ryan naraine

ZDNet Resources

• sort by:
• Relevance
• Date
• Popularity

Patch Tuesday: Microsoft plugs critical Windows worm holes

The company urged customers to prioritize and deploy four updates because of the "critical" severity rating and the fact that "consistent exploit code" is likely within the next 30 days. by Ryan Naraine

Tags: Denial Of Service, Attacker, Vulnerability, Victim, Exploit Code, Microsoft PowerPoint, Microsoft Corp., Small And Medium Business, Attack, CVE-2010-0242, Microsoft Windows, Security, Microsoft Office, Operating Systems, Software, Office Suites, Ryan Naraine

Blog posts 2010-02-09

Adobe screw-up leaves Flash flaw unpatched for 16 months

Adobe has acknowledged that an internal screw-up caused potentially dangerous Flash Player flaw to remain unpatched for more than 16 months by Ryan Naraine

Tags: Adobe Systems Inc., Flaw, Macromedia Flash Player, Web Browsers, Security, Internet, Ryan Naraine

Blog posts 2010-02-09

Oracle rushes out patch for gaping server hole

The patch follows the public release of exploit code as part of the recent Week of Web Server Bugs. by Ryan Naraine

Tags: Oracle Corp., Vulnerability, Patches, Security, Firewalls, Networking, Ryan Naraine

Blog posts 2010-02-05

Mozilla Firefox hit by malware add-ons

Mozilla says a pair of malicious Firefox add-ons slipped by its security checks and infected approximately 4,600 Windows computers over the last five months. by Ryan Naraine

Tags: Mozilla Firefox, Trojan Horse, Malware, Mozilla Corp., Add-on, Spyware, Adware & Malware, Cyberthreats, Spyware, Viruses And Worms, Security, Web Browsers, Internet, Ryan Naraine

Blog posts 2010-02-05

MS Patch Tuesday heads-up: 13 bulletins, 26 vulnerabilities

According to an advance notice from Microsoft, five of the 13 bulletins will be rated "critical" because of the risk of remove code execution attacks. by Ryan Naraine

Tags: Vulnerability, Microsoft Corp., Microsoft Windows, Security, Microsoft Windows 7, Operating Systems, Software, Ryan Naraine

Blog posts 2010-02-04

Code execution holes in iPhone OS, iPod Touch

The most serious flaw could allow remote code execution if an iPhone/iPod Touch user opens audio and image files. by Ryan Naraine

Tags: Apple iPhone, Apple iPod, Operating System, Apple iPod Touch, Smart Phones, Digital Music, Digital Media, Consumer Electronics, Personal Technology, Ryan Naraine

Blog posts 2010-02-02

Tor Project suffers hack attack

Hackers broke into two of Tor Project servers and used the CPU and bandwidth to launch additional attacks. by Ryan Naraine

Tags: Bandwidth, Attacker, Attack, Dingledine, Security, Servers, Hardware, Ryan Naraine

Blog posts 2010-01-22

RealPlayer haunted by 11 critical vulnerabilities

RealNetworks released an advisory to warn of the vulnerabilities, which could be exploited via rigged image and media files to launch remote code execution attacks. by Ryan Naraine

Tags: Critical Vulnerability, Code, Buffer-overflow, RealNetworks RealPlayer, Error, Interactive Voice Response (IVR), Digital Music, Digital Media, Viruses And Worms, Security, Personal Technology, Consumer Electronics, Ryan Naraine

Blog posts 2010-01-22

Microsoft knew of IE zero-day flaw since last September

Microsoft today admitted it knew of the Internet Explorer flaw used in the attacks against Google and Adobe since September last year. by Ryan Naraine

Tags: Attacker, Vulnerability, Microsoft Internet Explorer, Microsoft Corp., Zero-day Bug, Web Browsers, Security, Internet, Ryan Naraine

Blog posts 2010-01-21

Mozilla drops Firefox 3.6 with security goodies

The Firefox 3.6 update includes new features to patch third-party Firefox plug-ins and lock out rogue add-ons. by Ryan Naraine

Tags: Security, Mozilla Firefox, Web Browser, Mozilla Corp., Plug-in, Web Browsers, Internet, Ryan Naraine

