VB Migration

Tag: update

  • Necurs update reminds us that the botnet cannot be ignored

    If, at some point in the past few years, you have looked at a spam campaign in which a lot of emails were being sent from Vietnam or India, there’s a good chance the spam was sent by the Necurs botnet. Necurs has been active for at least six years – Virus Bulletin published a…

  • Necurs update reminds us that the botnet cannot be ignored

    If, at some point in the past few years, you have looked at a spam campaign in which a lot of emails were being sent from Vietnam or India, there’s a good chance the spam was sent by the Necurs botnet. Necurs has been active for at least six years – Virus Bulletin published a…

  • WordPress users urged to manually update to fix bug that prevents automatic updating

    WordPress has long had a bad reputation in the security community. While this is understandable – compromised installations of the popular content management system are regularly used to spread malware and spam – it is also a little unfair, as the security of WordPress has improved a lot over the years. Indeed, exploitable vulnerabilities in the…

  • WordPress users urged to manually update to fix bug that prevents automatic updating

    WordPress has long had a bad reputation in the security community. While this is understandable – compromised installations of the popular content management system are regularly used to spread malware and spam – it is also a little unfair, as the security of WordPress has improved a lot over the years. Indeed, exploitable vulnerabilities in the…

  • Malicious CCleaner update points to a major weakness in our infrastructure

    For the security community, 2017 might well be called the year of the update: two of the biggest security stories – the WannaCry outbreak and the Equifax breach – involved organizations being hit badly as a consequence of not having installed (security) updates, while another major story, that of (Not)Petya , concerned a threat that…

  • Malicious CCleaner update points to a major weakness in our infrastructure

    For the security community, 2017 might well be called the year of the update: two of the biggest security stories – the WannaCry outbreak and the Equifax breach – involved organizations being hit badly as a consequence of not having installed (security) updates, while another major story, that of (Not)Petya , concerned a threat that…

  • IE zero-day bug fixed in Patch Tuesday updates

    Serious browser bug main feature of monthly alerts, Adobe Flash issue also patched. Microsoft has released the December Patch Tuesday security bulletin, with a total of six alerts. The most significant issue covered is a serious vulnerability in the Internet Explorer browser software. Three of the six bulletins were marked as ‘Critical’, with vulnerabilities in…

  • Bumper crop of October patch releases

    Busy weeks for admins as Patch Tuesday joined by Adobe fixes, and Mozilla announces plug-in checking plans. This week has seen Microsoft ‘s monthly Patch Tuesday release of security updates, featuring a larger than usual 13 fixes, joined by a set of patches from Adobe for its widely-used PDF-handling software. With home and business users…

  • Serious false positive hits users of old McAfee engines

    Batch of system files wrongly flagged as malware, current versions not affected. An update released by McAfee last week resulted in problems around the world, as some vital system files were flagged as malware by updated scanner products, bringing affected systems to a crashing halt. The issue is believed only to have affected users of…

  • March Patch Tuesday followed by PDF viewer patches

    Major kernel issue and PDF problems fixed, spreadsheet software remains vulnerable. Microsoft released the March security bulletin this week, with the monthly Patch Tuesday updates rather lighter than usual. On the same day, Adobe released some important patches for its widely used PDF viewing software. From Microsoft came a single ‘critical’ fix for the Windows…