe patches.
Microsoft Patches Publicly Disclosed IE, Edge Vulnerabilities
Microsoft patched a half-dozen critical browser vulnerabilities that have been publicly disclosed, but apparently not used in attacks as of yet.
Adobe Patches 31 Vulnerabilities, Flash Zero-Day Under Attack
As part of Patch Tuesday Adobe patched a zero-day vulnerability in Flash Player the company claims is being used in targeted attacks against Internet Explorer users on Windows.
Adobe Patches Nine Code Execution Flaws in Flash Player
Adobe again released a security update for Flash Player, patching nine remote code execution vulnerabilities. Adobe Connect for Windows was also updated.
Adobe Back With New Flash Player Security Update
After a month without Flash Player security patches, Adobe today updated the software addressing 29 vulnerabilities.
New Windows Patch Policy At Odds With Acceptable Risk
Microsoft’s switch to rollup patching for Windows 7/8.1 will have an impact on security, one expert says.
Windows PDF Library Flaw Puts Edge Users at Risk for RCE
Microsoft today released nine security bulletins as part of its August 2016 Patch Tuesday updates.
A Month Without Adobe Flash Player Patches
Adobe rolled out patches for four vulnerabilities in Adobe Experience Manager, the first time since January its monthly patch release cycle has not included a Flash Player security update.