Blog posts 2010-01-21

Microsoft confirms 17-year-old Windows vulnerability

Microsoft warns that a malicious hacker could exploit this vulnerability to run arbitrary code in kernel mode. by Ryan Naraine

Tags: Advisory, Flaw, Microsoft Corp., Attack, Ormandy, Microsoft Windows, Security, Microsoft Windows NT, Operating Systems, Software, Ryan Naraine

Blog posts 2010-01-21

Following the Google attack malware trail

A researcher discovers that several components of the malware were written in mid-2006, more than three years before the attacks on Google, Adobe and others were first discovered. by Ryan Naraine

Tags: Algorithm, Google Inc., Malware, Attack, Spyware, Adware & Malware, Cyberthreats, Security, Engineering, Viruses And Worms, Ryan Naraine

Blog posts 2010-01-20

Critical out-of-band IE patch coming tomorrow (Jan 21)

The update, rated critical for all versions of IE, will cover a remote code execution flaw that has already been used in targeted attacks. by Ryan Naraine

Tags: Microsoft Internet Explorer, Microsoft Corp., Web Browsers, Internet, Ryan Naraine

Blog posts 2010-01-20

Researcher demos clickjacking attack on Facebook

A demo exploit shows how easy it is to trick Facebook users into adding apps or other malicious content by hijacking clicks to what appears to be harmless links. by Ryan Naraine

Tags: Facebook, Researcher, Attack, Security, Ryan Naraine

Blog posts 2010-01-20

Critical flaws haunt Adobe Shockwave Player

The vulnerabilities affect Adobe Shockwave Player 11.5.2.602 and earlier versions, on the Windows and Mac operating systems. by Ryan Naraine

Tags: Adobe Systems Inc., Shockwave, Flaw, Security, Viruses And Worms, Ryan Naraine

Blog posts 2010-01-20

Mac OS X dirty dozen: Apple plugs critical security holes

The update, rated critical, plugs security holes that could lead to code execution vulnerabilities if a Mac user is tricked into opening audio files or surfing to a rigged Web site. by Ryan Naraine

Tags: Apple Mac OS, Apple Macintosh, Vulnerability, Apple Inc., Apple Mac OS X, Arbitrary Code Execution, Plug-in, Application Termination, Security, Ryan Naraine

Blog posts 2010-01-19

Microsoft readies emergency IE patch to counter public exploits

The out-of-band update will be released once the company is satisfied that it has been properly tested against all affected versions of Windows. by Ryan Naraine

Tags: Vulnerability, Microsoft Internet Explorer 6, Exploit Code, Microsoft Internet Explorer, Microsoft Corp., Exploit, Data Execution Prevention, Attack, Web Browsers, Security, Internet, Ryan Naraine

Blog posts 2010-01-19

Microsoft says Google was hacked with IE zero-day

According to Microsoft, the vulnerability is still unpatched and can lead to remote code execution attacks if a target is lured to a booby-trapped Web site or views a malicious online advertisement. by Ryan Naraine

Tags: Google Inc., Web, Attacker, Vulnerability, Microsoft Internet Explorer 6, Microsoft Internet Explorer, Microsoft Corp., Web Site, Attack, Web Browsers, Microsoft Windows, Security, Internet, Operating Systems, Software, Ryan Naraine

Blog posts 2010-01-15

Google (finally) enables default "https" access for GMail

A day after confirming a major security breach by Chinese hackers looking for GMail account information, Google has turned on default "https:" access for its popular Web mail service. by Ryan Naraine

Tags: Google Inc., Google Gmail, HTTP, E-mail Providers, Internet, Ryan Naraine

Blog posts 2010-01-13

Adobe plugs PDF zero-day flaw in latest security makeover

Adobe has released a mega-update for its Reader and Acrobat software products to fix a total of eight documented security vulnerabilities. by Ryan Naraine

Tags: Adobe Systems Inc., Adobe PDF, Adobe Acrobat, Vulnerability, Update, Adobe Acrobat Reader, Zero-day Bug, Enhanced Security, Security, Ryan Naraine

Blog posts 2010-01-13