Redmond on Thursday released a critical out-of-cycle security patch affecting Windows 2000, Windows XP and Windows Server 2003 systems.
Sophos quickly warns of fake Trojan-laden e-mail disguised as Microsoft Security Bulletin update hitting inboxes.
Security-minded admins have their work cut out for them, as Microsoft coughs up 11 fixes in its October patch cycle.
A rethink of the security feature will happen with Microsoft's next OS, expected in late 2009, at earliest.
New security appliance gives DBAs a leg up on flaws and vulnerabilities lurking in corporate database management systems.
Tokeener case study serves as an example of writing low-defect, highly-reliable code, researchers claim.
IT admins will see nearly a dozen security fixes on Tuesday, according to Microsoft.
Researchers found a browser security issue that could let hackers gain access to user profiles.
Microsoft is promoting the use of software-based "information cards" to reduce identity theft.
New Security Development Lifecycle tools and services will be available in November.
BusinessWeek's Web site was hit at the back end through SQL injection.
Security firm Sophos disclosed on Monday that BusinessWeek magazine's Web site had been hacked.
A "suggested sites" feature in Internet Explorer 8 sends information to Microsoft, but it's not retained, Redmond contends.
The newly launched Web browser uses Microsoft's Windows Template Library, and other open source code.
Microsoft's Patch Tuesday release contains four critical security fixes.
Two proof-of-concept bugs were identified in Google's new Chrome Web browser, which uses WebKit open source code.
Microsoft plans to address remote code execution vulnerabilities in next Tuesday's security patch.
An update to Microsoft's enterprise client protection app is now available.
Although the overall number of vulnerabilities being discovered in software appears to be leveling off or even dropping, two recent reports on Web security say that the overwhelming majority of Web sites studied still have unpatched vulnerabilities that could expose visitors to malicious code.
The writing's on the wall, it seems, for purveyors of security point solutions. Gone is the day of the best-of-breed anti-virus, firewall, e-mail security or encryption vendors. These days, it's a security suite play.