The Mac Observer (blog) |
That Time Apple Patched 3 Zero Day Exploits in Just 10 Days
The Mac Observer (blog) The Spying Eye Waiting in Every Device Vanity Fair has a great piece about zero day exploits, the black market for selling them (to mostly governments, including repressive regimes), how they're used to spy, and how the whole thing came to be. The … |
Threatpost |
FruityArmor APT Group Used Recently Patched Windows Zero Day
Threatpost One of the four zero-day vulnerabilities Microsoft patched last week was being used by an APT group called FruityArmor to carry out targeted attacks, escape browser-based sandboxes, and execute malicious code in the wild. Anton Ivanov, a researcher at … Recent Windows Zero-Day Used by FruityArmor APT Takes Over PCs via Font Files APT group FruityArmor employs PowerShell to launch attacks, Kaspersky |
Threatpost |
Patched IE Zero Day Incorporated into Neutrino EK
Threatpost Attackers behind the Neutrino Exploit Kit didn't take long to co-op a recently patched Internet Explorer zero-day into its arsenal. Researchers claim the kit has been pushing CVE-2016-0189, a vulnerability that was reportedly used in targeted attacks … |
The Internet Storm Center has upgraded its warning about the corruption of Juniper ScreenOS firewalls to yellow, which means it’s imperative to patch them today, literally, given that details on how to exploit the flaws has been published and that it’s a holiday week when applying firewall patches can be easily overlooked.
According to the ISC warning, the upgraded yellow warning was made because Juniper’s NetScreen firewalls are popular and that the “’backdoor’ password is now known, and exploitation is trivial at this point,” and for most businesses, this “being a short week for many of us, addressing this issue today is critical.”
To read this article in full or to leave a comment, please click here