A March DNS security patch doesn't work on compromised servers, according to nCircle.
Adobe Reader 9 bug allows for remote exploitation by hackers.
Microsoft is issuing a security patch for three bugs, but an Excel flaw will have to wait.
The fixes will address spoofing and remote code execution attacks.
Microsoft's chief security advisor blamed the spread of the Conficker worm on laggard IT staff.
Microsoft plans to issue three fixes in its March security patch rollout, with one deemed "critical" and two labeled "important."
The bug drops a Trojan-horse binary when users open an affected Excel file.
CEO says most vulnerabilities in Windows systems can be reduced by simply removing certain user privileges.
Earlier this month, BeyondTrust released a report on security threats to IT shops running Microsoft software.
Exploits for a serious cache-poisoning vulnerability discovered in the DNS last year have begun to appear in the wild, and they have made security researcher Dan Kaminsky a believer in DNS Security Extensions.
Trend Micro said hackers are targeting a hole in Internet Explorer 7 that was addressed in Microsoft's February security patch issued last week.
The exploit's quick appearance suggests IT professionals need to patch, and patch quickly.
Microsoft is putting up $250,000 for information leading to the arrest of the Conficker worm's author.
Microsoft issued its monthly security patch, addressing four critical fixes and two important ones.
Microsoft expects to fix Internet Explorer, SQL Server and Visio in its upcoming February security patch.
Execs said that two security changes will be implemented in the Release Candidate version of the OS.
The UNIX-like server solution adds some extra security features beyond what you'd find with typical Linux OSes.
Though Microsoft may have gotten ahead of the browser-security curve with RC1 of IE 8, which includes a feature that helps protect against clickjacking attacks, recent developments suggest that other browsers haven't quite caught up yet.
Microsoft has advanced to the next testing phase by issuing Release Candidate "Escrow"-build versions of Service Pack 2.
The jobs portal company reported that personal information was stolen from its customer database.