Description: Microsoft has released updates to address multiple vulnerabilities in Microsoft software. The November security release consists of security updates for the following software: Internet Explorer Microsoft Edge Microsoft Windows Microsoft Office and Microsoft Office Services and Web Apps ChakraCore .NET Core Skype for Business Azure App Service on Azure Stack Team Foundation Server Microsoft Dynamics 365 (on-premises) version 8 PowerShell Core Microsoft.PowerShell.Archive 1.2.2.0 Impact:...
Read More
Description: Adobe has released security updates to address vulnerabilities in Flash Player, Adobe Acrobat and Reader, and Adobe Photoshop CC. Impact: A remote attacker could exploit this vulnerability to take control of an affected system. Mitigation: Updates are available. Please see the references or vendor advisory for more information. Reference URL’s: https://helpx.adobe.com/security/products/flash-player/apsb18-39.html https://helpx.adobe.com/security/products/acrobat/apsb18-40.html https://helpx.adobe.com/security/products/photoshop/apsb18-43.html
Description: VMware has released security updates to address vulnerabilities in ESXi, Workstation, and Fusion. Impact: A remote attacker could exploit this vulnerability to take control of an affected system. Mitigation: Updates are available. Please see the references or vendor advisory for more information. Reference URL’s: http://www.vmware.com/security/advisories/VMSA-2018-0027.html
In a shocking revelation, Director of cyber crime wing of the Federal Investigation Agency (FIA) Capt Mohammad Shoaib said: “According to a recent report we have received, data from almost all Pakistani banks has been reportedly hacked”. In a major security breach, data of most of the banks operating in Pakistan has been hacked, a media report said Tuesday quoting a senior cyber crime official....
Read More
We all have something to hide, something to protect. But if you are also relying on self-encrypting drives for that, then you should read this news carefully. Security researchers have discovered multiple critical vulnerabilities in some of the popular self-encrypting solid state drives (SSD) that could allow an attacker to decrypt disk encryption and recover protected data without knowing the password for the disk. The...
Read More
It’s only been a few hours since Apple releases iOS 12.1 and an iPhone enthusiast has managed to find a passcode bypass hack, once again, that could allow anyone to see all contacts’ private information on a locked iPhone. Jose Rodriguez, a Spanish security researcher, contacted The Hacker News and confirmed that he discovered an iPhone passcode bypass bug in the latest version of its iOS mobile...
Read More
The cryptocurrency bitcoin has been touted by its proponents as a way to help solve our most pressing problems, from homelessnessand human trafficking to cancer and the global financial crisis. Bitcoin’s ability to reduce fraud and security risk has made it one of the most transparent digital currencies on the market. Many see this as a critical next step to holding governments accountable for carbon emissions, and even developing a market...
Read More
Microsoft silently patched a bug in its Windows 10 operating system with the October 2018 update (version 1809) that allowed Microsoft Store apps with extensive file system permission to access all files on users’ computers without their consent. With Windows 10, Microsoft introduced a common platform, called Universal Windows Platform(UWP), that allows apps to run on any device running Windows 10, including desktop PC, Xbox, IoT, Surface Hub,...
Read More
Cyber criminals based in Russia are offering to sell 81,000 Facebook profiles after hacking into more than 120 million accounts. The hackers were attempting to sell the accounts online for as little as eight pence (10 cents) per profile. They published private messages from the compromised accounts to encourage people to make the purchase. Many of the users whose details have been compromised are based in Ukraine and Russia...
Read More
Cybersecurity researchers have revealed an unpatched logical flaw in Microsoft Office 2016 and older versions that could allow an attacker to embed malicious code inside a document file, tricking users into running malware onto their computers. Discovered by researchers at Cymulate, the bug abuses the ‘Online Video‘ option in Word documents, a feature that allows users to embedded an online video with a link to...
Read More
