BusinessWeek's Web site was hit at the back end through SQL injection.
Security firm Sophos disclosed on Monday that BusinessWeek magazine's Web site had been hacked.
A "suggested sites" feature in Internet Explorer 8 sends information to Microsoft, but it's not retained, Redmond contends.
The newly launched Web browser uses Microsoft's Windows Template Library, and other open source code.
Microsoft's Patch Tuesday release contains four critical security fixes.
Two proof-of-concept bugs were identified in Google's new Chrome Web browser, which uses WebKit open source code.
Microsoft plans to address remote code execution vulnerabilities in next Tuesday's security patch.
An update to Microsoft's enterprise client protection app is now available.
Although the overall number of vulnerabilities being discovered in software appears to be leveling off or even dropping, two recent reports on Web security say that the overwhelming majority of Web sites studied still have unpatched vulnerabilities that could expose visitors to malicious code.
The writing's on the wall, it seems, for purveyors of security point solutions. Gone is the day of the best-of-breed anti-virus, firewall, e-mail security or encryption vendors. These days, it's a security suite play.
Check Point Software updated its Web security software suite.
A critical advisory was issued after hackers tampered with the open source Linux company's Web site.
UrlScan 3.0, a security add-on to Microsoft's IIS Web server, is now available in its Release-to-Web version.
A study describes best practices for keeping down security costs and woes.
The new tool is designed to help managers assess code quality before it's shipped.
Simplifying identity with Microsoft's 'Zermatt' class libraries.
Updates to the company's ESX 3.5 and ESXi 3.5 virtualization products caused licenses to expire, and other problems.
Microsoft issued a fix yesterday via Microsoft Update for a patch blocking problem that affected System Center users.
MessageLabs reports that the number of SQL injection attacks spiked sharply last month.
Remote code execution and information disclosure risk are the main problems addressed with this patch cycle.