Windows infections traced to out of date Java and Adobe software September 2011 | Derek Parkinson | Leave a comment Most Windows machines infected by viruses are penetrated through out of date Java JRE, Adobe Reader/Acrobat and Adobe Flash software, according to cyber crime researchers at CSIS. The findings underline the importance of patching and updating third party software regularly, … Continue reading → Tweet
Cisco: engaged CISOs are best defence against security threats January 2011 | Redaction | Leave a comment Sophisticated web exploits and theft of personal data are expected to be among the main security threats in 2011, according to experts at Cisco. To counter these CISOs must become more sophisticated in their response, engaging more effectively with staff, … Continue reading → Tweet
Adobe finally ships its sandbox November 2010 | Redaction | Leave a comment http://community.securityvibes.com/servlet/JiveServlet/downloadImage/38-4875-1180/1290438354_pdf.pngLast july Adobe promised to better secure its Adobe Reader, which became in a few years a prime vector of targeted attacks through hacked PDF documents. To be perfectly honest it’s the use of Javascript within those PDF documents that … Continue reading → Tweet
Report: Social engineering, pdf exploits and code obfuscation top threat list September 2010 | Redaction | Leave a comment IBM is warning of further widespread exploitation by cybercriminals of pdf vulnerabilities and obfuscation and social engineering attacks designed specifically for targeted victim organisations. The warning comes in IBM’s X-Force mid-year Trend and Risk report, a product which it acquired … Continue reading → Tweet
Combined Java and Flash attacks set to rise July 2010 | Redaction | Leave a comment Security analysts have warned of a new breed of code obfuscation attacks that leverage both JavaScript and Adobe’s ActionScript to try to evade detection. Launching their biannual report, the security analysts — from M86 Security — warned that these combined … Continue reading → Tweet
Adobe ramps up security staff to combat threats May 2010 | Redaction | Leave a comment Adobe has ramped up the number of security staff it employs five-fold in response to the growing number of attacks against its products Though it declined to reveal precise numbers, Adobe’s director of product security and privacy Brad Arkin told … Continue reading → Tweet
Adobe vulnerability issues reach a peak April 2010 | Redaction | Leave a comment The problem with being successful in the software world is that the hacking community soon catches up. It seems Adobe has felt that impact over the last few weeks with its popular Reader and Acrobat applications. Though the problem of … Continue reading → Tweet
Operation Aurora ‘nothing new’ January 2010 | Redaction | Leave a comment The Aurora compromise of Google via a zero-day flaw in Internet Explorer 6 is actually nothing new, according to security researchers.Mary Landesman, senior researcher, ScanSafe, said: “These were very targeted attacks, but nothing special in terms of what we all … Continue reading → Tweet
PDF and Data Files Still Vulnerable May 2009 | Redaction | Leave a comment PDF files and other application files are still the most vulnerable files for creating malware on corporate systems says Wolfgang Kandek, CTO at Qualys in a yet-to-be-published videocast. The statistics came from 80 million scans according to Kandek’s latest research … Continue reading → Tweet
