Adobe closes 12 critical holes in Flash: DHS Infrastructure Open Source Report November 15th
Tuesday, November 15th, 2011Adobe closed 12 critical holes in all supported versions of Flash Player up to and including version 11.0.1.152. The memory corruption vulnerabilities allowed attackers to inject malicious code on computers; visiting a specially crafted Web page is all that was required to become a victim. When Internet Explorer is used, attackers can exploit a further [...]
WordPress resets passwords due to backdoored plugins: Cyber Highlights June 23rd
Thursday, June 23rd, 2011The WordPress team announced June 21 it decided to reset all passwords on WordPress.org, BudyPress.org, and bbPress.org Web sites, after discovering several plugins were rigged with backdoors. “Earlier today, the WordPress team noticed suspicious commits to several popular plugins (AddThis, WPtouch, and W3 Total Cache) containing cleverly disguised backdoors. We determined the commits were not [...]
Google engineers deny Chrome hack exploited browser’s code: Cyber Highlights May 13th
Friday, May 13th, 2011Several Google security engineers have countered claims that security company Vupen found a vulnerability in Chrome that could let attackers hijack Windows PCs running the company’s browser. Instead, those engineers said the bug Vupen exploited to hack Chrome was in Adobe’s Flash, which Google has bundled with the browser for over a year. Google’s official [...]