Security News


Survey Highlights Open Source Perceptions, Pitfalls

If you use open source software (OSS), Gartner recommends you have an official OSS policy. But a surprising number of open source adopters are operating without one.

Heavy Patch Tuesday Expected Next Week

Microsoft is projecting eight fixes for its December security patch arriving on Tuesday.

IT Security: Expect More Misery in 2009

A Symantec report describes IT security trends for this year and the next.

Unpatched Systems at Risk From Worm, Microsoft Says

A worm that exploits remote procedure call technology has been showing up on unpatched Windows-based networks.

Researchers Find Vista Kernel Memory Security Bug

The problem seems to be a proof-of-concept exploit that has not affected Microsoft's customers.

November's Patch Addresses Two Windows App Exploits

Remote code execution vulnerabilities in Windows applications get addressed.

DNS Security Still a Concern

A recent survey has found that DNS complexity and a lack of resources have resulted in major security gaps being left in the system.

Microsoft Offers Security Dev Lifecycle Solutions

The company has outlined security best practices in tools and models for application developers.

Only 2 Fixes Expected on Patch Tuesday

IT pros can expect one of the lightest Patch Tuesdays in recent memory this month as Redmond indicated there would only be two patches -- one critical, one important.

UPDATE: Adobe Patches Reader Flaw

Adobe said it has released a patch to stave off stack buffer overflow exploits in its free and widely used Adobe Reader software.

Worm Hits Windows 2000 in China

Despite issuing a preemptive patch two weeks ago and another warning late last week, Redmond is now investigating a bug exploiting Windows Server Service for Windows 2000 that reportedly originated in China.

Microsoft: Software More Secure, but Malware Is Growing Threat

The number of software vulnerabilities in the first half of 2008 dropped 4 percent compared with the previous six months and a respectable 19 percent from the first half of 2007.

Microsoft Ups Exploit Code Warning

It looks like that Redmond's hunch was correct when it issued an out-of-cycle security patch late last week, because on Wednesday Microsoft identified publicly available exploit code related to that vulnerability.

First Look: Google Chrome

Chrome has the makings of a good, lightweight browser, but it still lacks a few important features.

Security Concerns May Slow Cloud Computing Adoption

Microsoft may have reaffirmed its commitment to cloud computing with the launch of its Windows Azure operating system, but overall business adoption of the cloud concept may be stymied, in part, by security issues.

PDC: Microsoft Releases Geneva Beta

Microsoft on Monday released the first beta of its federated identity services framework aimed at simplifying the way enterprises deploy authentication services.

Off-Cycle Microsoft Patch Targets Worm-Like Windows Bug

Redmond on Thursday released a critical out-of-cycle security patch affecting Windows 2000, Windows XP and Windows Server 2003 systems.

Fake Microsoft Security Update Makes Rounds

Sophos quickly warns of fake Trojan-laden e-mail disguised as Microsoft Security Bulletin update hitting inboxes.

Busy October Patch Cycle Comes Around with 11 Fixes

Security-minded admins have their work cut out for them, as Microsoft coughs up 11 fixes in its October patch cycle.

Microsoft Promises To Improve UAC in Windows 7

A rethink of the security feature will happen with Microsoft's next OS, expected in late 2009, at earliest.

Upcoming Events

AppTrends

Sign up for our newsletter.

I agree to this site's Privacy Policy.