Security News


Massive Patch Coming for DNS Vulnerability

Major vendors of domain name system (DNS) servers are making an unprecedented coordinated release of patches for what is being called a fundamental flaw in DNS, a core element of the Internet.

Microsoft Talks Up SDL

Redmond’s Secure Development Lifecycle requirements aim to counter security defects in the face of recent SQL attacks.

Citibank Hack Shines Light on PCI Compliance

Just two days after the Payment Card Industry (PCI) Security Standards Council announced the deadline for application security compliance and said it would be issuing guidelines for PIN entry devices, court documents have emerged detailing an elaborate plot to hack Citibank's ATM network architecture.

Data Breaches Up in First Half of 2008

Reported data breaches increased sharply in the first six months of 2008, jumping 69 percent compared to the same period last year, according to a study by the Identity Theft Resource Center (ITRC).

IE Is Least-Patched Browser, Report Says

More than 40 percent of Internet surfers don't use browsers with up-to-date security patches -- and IE users are the biggest culprits.

Microsoft's XP SP3 Patch Fixes Antivirus Glitch

The hotfix addresses a registry corruption problem that was associated with PCs using Symantec's Norton Antivirus software.

Another Patch-Blocking Problem for Microsoft

Microsoft issued an advisory alerting users about a glitch that prevents security updates from being distributed through specific Windows Server Update programs.

Microsoft Advisory Targets SQL Injection Attacks

Company issues three tools to help Web developers with security.

Survey: Many Microsoft Patches Are Going Uninstalled

The results of an online test conducted by U.K. anti-virus firm Sophos found that more often than not, PC users don't install Microsoft's monthly patches.

New Bluetooth Patch Fixes XP Security Hole

Microsoft reissues a "critical" patch relating to Bluetooth wireless technology that was released last week as part of its June update cycle.

Microsoft Patches Blocked for Some Admins

Microsoft works to correct issue that kept some administrators using System Center Configuration Manager 2007 from downloading the latest security updates.

Majority of Data Breaches Go Unnoticed, Study Finds

Verizon Business reports that more than half of the data breaches on enterprise systems go undetected and are caused by general negligence and lax security.

Microsoft Releases 7 Patches, 3 Critical

Critical patches focus on IE, DirectX and Bluetooth.

Webroot Launches Web Security SaaS Solution

Company's E-mail Security SaaS product also gets an update.

Microsoft To Issue 7 Patches This Month

Redmond projects a rollout of seven fixes, with three rated critical, three important and one moderate.

Sun Web Server Hit with Multiple Security Vulnerabilities

Security research firm finds multiple flaws in Sun Java System Active Server Pages.

Microsoft Starts Global Rollout of Retail Consumer Web Sites

Microsoft Corp. is now selling its wares directly to consumers.

Symantec App Suspect in XP SP3 Registry Problem

A registry corruption problem associated with Windows XP Service Pack 3 installs can be avoided, Symantec officials say.

HP's App Security Center Upgraded and Delivered as a Service

This HP is showing off new features in its Web application security suite and talking about its upcoming SaaS delivery model.

Office Live Workspace Beta Released Internationally

Microsoft released an international beta of its Office Live Workspace (OLW) suite of productivity tools. The company also quietly launched an Office Live Update last week.