Apple Yet to Patch Safari Browser Address Bar Spoofing Flaw
A flaw in Safari – that allows an attacker to spoof websites and trick victims into handing over their credentials – has yet to be patched.
Edge
Microsoft Fixes 66 Bugs in April Patch Tuesday Release
Microsoft’s April Patch Tuesday release includes fixes for 66 bugs, 24 of which are rated critical.
Porn Site Becomes Hub for Malvertising Campaigns
A popular porn site is used by KovCoreG Group to launch multiple malvertising campaigns exposing millions to fake browser updates and malware.
Microsoft releases a total of 57 security patches, part of its July Patch Tuesday, with 20 rated critical.
Microsoft said Wednesday it would extend its Edge bug bounty program indefinitely.
Yesterday’s Patch Tuesday release also included an update to Microsoft’s Internet Explorer and Edge browsers officially ending support for the SHA-1 hash function.
Mike Mimoso and Chris Brook discuss the news of the week, including Pwn2Own 2017, Microsoft’s silence around February’s Patch Tuesday, and a nasty SAP bug.
The news of the week is discussed, including Schneier’s DDoS article, a patched IE/Edge zero day, a new OS X malware detection method, and Google’s Project Zero prize.
Microsoft this week patched a zero-day vulnerability in the Internet Explorer and Edge browsers being used in the AdGholas malvertising campaign.
Microsoft patched 47 vulnerabilities with 14 security bulletins, seven critical, with its monthly Patch Tuesday updates today.
Editor's Picks
-
Recently-Patched Adobe ColdFusion Flaw Exploited By APT
-
Pentagon Draws Back the Veil on APT Malware with Sudden Embrace of VirusTotal
-
Cisco Accidentally Released Dirty Cow Exploit Code in Software
-
Podcast: Troy Hunt Talks Bad Passwords – and Who’s to Blame for Them
-
Apple Modernizes Its Hardware Security with T2