Microsoft has just released its monthly updates for May 2013. The zero-day IE flaw used on the Dept of Labor website was fixed, as well as an IE 10 hole used at PWN2OWN.
Critical fixes for Adobe Reader, Flash Player and ColdFusion also hit the streets today.
As expected Microsoft released seven important and two critical fixes for Windows, Internet Explorer and other Microsoft products. Adobe followed suite releasing fixes for ColdFusion, Flash and Shockwave. Patch now!
Computer users should be getting used to security updates for Adobe Flash by now - after all, this is the fourth in as many weeks.
Make sure your computers are protected as soon as possible.
PWN2OWN 2013 finished off today.
A second scheduled attack on IE 10 didn't happen, so IE 10 didn't get owned again, but Flash and Reader fell once each, and Java was exploited for the fourth time in two days...
Of the Big Four browsers, only Apple's Safari has so far survived the onslaught of the browser-breakers at PWN2OWN 2013.
Java fell three times today; Adobe's Flash and Reader meet their attackers tomorrow...
Last week, Apple showed that it is getting more serious about security by getting strict about the version of Flash you're allowed to use in Safari.
Paul Ducklin explains the what and the why...
Have your joined thousands of others, and become a loyal listener to the "Chet Chat" yet?
Here's the latest Naked Security podcast, Sophos Security Chet Chat 103, discussing a range of recent and newsworthy topics from the world of computer security.
The first Patch Tuesday of 2013 is here and there are plenty of important fixes to download including two critical Windows flaws and critical updates to Adobe Reader and Adobe Flash Player.
This month's Patch Tuesday includes bulletins from both Microsoft and Adobe, and covers a range of platforms and products.
There are updates in the mix for everything from Android to Windows RT, and from the Word Viewer to Exchange.
A new round of spams proclaims you have been charged for a large purchase from Apple.
All links lead to webpages infected with the Blackhole exploit kit. Be cautious with your online shopping this holiday season.
Are some of the different variants of Blackhole exploit kit that SophosLabs are seeing actually new versions of this popular Exploit kit? Or simply copycats created by other groups?
Adobe have released a critical update for Flash Player that fixes seven remote code execution vulnerabilities. Set phasers to patch!
Adobe released an important update for its software on Monday, fixing 25 security holes. The updates affect Flash running on Windows, Apple Mac and Linux systems.
In addition, Adobe AIR users on Windows, Mac OS X, Android and iOS are also advised to install an update.
They’re not even available yet, but Windows 8 and Internet Explorer 10 are already the subjects of a Microsoft Security Advisory concerning - you guessed it - Adobe Flash vulnerability.
Exploit kits typically target plug-ins, using vulnerabilities within them to infect the machine. Disabling plug-ins by default is therefore a good thing as far as keeping your system secure. But it isn't always easy...
Patch Tuesday for September 2012 is here and fortunately there isn't a lot to talk about. Microsoft released two fixes, while Adobe patched critical vulnerabilities in Flash and Photoshop CS6.