Thursday, March 10, 2011
Google's Chrome untouched at Pwn2Own hack match Scheduled attackers don't show, or pass on exploiting sandboxed browser. The search giant had promised to pay $20,000 to the first researcher who broke into Chrome on the hacking contest's opening day
Thursday, February 24, 2011
Mozilla to skip CSRF bug patch in next Firefox update Originally slated for release on Feb. 14, the security updates for the cross-site request forgery bug was held while Mozilla developers investigated a bug that affected some, though not all, users of the betas. Find out more
Thursday, February 24, 2011
Microsoft fixes a security bug in its virus-scanner Bug in Malware Protection Engine could give a hacker extra privileges on a Windows machine. The bug is fixed in an update to the Microsoft Malware Protection Engine that was pushed out to users of Microsoft's security products on Wednesday
Thursday, February 17, 2011
Microsoft downplays threat of new Windows zero-day The company said it hasn't found a way to hijack PCs using SMB bug. The flaw in the Windows Server Message Block (SMB) network and file-sharing protocol was disclosed Monday by someone identified only as " Cupidon-3005" on the Full Disclosure security mailing list
Thursday, February 10, 2011
Microsoft kills 22 bugs in 'big month' of patches The patches won't stymie hacks at next months' Pwn2Own contest, says expert
Thursday, February 10, 2011
Oracle issues emergency Java patch The company says remote attackers can make Java runtimes hang. A number of products are affected by a new bug, including Java SE and Java for Business
Thursday, January 06, 2011
Researchers confirm Googler's Internet Explorer bug French firm Vupen says Microsoft's browser vulnerable to drive-by attacks. According to the security firm, IE8 harbors a vulnerability that can be exploited to hijack a Windows system
Thursday, October 21, 2010
Users neglect Java patches, leave attack door wide open A security expert from Qualys says Oracle should distribute Java fixes on Microsoft's update service
Thursday, October 14, 2010
RIM patches another flaw in BlackBerry Enterprise Server BlackBerry-maker RIM has issued a fix for another PDF-related security flaw in its BlackBerry Enterprise Server (BES), v5.0.2, for Exchange and Lotus Domino
Wednesday, August 25, 2010
Hackers post attacks for Windows DLLs This week dozens of exploits to subvert Firefox, Chrome, Word, Photoshop, Skype and other programs have been posted. They are designed to exploit dynamic link libraries in Microsoft Corp.’s Windows operating system
Thursday, August 12, 2010
‘Dangerous' iPhone exploit code goes public The maker of a 10-day-old jailbreak exploit released code that others could put to use hijacking iPhones, iPod Touches and iPads. It’s an impressive piece of work, says one expert
Tuesday, July 27, 2010
Free Sophos tool blocks Windows shortcut attacks Sophos PLC has made a security tool designed to guard against a security problem with Microsoft Corp. Windows shortcuts originally discovered by VirusBlokAda. Microsoft won't endorse the measure and tells users to cripple shortcuts instead 
Thursday, June 24, 2010
IT pays to say you're sorry The press is full of recent examples of leaders refusing to fess up to very public failings, from financial malfeasance to product defects to oil spills. Yet even though the cover-up can be worse than the crime, baring it all isn't easy to do
Friday, June 11, 2010
iPad 3G leak flaw more common than you think The AT&T Web security flaw responsible for the iPad 3G data leak is a routine mistake
Friday, June 11, 2010
Microsoft confirms critical Windows XP bug The Help Center flaw is Microsoft's eighth zero-day this year. The company said it has seen no active in-the-wild attacks exploiting the vulnerability
Monday, January 18, 2010
Should your company stop using Internet Explorer? The governments of France and Germany advise users to avoid Microsoft Corp.’s Internet Explorer for now. Experts from Info-Tech Research and McAfee Inc. offer tips for users concerned about Internet security
Friday, October 16, 2009
Microsoft plug-in puts Firefox users at risk Microsoft add-on leaves Firefox users open to attack ...
Wednesday, August 26, 2009
Cisco downplays wireless AP vulnerability Cisco says there's no risk of data loss or interception. However, hackers might still use the vulnerability to hijack network controls, according to a security firm...
Monday, July 13, 2009
Microsoft reports another zero-day vulnerability The vulnerability resides in Microsoft's Office Web Components, which are used for publishing spreadsheets, charts and databases to the Web, among other functions
Monday, May 04, 2009
'Hackers wanted' ad fed security misconception A consultant says experts, not hackers, should be hired by organizations to test their online secuirty. Just because a person knows how to break into a computer, the author argues, it doesn't mean he knows how to break into all computers
Wednesday, April 15, 2009
Mac hacker IDs possible iPhone bug Attacker would need a working exploit first, but then could remotely read text messages and other data, says hacker Charlie Miller 
Wednesday, March 04, 2009
No patch for Excel zero-day flaw next week Microsoft will deliver three critical security patches on Tuesday but there's still no fix for Excel vulnerability being exploited by attackers now
Thursday, January 01, 2009
Top 3 enterprise risk management trends As companies rush to adopt service oriented architecture, clouds and other distributed models of computing, determined insiders and outsiders are poised to seek out and exploit vulnerabilities of these technologies. Here's what you should look out for in 2009 
Tuesday, December 23, 2008
Microsoft issues SQL attack warning A critical flaw in Microsofts SQL Server can be exploited to run unauthorized software on systems running versions of SQL Server 2000 and SQL Server 2005