Jan 17 2013
Microsoft has released a fix for a critical remote code execution flaw in Internet Explorer that is being actively exploited. The fix, MS13-008, did not appear in Microsoft’s monthly scheduled security update, which was released last week. The flaw affects IE6, IE7, and IE8. The update will be pushed out automatically for users who have…..
Continue Reading
Jan 17 2013
On Sunday, January 13, Oracle released an emergency patch to address a pair of critical flaws in Java. One of the vulnerabilities is being actively exploited. Oracle’s decision to release a patch outside of its regular schedule is likely to have been influenced by an advisory from the US Department of Homeland Security’s (DHS’s) US-Computer…..
Continue Reading
Jan 15 2013
Hackers claim to have exploited a trivial directory traversal vulnerability to gain access to portions of a US Department of Homeland Security (DHS) website that offers advice for foreigners who are seeking to study in the US. The attackers were reportedly able to access the site’s configuration file that contains a password for a database…..
Continue Reading