Security


Most Are Running Vulnerable Versions of Java

Just like your OS, Java should be updated as soon as patches are released.

Microsoft Denies Used Xbox Credit Card Hack 

Microsoft has said it is looking into reported allegations that hackers may be able to retrieve credit card information off an Xbox 360 -- even after the hard drive has been reformatted.

Java Flaw Being Exploited Thanks to Hacker Toolkit

The BlackHole kit, a popular exploit set among hackers, has been updated to take advantage of a recently discovered Java hole that security researchers say many haven't updated yet.

LulzSec Reborn Takes Credit for Leaks of Military Personal Info

A group calling itself "LulzSec Reborn" released the usernames and passwords of 170,937 subscribers to a military online dating service on Sunday.

Will Security Be Sacraficed in Windows 8's Internet Explorer 10?

Plus, the return of LulzSec.

IE 10 Security Feature Offers Bumpy Ride for 'Desktop' Users

Internet Explorer 10 contains a new security feature called "enhanced protected mode" that Windows 8 beta testers may soon encounter.

Microsoft and Feds Shut down Zeus Botnet Group

Microsoft recently disrupted a major ring whose use of malware has cost victims $477 million since 2005.

Verizon Security Report: 97 Percent of Attacks Were Avoidable

A security report released today by Verizon that studied 855 breach incidents from last year concluded that 97 percent of them could have been avoided by "simple and intermediate controls."

Did a MS Partner Publically Leak a Windows Flaw?

Plus: App makers go in front of the judge, Web app security guidelines.

Windows RDP Exploit Code Possibly Leaked by Microsoft Partner

Hackers may have had the jump on Microsoft even as it released a "critical" patch for a Windows Remote Desktop Protocol (RDP) flaw this month.

Lawsuit Claims Major App Makers Stealing Personal Info

A class-action lawsuit was filed in an Austin, Texas court this week that alleges some of the most-downloaded mobile apps are harvesting personal information without users' knowledge.

Mozilla Didn't Properly Plan for Microsoft's Monthly Patch

Plus: Better user password starts with password policy, Google's Chrome browser hacked at the Pwn2Own contest.

'Critical' RDP Windows Fix Highlighted in Microsoft's March Security Update

This month's Microsoft security update, released today, features six bulletins, with one labeled as "critical," four "important" and one "moderate."

Report: User Passwords Not Sophisticated Enough

Trustwave's 2012 Global Security Report includes a section on passwords that delves into weaknesses in user behavior, administrative policy and the technologies used to manage passwords.

Network Execs Argue Against Government Regulation in Cybersecurity

Government regulation could hamper efforts to get ahead of innovative bad guys, argued a panel of network executive in a Congressional hearing this week.

Google Patching Chrome After Attack at Hacking Contest

Google's Chrome Web browser fell to multiple exploits on Wednesday at CanSecWest security conference's Pwn2Own contest.

Microsoft Preps 6 Fixes for March Security Update

Microsoft's monthly security update will feature six items – one labeled "critical," four "important" and one moderate, according to the Microsoft Security Bulletin Advance Notification.

Adobe Releases Yet Another Flash Bandage

Plus, LulzSec crumbles from the inside, readers respond to proposed changes to Windows 8 password procedure.

Second Adobe Flash Fix in a Month Released

Adobe released a patch late Tuesday that targets two vulnerabilities in its Flash Player.

LulzSec Leader Provides Info on Fellow Members to FBI

Based on information given from the hacker group LulzSec's leader, the FBI has arrested three members of the hacker group LulzSec and charged two others.

Upcoming Events

Redmond Tech Watch

Sign up for our newsletter.

I agree to this site's Privacy Policy.