Saturday, January 14, 2017

WordPress 4.7.1 Released

There has been released a new version of WordPress (blogging tool and content management system) which contains updates to security vulnerabilities. It's also recommended to check if there are any updates available for WordPress extensions in use. Also, it's recommended to disable those extensions that are not needed.

Affected versions:
WordPress versions earlier than 4.7.1

More information can be read from the WordPress blog.

New Version Of Foxit Reader And Foxit PhantomPDF Available

Foxit Software has released version 8.2 of their Foxit Reader and Foxit PhantomPDF software. The new versions contains fixes for security vulnerabilities that if exploited may allow an attacker to execute arbitrary code in target system.

Affected versions:
Foxit Reader 8.1.4.1208 and earlier (Windows)
Foxit PhantomPDF 8.1.1.1115 and earlier (Windows)

More information can be read here.

Adobe Reader And Acrobat Security Updates

Adobe have released security updates to fix some vulnerabilities in their PDF products, Adobe Reader and Adobe Acrobat. The vulnerabilities could allow an attacker to take over the affected system.

Affected versions:
*Acrobat DC and Acrobat Reader DC, continuous track
version 15.020.20042 and earlier

*Acrobat DC and Acrobat Reader DC, classic track
version 15.006.30244 and earlier

*of series XI (11.x)
Adobe Reader 11.0.18 and earlier
Adobe Acrobat 11.0.18 and earlier


Users of vulnerable versions are instructed to update their versions either by using automatic update functionality or by downloading fresh version manually. The default installation configuration runs automatic updates on a regular schedule and can be manually activated by choosing Help > Check for Updates.

Those who want to upgrade manually, can download the latest versions of the links below:
Adobe Reader
Adobe Acrobat

More information about fixed vulnerabilities can be read from Adobe's security bulletin.

Adobe Flash Player Update Available

Adobe have released updated versions of their Flash Player. The new versions fix a critical vulnerability that could potentially allow an attacker to take control of the affected system.

Affected versions:
- Users of Adobe Flash Player 24.0.0.186 and earlier versions for Windows and Macintosh should update to Adobe Flash Player 24.0.0.194

- Users of Adobe Flash Player 24.0.0.186 and earlier versions for Linux should update to Adobe Flash Player 24.0.0.194

- Flash Player integrated with Google Chrome will be updated by Google via Chrome update

- Flash Player integrated with Internet Explorer 11 (on Windows 8.1 and Windows 10) and Microsoft Edge (Windows 10) will be updated via Windows Update


More information can be read from Adobe's security bulletin.

Microsoft Security Updates For January 2017

Microsoft have released security updates for January 2017. This month update contains four security bulletins of which one categorized as critical and three as important.

A new version of Windows Malicious Software Removal Tool (MSRT) was released too.

More information can be read from the bulletin summary.

Sunday, January 8, 2017

Symantec Intelligence Report: December 2016

Symantec have published their Intelligence report that sums up the latest threat trends for December 2016.

The report can be viewed here.

Wednesday, January 4, 2017

Mozilla Thunderbird Update Available

Mozilla have released an updated version of their Thunderbird email client containing fixes to security vulnerabilities. Some of the fixed vulnerabilities are categorized as critical.

Affected versions:
Mozilla Thunderbird versions earlier than 45.6

Fresh version can be obtained via inbuilt updater or by downloading from the product site.