Security News

Legacy Microsoft Products Get Security Support

A free solution from Shavlik provides security diagnostics for small-to-medium enterprise networks that can't use Microsoft's latest patch technology or MBSA 2.0.1 tool.

Putting Coders' Security Chops to the Test

The SANS Institute is set to launch new assessment and certification exams for .NET this summer (article courtesy of Redmond Developer News, May 1, 2007).

Microsoft Moves to the Forefront of Security

Client security app gets formally unveiled as part of Microsoft's enterprise security suite.

OASIS Group To Improve B-to-B Collaboration

New WS-Federation group aims at improving how companies share data.

News Analysis: Why Vista Was Vulnerable

Microsoft's new operating system used some old code that was hard to spot.

Open Source Slowly Gains Momentum on Wall Street

Finance companies seek more mature open-source solutions that will meet legal requirements, among other concerns.

Pre-Release Vista Versions Set To Expire in May

Expiring beta version of OS gives users just two hours to save their data.

Microsoft Preps DNS Mega-Patch

May 8 is the possible release date for Microsoft's patch to fix security vulnerabilities in Windows 2000 Server and Windows Server 2003.

Microsoft Warns of New DNS Attacks

Security advisory issued yesteday describes DNS vulnerability in Windows server operating systems.

New Word, Windows Vulnerabilities Surface

Bugs deteted in Word 2007 have yet to be confirmed by Redmond.

Microsoft Virtualization Products Face Delays

Redmond takes aim at performance and scalability goals in holding back Virtual Server 2005 upgrade.

Microsoft Issues ASP.NET Glitch Fix

Patch will fix compilation problems that occur after "massive file changes," such as antivirus time-stamp modifications.

User Management Program Adds Security Upgrades

Beefed-up Windows management app from Lieberman Software helps IT administrators better handle password security.

Microsoft Patches Four Critical Windows Vulnerabilities

The patches released today aim to avoid Remote Code execution attacks in Windows-based systems.

Management and Governance Key to SOA, Report Finds

A survey of companies developing service-oriented architecture solutions found that it hasn't been easy to do, although most 'best-in-class' companies have realized returns on investment from SOA infrastructure.

Microsoft Plans Five Patches for Tuesday

On top of this week's major update to Microsoft's Windows GDI implementation, Redmond next week plans to issue no less than four Windows security bulletins, including at least one "critical" update.

JavaScript 'Hijacking' Vulnerability Not Expected To Dampen Enthusiasm for AJAX

A JavaScript-related problem has been found in AJAX-style applications, but it can be secured at the server side.

Securent Teams With OASIS on Open Source Access Control

Securent has decided to implement XACML 2.0 in its Entitlement Management Solution as part of OASIS' standardization efforts.

No Microsoft Security Patches Expected This Month

Get ready for an anti-climactic Patch Tuesday. Following on the heels of last month’s gonzo Patch Tuesday event -- wherein Microsoft Corp. released 12 new patches -- Redmond this month doesn’t plan to patch any security-related flaws.

SPI's DevInspect Tools Secure Microsoft AJAX

SPI Dynamics is collaborating with Microsoft to provide security tools for applications built using ASP.NET AJAX (code-named "Atlas"). When it is released on December 1, DevInspect 3.0 will become one of the first dev tools to analyze and remediate vulnerabilities in Atlas-based applications.

Upcoming Events


Sign up for our newsletter.

I agree to this site's Privacy Policy.