Security Alerts & News
by Tymoteusz A. Góral

History
#1181 Oracle patches record 276 vulnerabilities with July critical patch update
Oracle has one-upped itself once again. The company fixed a record 276 vulnerabilities – more than half of which are remotely exploitable – as part of its July Critical Patch Update released Tuesday afternoon.

The quarterly patch update resolves vulnerabilities in 84 different products, including Oracle Database Server, Oracle Fusion Middleware, and Oracle’s E-Business Suite to name a few. The number of fixes exceeds the previous all time high, 248 patches, pushed by Oracle in January and marks more than double the amount of vulnerabilities addressed by the company in its last CPU in April.

Like the April CPU, more than 50 percent of the vulnerabilities, 159 in total, can be exploited remotely without authentication. Oracle Fusion Middleware is the biggest culprit; 35 of the 40 vulnerabilities that affect the software are remotely exploitable. The company’s E-Business Suite – in which 21 of the 23 vulnerabilities are remotely exploitable – and Oracle Sun Systems Products Suite – in which 21 of the 34 vulnerabilities are remotely exploitable – also merit attention.
Read more
#1183 Internet of Things security is dreadful: Here's what to do to protect yourself
#1182 ARM, Symantec build security standard for Internet of Things
#1181 Oracle patches record 276 vulnerabilities with July critical patch update
#1180 SoakSoak botnet pushing neutrino exploit kit and CryptXXX ransomware
#1179 Firefox to block non-essential Flash content In August 2016, require click-to-activate In 2017
#1178 Attackers launch multi-vector DDoS attacks that use DNSSEC amplification
#1177 Wave of business websites hijacked to deliver crypto-ransomware
#1176 Library of Congress hit with a denial-of-service attack
#1175 Software flaw puts mobile phones and networks at risk of complete takeover
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12