A federal appeals court has sent back to a lower court an appeal in a lawsuit about the way companies are allowed to publicize information about National Security Letters they receive. The appeal consolidates three separate actions against the Attorney General that question whether the government’s restrictions on how companies can talk about NSLs violates the[…]
Browsing Tag: Microsoft
Microsoft released an out-of-band patch for an Internet Explorer vulnerability under attack.
A vulnerability patched by Microsoft in the Windows Mount Manager is being exploited in targeted attacks.
Microsoft released a security bulletin for its new Edge browser, patching four critical vulnerabilities.
Researchers at Black Hat found a weak spot in some WSUS configurations that could allow an attacker to compromise any server or desktop in an enterprise.
The commenting period regarding the Wassenaar Arrangement expired on Monday but the echo chamber around the largely maligned proposal continues to reverberate.
UPDATE–As if all of the vulnerabilities in Flash and Windows discovered in the Hacking Team document cache and the 193 bugs Oracle fixed last week weren’t enough for organizations to deal with, HP’s Zero Day Initiative has released four new zero days in Internet Explorer Mobile that can lead to remote code execution on Windows Phones.[…]
Microsoft released an out-of-band patch Monday that addresses a critical remote flaw with the way Adobe Type Manager Library handles OpenType fonts in all versions of Windows.
Dennis Fisher and Mike Mimoso talk about all of the patches from Microsoft, Adobe and Oracle, the Flash security saga and the Darkode forum takedown.
iSight Partners provides details on an Office zero day patched this week that was used by the prolific APT 28 gang.