Gotham Security Daily Threat Alerts
March 14, Help Net Security – (International) Pwn2Own 2014 ends, $850k distributed to successful hackers. The second day of the Pwn2Own 2014 security competition March 14 resulted in two vulnerabilities in Chrome being discovered, in addition to vulnerabilities in Internet Explorer, Firefox, Safari, and Adobe Flash that were revealed March 13. A total of $850,000 was awarded to security researchers over the course of the competition. Source.
March 13, IDG News Service – (International) Phishing campaign targets Google Docs, Drive users. Symantec researchers identified a phishing campaign targeting users of Google Drive that uses a fake login page hosted on Google servers and served over Secure Sockets Layer (SSL), making the campaign potentially more convincing than most phishing attempts. Source.
March 13, IDG News Service – (International) Adobe patches a critical flaw in Shockwave Player. Adobe released a patch March 13 for its Shockwave Player to address a critical memory corruption vulnerability that could lead to arbitrary code execution. Source.