Security Alerts & News
by Tymoteusz A. Góral

#1683 Google releases supplemental patch for dirty COW vulnerability
Google’s November Android Security Bulletin, released Monday, patched 15 critical vulnerabilities and addressed 85 CVEs overall. But conspicuously absent is a fix for the Linux race condition vulnerability known as Dirty Cow (Copy-on-Write) that also impacts Android.

While Google didn’t issue an official fix for the Dirty Cow vulnerability (CVE-2016-5195), it did release “supplemental” firmware updates for its Nexus and Pixel handsets. According to Michael Cherny, head of security research at Aqua Security, Samsung also released the fix for Dirty Cow this month (SMR-NOV-2016), while other handset makers have not.
Read more
#1691 Disassembling a mobile trojan attack
#1690 China’s new cybersecurity law is bad news for business
#1689 Fake shopping apps are invading the iPhone
#1688 Clever Gmail hack let attackers take over accounts
#1687 Adobe patches nine code execution flaws in Flash Player
#1686 Google stops AdSense attack that forced banking trojan on Android phones
#1685 TrickBot banking trojan adds new browser manipulation tools
#1684 IPv4 addresses exhausted, networking standards must support IPv6
#1683 Google releases supplemental patch for dirty COW vulnerability
#1682 Microsoft patches zero-day disclosed by Google
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12