Highlights and Updates

ISC Releases Security Updates for BIND

Tuesday, 18th April 2017
The Internet Systems Consortium (ISC) has released updates that address multiple vulnerabilities in BIND. 

Apache Software Foundation Releases Security Updates

Tuesday, 18th April 2017
The Apache Foundation has released security updates to address vulnerabilities in Apache Tomcat. 

Critical Microsoft Word Zero-Day is Being Actively Exploited

Wednesday, 12th April 2017
Microsoft plans to address the problem in its monthly security update on Tuesday, April 11. The flaw was disclosed by both McAfee and FireEye.

Microsoft Releases April 2017 Security Updates

Wednesday, 12th April 2017
Microsoft has released 61 updates to address vulnerabilities in Microsoft software. 

SWIFT codes targeted in Union Bank of India cyberattack

Wednesday, 12th April 2017
Hackers launched an attack against the Union Bank of India that was very similar to the Bangladesh bank heist.

Broadcom Chip Flaw Affects Android, iOS Devices

Tuesday, 11th April 2017
A variety of Android handsets are vulnerable to hijacking due to a flaw in a Broadcom Wi-Fi chipset. 

Attackers Exploiting Struts2 Vulnerability to Distribute Cerber Ransomware

Tuesday, 11th April 2017
Attackers are actively exploiting a known flaw in Apache Struts2 to infect servers with Cerber ransomware. 

China's APT10 the Focus of Two Reports

Tuesday, 11th April 2017
Operation Cloud Hopper is believed to be "one of the largest ever sustained global cyber espionage campaigns."

4,000 WordPress sites infected through fake plugin

Monday, 10th April 2017
About 4,000 WordPress websites have been infected with malware that disguises itself as a search engine plugin.

Upgrade to v4.7.3, WordPress users advised

Monday, 10th April 2017
Users of Wordpress are strongly encouraged to upgrade to v4.7.3 immediately, according to an advisory on the site.