Here’s the latest Chet Chat security podcast! Sophos experts Chester Wisniewski and Paul Ducklin once again turn plain old news into advice you can use.
Tag Archives: rce
Apple Safari for OS X gets “click-to-own” security holes patched
The 6th Safari security update in 10 months is out. With fixes for 7 potential remote code execution holes, get it while it’s hot…
Patch Tuesday wrap-up, August 2014: RCE + ASLR bypass + EoP == patch early, patch all!
Patch Tuesday is here again. Paul Ducklin explains how this month’s vulnerabilities can work together for harm, and why *all* the updates matter, not just the ones that ended up with a “critical” or “severe” tag…
SSCC 157 – Routers, Browsers, Zombies and Sysadmins [PODCAST]
Here it is…this week’s Chet Chat security podcast. In this episode: fixing routers, trusting browsers, killing zombies and showing TLC to sysadmins. 
It’s all about trust! 60 Sec Security [VIDEO]
Watch 60 Second Security for 19 July 2014 – it’s all about trust!
Patch Tuesday wrap-up, July 2014 – Adobe fixes “Rosetta”, plus a new risky file type on Windows…
Patch Tuesday for July 2014 is just behind us in the case of Microsoft and Adobe, and just ahead of us in the case of Oracle. Paul Ducklin tells you what you need to know…
Patch Tuesday for July 2014 – 6 bulletins, 2 RCEs, 3 EoPs and get ready to reboot
Here’s what to expect from Microsoft in the July 2014 edition of Patch Tuesday, scheduled to ship on Tuesday 08 July 2014… 
SSCC 154: Fraud, viruses, patches and encryption (in that order!) [PODCAST]
Where does your country sit on the fraud list? Just how much can you trust SMSes on Android? Is Apple serious enough about iOS security? And will Google’s End-To-End email encryption plugin save the world? Find out with Chet and Duck in this week’s Chet Chat podcast…
Apple ships updates, including Snow Leopard (ONLY KIDDING!)
Apple just published its latest round of updates for iOS, Apple TV, Safari and OS X, including dozens of security fixes. OS X Snow Leopard users…we’re afraid you missed out once again.
TimThumb plugin for WordPress – zero-day remote code execution hole disclosed, quickly fixed
WordPress sites with the TimThumb image thumbnailing plugin could be taken over by attackers. Paul Ducklin looks at what went wrong and explains how to fix the hole…