Saturday, October 19, 2019

Security Bulletins Posted

Adobe has published security bulletins for Adobe Experience Manager (APSB19-48), Adobe Acrobat and Reader (APSB19-49), Adobe Experience Manager Forms (APSB19-50) and Adobe Download Manager (APSB19-51). Adobe recommends users update their product installations to the latest versions using the instructions referenced...

Upcoming Security Updates for Adobe Acrobat and Reader (APSB19-49)

A prenotification security advisory (APSB19-49) has been posted regarding upcoming Adobe Acrobat and Reader updates scheduled for Tuesday, October 15, 2019. We will continue to provide updates on the upcoming release via the Security Bulletins and Advisories page as well...

Security Updates Available for ColdFusion (APSB19-47)

Adobe has published a Security Bulletin (APSB19-47) for ColdFusion versions 2018 and 2016. These updates resolve two critical and one moderate vulnerability that could lead to arbitrary code execution and Adobe recommends users update their product installations to the latest versions using the instructions referenced in the bulletin. This posting is...

Security Bulletins Posted

Adobe has published security bulletins for Adobe Application Manager (APSB19-45) and Adobe Flash Player (APSB19-46). Adobe recommends users update their product installations to the latest versions using the instructions referenced in the bulletin. This posting is provided “AS IS” with no...

Security Bulletins Posted

Adobe has published security bulletins for Adobe After Effects CC (APSB19-31), Adobe Character Animator CC (APSB19-32), Adobe Premiere Pro CC (APSB19-33), Adobe Prelude CC (APSB19-35), Adobe Creative Cloud Desktop Application (APSB19-39), Adobe Acrobat and Reader (APSB19-41), Adobe Experience Manager (APSB19-42) and Adobe Photoshop...

Upcoming Security Updates for Adobe Acrobat and Reader (APSB19-41)

A prenotification security advisory (APSB19-41) has been posted regarding upcoming Adobe Acrobat and Reader updates scheduled for Tuesday, August 13, 2019. We will continue to provide updates on the upcoming release via the Security Bulletins and Advisories page as well...

Security Bulletins Posted

Adobe has published security bulletins for Adobe Bridge CC (APSB19-37), Adobe Experience Manager (APSB19-38) and Adobe Dreamweaver (APSB19-40). Adobe recommends users update their product installations to the latest versions using the instructions referenced in the bulletin. This posting is provided “AS IS” with...

Security Bulletins Posted

Adobe has published security bulletins for Adobe ColdFusion (APSB19-27), Adobe Flash Player (APSB19-30) and Adobe Campaign (APSB19-28). Adobe recommends users update their product installations to the latest versions using the instructions referenced in the bulletin. This posting is provided “AS IS” with...

Security Bulletins Posted

Adobe has published security bulletins for Adobe Acrobat and Reader (APSB19-18), Adobe Flash Player (APSB19-26) and Adobe Media Encoder (APSB19-29). Adobe recommends users update their product installations to the latest versions using the instructions referenced in the bulletin. This posting is provided...

Upcoming Security Updates for Adobe Acrobat and Reader (APSB19-18)

A prenotification security advisory (APSB19-18) has been posted regarding upcoming Adobe Acrobat and Reader updates scheduled for Tuesday, May 14, 2019. We will continue to provide updates on the upcoming release via the Security Bulletins and Advisories page as well...

Security Bulletins Posted

Adobe has published security bulletins for Adobe Acrobat and Reader (APSB19-17), Adobe Flash Player (APSB19-19), Adobe Shockwave player (APSB19-20), Adobe Dreamweaver (APSB19-21), Adobe XD (APSB19-22), Adobe InDesign (APSB19-23) ,Adobe Experience Manager Forms (APSB19-24) and Adobe Bridge CC (APSB19-25). Adobe recommends users update their...

Upcoming Security Updates for Adobe Acrobat and Reader (APSB19-17)

A prenotification security advisory (APSB19-17) has been posted regarding upcoming Adobe Acrobat and Reader updates scheduled for Tuesday, April 09, 2019. We will continue to provide updates on the upcoming release via the Security Bulletins and Advisories page as well...

Security Bulletins Posted

Adobe has published security bulletins for Adobe Digital Editions (APSB19-16) and Adobe Photoshop CC (APSB19-15). Adobe recommends users update their product installations to the latest versions using the instructions referenced in the bulletin. This posting is provided “AS IS” with no warranties...

Security Updates Available for ColdFusion (APSB19-14)

Adobe has published a Security Bulletin (APSB19-14) regarding the availability of hotfixes for ColdFusion versions 2018, 2016 and 11. These hotfixes resolve a Critical file upload restriction bypass (CVE-2019-7816) that could result in arbitrary code execution in the context...

Security updates available for Adobe Acrobat and Reader (APSB19-13)

Adobe has published a security bulletin for Adobe Acrobat and Reader (APSB19-13). These updates address a reported bypass to the fix for CVE-2019-7089 first introduced in 2019.010.20091, 2017.011.30120 and 2015.006.30475 and released on February 12, 2019. Successful exploitation could lead to...
The Register

Deus ex hackina: It took just 10 minutes to find data-divulging demons corrupting Pope’s Click to Pray eRosary app

Vatican coders exorcise API gremlins but, we must confess, they missed little monster.... Exclusive  The technology behind the Catholic Church’s latest innovation, an electronic rosary, is so insecure, it can be trivially hacked to siphon off worshipers' personal information.…
SC Magazine

Trojanized Russian-language Tor browser lets attacks steal from users’ e-wallets

Researchers have discovered a trojanized version of a Tor private browser that targets Russian-speaking dark web marketplace visitors and lets cybercriminals steal from their e-wallet transactions. The developers behind the malicious browser have so far stolen at least $40,000 in...
SC Magazine

UC Browser potentially endangers 500 million users

The popular Android browser UC Browser was found to break several Google mobile app rules possibly placing up to 500 million of its users at risk. UC Browser, which is available from the Google Play store, was found by Zscaler ThreatLabZ...
ZDNet

US stopped using floppy disks to manage nuclear weapons arsenal

US Air Force switches to secure solid-state-based solution to replace antiquated floppy disks in SACCS nuclear weapons management system.
Bruce Schneier

Friday Squid Blogging: Six-Foot-Long Mass of Squid Eggs Found on Great Barrier Reef

It's likely the diamondback squid. There's a video. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Read my blog posting guidelines here.