Now, in a recent filing with the Securities and Exchange Commission, it was revealed that the company knew about the hack when it originally happened in 2014, but waited two years to divulge it to the public (via TechCrunch) Describing the investigation …
mac hacker – read more
If you haven’t updated your Flash Player with the fixes released on Oct. 14, you may be vulnerable to new attacks using a commercial exploit kit called Fiesta, security researchers warn.
The vulnerability, which is being tracked as CVE-2014-0569 in the Common Vulnerabilities and Exposures (CVE) database, was fixed in Flash Player updates last week.
The bundling of an exploit for CVE-2014-0569 in an attack tool that’s sold on underground markets is unusual, especially since the vulnerability was privately reported to Adobe through Hewlett-Packard’s Zero Day Initiative (ZDI) program, meaning its details should not be public.
To read this article in full or to leave a comment, please click here
|
Unnamed Android Mobile Ad Library Poses Large-Scale Risk
Threatpost “An attacker can convert Vulna to a botnet by hijacking its HTTP traffic and serving malicious commands and code,” the researchers said. There is also a Java weakness in the way it uses Android's WebView that could allow an attacker to serve malicious … |