You are here: Home / Archives for security vulnerabilities

1-in-14 software downloads are hacker-related mischief – The China Post

May 21, 2011 By Leave a Comment

Microsoft on Wednesday warned that hackers use mind tricks more often than software skills to get viruses into computers.

 

Feedback from the globally popular Internet Explorer (IE) Web browser indicated that one of every 14 programs downloaded turned out to be malicious code, according to the U.S. software titan.

“Social-engineering attacks, like tricking a user into running a malicious program, are far more common than attacks on security vulnerabilities,” Microsoft SmartScreen program manager Jeb Haber said in a blog post.

“SmartScreen” technology has blocked more than 1.5 billion attempts to slip “malware” into computers since version IE8 was released in March of 2009, according to Microsoft.

via 1-in-14 software downloads are hacker-related mischief – The China Post.

Filed Under: Tech Bytes Tagged With: , , , ,

Adobe hits Reader users with 23-patch ‘whammy’ – Computerworld

October 6, 2010 By Leave a Comment

Adobe patched 23 security vulnerabilities in its Reader PDF viewer on Tuesday, most of them critical, including one that has been exploited by hackers for at least a month or possibly much longer.

Tuesday’s patch job set a record for 2010, and came close to last year’s biggest update, a 29-fix collection Adobe shipped in October 2009.

In September, Adobe promised to speed up the delivery of today’s patches, which were originally meant to ship next week, because attackers were already leveraging a bug in Reader’s and Acrobat’s font parsing.

“Adobe is hitting customers with a double whammy today,” Andrew Storms, director of security operations at nCircle Security, said via e-mail. “Adobe products continue to be at the top of the target list for malware writers.”

“They patched a zero-day flaw in Flash in late September, and today they are releasing their quarterly Acrobat update ahead of schedule because of another zero-day,” Storms said.

Tuesday’s Reader and Acrobat updates also included a patch released more than two weeks ago for Flash, Adobe’s media player. Both Reader and Acrobat include code to run Flash embedded in PDF documents.

Of the 23 bugs Adobe patched, the most notable was the one revealed Sept. 7 by Mila Parkour, an independent security researcher who reported the attack after discovering rigged PDFs attached to e-mail messages.

via Adobe hits Reader users with 23-patch ‘whammy’ – Computerworld.

Filed Under: Tech Bytes Tagged With: , , , , , , , , ,

Google Patches Security Holes in Chrome Browser – PCWorld Business Center

August 20, 2010 By 1 Comment

Google on Thursday released a new version of its Chrome browser that patches nine security vulnerabilities, including two critical threats.

Version 5.0.375.127, available for Windows, Mac, and Linux PCs, comes roughly three weeks after a security patch that fixed five Chrome flaws. Google usually updates Chrome every 2 to 4 weeks.

Software vulnerability tracker Secunia rates the latest Chrome update as “highly critical,” its second-highest ranking after “extremely critical.”

via Google Patches Security Holes in Chrome Browser – PCWorld Business Center.

Filed Under: Tech Bytes Tagged With: , , , , , , , , ,