According to former presidential adviser Richard Clarke, the U.S.'s cyber defense is falling behind the resources and expertise of attackers, which leaves critical infrastructure and data vulnerable to increasingly sophisticated attacks.
- By William Jackson
- 09/20/2011
Microsoft re-released Security Advisory (2607712) yesterday to replace a previous flawed update that failed to include all blocked Web certificates from a Dutch certificate authority firm.
Five "important" security bulletins arrived as scheduled for September's Patch Tuesday, after an unintentional leak of early details last week from Microsoft.
- By Jabulani Leffall
- 09/13/2011
This looks to be a lighter patch month, with no "critical" items making it into in September's Microsoft Security Bulletin.
- By Jabulani Leffall
- 09/08/2011
Sony appointed a former Microsoft executive, Philip Reitinger, to a new position overseeing infrastructure security efforts.
Microsoft, Google and Mozilla have revoked all digital certificates from Dutch certificate authority firm DigiNotar as a security measure.
Users gain some needed control over their applications without surrendering security or stability.
- By Derek Schauland
- 09/01/2011
Google on Tuesday released a "stable" plug-in for Internet Explorer that switches on Google Chrome technologies.
Microsoft is warning of a new worm that attempts to use Remote Desktop Protocol (RDP) connections from PCs to try to guess simple login and password information of users.
DoS and password brute-force attacks can be particularly nasty, but you can protect your network against these types of disruptions.
Researchers at M86 Security said this week that the volume of spam containing malware spiked in August.
- By William Jackson
- 08/18/2011
For the first time since security firm Kaspersky started tracking malware threats, Microsoft products are off the company's top-10 list of vulnerability concerns, according to its recent quarterly report.
Microsoft's Internet Explorer 9 browser once again topped the list of browsers providing the greatest protection against socially engineered threats, according to NSS Lab
Microsoft released a report this month updating the progress of the Microsoft Security Response Center in ensuring software security.
Includes confirmed and denied incidents by both groups, allegedly, as well as notable events (as of January 2011).
The August patch is a bulky one as Microsoft released 13 fixes today.
- By Jabulani Leffall
- 08/09/2011
A Windows-based security system used by the government is under fire by the GAO for its unreliability.
- By William Jackson
- 08/09/2011
To develop secure mobile apps, an investment in time to apply the correct testing and auditing techniques is worth the effort.
- By Rutrell Yasin
- 08/08/2011
A security researcher reported a flaw in advanced persistent threat attempts used to steal intellectual property in recent high-profile breaches.
- By William Jackson
- 08/05/2011
A single command and control server conducted attacks against corporations and government agencies over the last five years.
- By Kevin McCaney
- 08/05/2011