No zero-day vulnerabilities this month, but still a moderate number of patches from Microsoft
News vulnerabilities
Bug Found In Google Bug Tracker Database
Discovery of bug in Google’s bug tracking database lands researcher $15,600 in bug bounties
Patch Tuesday: Microsoft Fixes Exploit Found In Wild
No rest for system admins as Patch Tuesday tackles 62 vulnerabilities; 28 of which are rated as critical
‘BlueBorne’ Flaw Poses Serious Risk To Bluetooth Devices
BlueBorne attack vector requires no user interaction, and is spread via the air to make it even more contagious
Cybersecurity Researchers Implant Malware Into DNA Strand
US researchers embed malware into DNA, in order to hack DNA sequencing software. But it won’t be a threat for a while to come
Patch Tuesday: Microsoft Tackles 48 Flaws, But Adobe Acrobat Dominates
Largish patch update from Microsoft, but administrators advised to tackle Adobe updates ASAP
CableTap Vulnerabilities Detailed At DefCon Expose ISP Gateway Risks
Security researchers detailed a set of 26 different vulnerabilities that impact millions of wireless gateways set up by internet service providers
Unpatched Smartphones ‘At Risk’ From Broadpwn Bug
Android and iOS already issued patches for bug that could result in the spread of unstoppable malware
July’s Patch Tuesday Fixes 19 Critical Flaws
Normal size security update for July as Microsoft delivers first fix for its HoloLen product
Google Pushes Out Flaw Fixing Android Security Patch
The patch notably fixes a flaw in code relating to a Broadcom Wi-Fi exploit
Windows 10 Kernel Vulnerable To GhostHook Attack
CyberArk Labs finds GhostHook attack can bypass Microsoft’s protection of Windows 10 kernel
Patch Tuesday Includes Fixes For Ancient Windows XP And To Tackle WannaCry
Unprecedented move as update includes patches for ‘unsupported’ Windows XP and Vista
Pacemaker Code ‘Contains 8,000 Vulnerabilities’
Researcher warns of troubling security vulnerabilities with pacemaker devices
Synopsys Questions Cyber Safety Of Medical Devices
Question marks over the safety of medical kit has been raised again as study finds widespread medical complacency
Microsoft President Slams NSA, Calls For Unity Following ‘WannaCrypt’ Ransomware Attacks
Fallout from WannaCrypt attacks continues as Microsoft publicly calls out NSA for stockpiling security vulnerabilities
Microsoft Patch Tuesday Lands Hours After Emergency Patch
Redmond continues with new update format as May’s edition tackles 57 vulnerability fixes
Researcher Finds Super Secure Email Service Nomx ‘Riddled’ With Security Flaws
Researcher Scott Helme was left “horrified” at Nomx’ level of security after analysing the device
Oracle Releases Huge Security Update
Staggering 299 patches released spanning database, middleware, Peoplesoft and JD Edwards software
Kaspersky Lab Increases Rewards With Extended Bug Bounty Programme
Security researchers will now receive $5000 (£3,974) for discovering remote code execution bugs in Kaspersky products
Patch Tuesday Update Leaves Windows Vista Users High And Dry
Windows Vista is now officially dead, as Microsoft leaves users of the old operating system with no clear upgrade path
Android Bulletin Delivers Fixes For Mainstream Android Devices
Google updates tackles security vulnerabilities with Android devices as well as update for its Nexus handsets
DoubleAgent Malware Seizes Control Of Antivirus Software
New zero-day attack exploits old Windows vulnerability to take ‘full control’ of ‘major antivirus’ products
Cross Channel: Cloud Adoption, ‘Rampant’ Vulnerabilities And Datto Targets UK MSPs
All the news from the world of the IT channel, including a cloud adoption high in the UK and “rampant” security vulnerabilities
WhatsApp & Telegram Patch ‘Severe’ Vulnerabilities
‘Severe vulnerability’ found with encrypted chat apps that could allow attackers to take complete control of user accounts
Security Flaws Found In Android Password Managers
The security credentials of Password Managers on Android called into question after discovery of multiple flaws
Researchers Uncover Schneider Electric Data Centre System Flaw
Schneider Electric flaw could have allowed attackers to gain remote access to unencrypted passwords
Oracle Dishes Out 270 Patches In SecondBiggest Security Update Ever
Business applications receive the bulk of the patches as quarterly updates continue to grow
Light Microsoft Patch Tuesday Update For January
Small beer for system admins this month with only four bulletins to worry about, two of which are critical
Gogo Bug Bounty Program To Secure In-Flight Wi-Fi
Gogo looks to secure the skies and stay one step ahead of the hackers with “pro-active” security program
Microsoft Ends 2016 With Patch Tuesday Windows 10 Fix
Internet connection issues for Windows 10 users resolved in last Patch Tuesday update of 2016