Security Alerts & News
by Tymoteusz A. Góral

History
#2224 Oracle delivers a whopping 299 fixes in April 2017's critical patch update
Today, Oracle released their April 2017 Critical Patch Update, or CPU, that resolves a record breaking 299 vulnerabilities across all of their products. According to a report by ERPScan, this is the largest CPU released by Oracle.

Of these 299 vulnerabilities, over 100 are remotely exploitable without authentication. This means that it is possible to remotely exploit the vulnerability through malicious web sites or via a remote attack depending on the particular software. Once an attack successfully exploits a vulnerability, the attacker may be able to execute commands on the affected computer without the victim's knowledge or permission.

The three products with the most security updates are Oracle Financial Services Applications with 47 vulnerabilities and Oracle Retail Applications and Oracle MySQL, which are tied at 39 fixes. Java, which is notorious for being used by exploit kits to install malware on vulnerable systems had 8 new security fixes, with 7 of them being remotely exploitable.
Read more
#2229 User-made patch lets owners of next-gen CPUs install updates on Windows 7 and 8.1
#2228 Ransomware Timeline: 2010 – 2017
#2227 NSA-leaking Shadow Brokers just dumped its most damaging release yet
#2226 A Russian hacker has created his own 'starter pack' ransomware service
#2225 This phishing attack is almost impossible to detect on Chrome, Firefox and Opera
#2224 Oracle delivers a whopping 299 fixes in April 2017's critical patch update
#2223 The Callisto group
#2222 Report: Cybercrime climate shifts dramatically in first quarter
#2221 Android trojan targeting over 420 banking apps worldwide found on Google Play Store
#2220 New processors are now blocked from receiving updates on old Windows
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12